OCI FOUNDATIONS 202 ASSOCIATE
CERTIFICATION 1Z0 1085 21 2026 REVISION
NOTES AND STRUCTURED CLOUD
INFRASTRUCTURE OVERVIEW GUIDE
◉ If one availability domain goes down in a region will it affect the
others. Answer: No - Availability Domains are Isolated from each
other, fault tolerant, unlikely to fail simultaneously
◉ How many fault domains are in a Availability domain. Answer: 3
◉ What is a fault domain. Answer: logical data center in availability
domain
◉ what is data guard used for. Answer: Synchronizing data between
availability domains
◉ What is purpose of fault domains. Answer: Fault domains prevent
failure in a Availability domain
◉ What is purpose of Availability domains. Answer: used to prevent
failure in a region
,◉ what is the purpose of a region pair. Answer: Most regions have
two separate availability domain locations to reduce the risk of
disaster affecting a location
◉ What is OCI IAM. Answer: Identity Access Management Service -
Access control, AuthN (who are you) and AuthZ (what permissions
do you have)
◉ RBAC. Answer: Role Based Access Control - Access /privilege
control that is based on a users role
◉ Instance Principal. Answer: instance and applications can make
API calls
◉ What is OCID. Answer: Oracle Cloud ID - identifies Oracle
resources
◉ How is OCID broken down. Answer: ocid1.<resource
type>.<realm>[.future use].<unique ID>
ex. ocid1.volume.oc1.eu-frankfurt-
1.abasdasdasdasdadasdasdadsadsadsad
,◉ How does IAM assign policy. Answer: User->Groups->Policies->
compartments->Resources
◉ Principal. Answer: IAM entities that are allowed to interact with
OCI resources
◉ what are two principals in OCI. Answer: IAM Users and Resources
◉ what is a group in OCI. Answer: are collection of users that have
the same access to resources
◉ AuthN. Answer: Who you say you are
◉ AuthZ. Answer: What permissions you are allowed to use (IAM
policies)
◉ What are different ways to complete AuthN. Answer: User name
and Password, API signing keys (use public private key pair(RSA key
pair PEM)), and Auth Tokens
◉ what are IAM policies. Answer: Human readable statements to
define granular permissions (AuthZ)
, ◉ 4 levels of verbs in IAM policy, what are they. Answer: Manage,
Use, Read, Inspect
◉ Compartment. Answer: used to collect related resources + isolate
and control access
◉ Can you share resources in two different compartments. Answer:
No - the resource created is dedicated to one compartment
◉ can you share resources from multiple regions in the same
compartment. Answer: Yes
◉ in OCI can you set Quotas and Budgets on compartments?.
Answer: yes you can
◉ What does CIDR stand for?. Answer: Classless Inter-Domain
Routing
◉ What is a subnet?. Answer: group of IPs that are organized from a
larger network
◉ How is NAT used in OCI. Answer: It is used for Private network to
reach out to internet but does not allow internet to private network
CERTIFICATION 1Z0 1085 21 2026 REVISION
NOTES AND STRUCTURED CLOUD
INFRASTRUCTURE OVERVIEW GUIDE
◉ If one availability domain goes down in a region will it affect the
others. Answer: No - Availability Domains are Isolated from each
other, fault tolerant, unlikely to fail simultaneously
◉ How many fault domains are in a Availability domain. Answer: 3
◉ What is a fault domain. Answer: logical data center in availability
domain
◉ what is data guard used for. Answer: Synchronizing data between
availability domains
◉ What is purpose of fault domains. Answer: Fault domains prevent
failure in a Availability domain
◉ What is purpose of Availability domains. Answer: used to prevent
failure in a region
,◉ what is the purpose of a region pair. Answer: Most regions have
two separate availability domain locations to reduce the risk of
disaster affecting a location
◉ What is OCI IAM. Answer: Identity Access Management Service -
Access control, AuthN (who are you) and AuthZ (what permissions
do you have)
◉ RBAC. Answer: Role Based Access Control - Access /privilege
control that is based on a users role
◉ Instance Principal. Answer: instance and applications can make
API calls
◉ What is OCID. Answer: Oracle Cloud ID - identifies Oracle
resources
◉ How is OCID broken down. Answer: ocid1.<resource
type>.<realm>[.future use].<unique ID>
ex. ocid1.volume.oc1.eu-frankfurt-
1.abasdasdasdasdadasdasdadsadsadsad
,◉ How does IAM assign policy. Answer: User->Groups->Policies->
compartments->Resources
◉ Principal. Answer: IAM entities that are allowed to interact with
OCI resources
◉ what are two principals in OCI. Answer: IAM Users and Resources
◉ what is a group in OCI. Answer: are collection of users that have
the same access to resources
◉ AuthN. Answer: Who you say you are
◉ AuthZ. Answer: What permissions you are allowed to use (IAM
policies)
◉ What are different ways to complete AuthN. Answer: User name
and Password, API signing keys (use public private key pair(RSA key
pair PEM)), and Auth Tokens
◉ what are IAM policies. Answer: Human readable statements to
define granular permissions (AuthZ)
, ◉ 4 levels of verbs in IAM policy, what are they. Answer: Manage,
Use, Read, Inspect
◉ Compartment. Answer: used to collect related resources + isolate
and control access
◉ Can you share resources in two different compartments. Answer:
No - the resource created is dedicated to one compartment
◉ can you share resources from multiple regions in the same
compartment. Answer: Yes
◉ in OCI can you set Quotas and Budgets on compartments?.
Answer: yes you can
◉ What does CIDR stand for?. Answer: Classless Inter-Domain
Routing
◉ What is a subnet?. Answer: group of IPs that are organized from a
larger network
◉ How is NAT used in OCI. Answer: It is used for Private network to
reach out to internet but does not allow internet to private network
