According to Oracle documentation, it is a best practice when planning and instituting Access Controls for your Autonomous Dedicated environment regarding Subnets, Compartments and User Groups.
Which statement is true? (Choose the best answer.)
Click on the arrows to vote for the correct answer
A. B. C. D.A.
https://docs.oracle.com/en/cloud/paas/autonomous-database/atpfg/plan-and-create-access-constraints1.htmlAccess control is an important aspect of securing an Autonomous Dedicated Database environment. It involves ensuring that only authorized users can access and perform specific actions on the database.
Regarding the use of subnets, compartments, and user groups, Oracle recommends the following best practices:
A. Create at least 2 of each resource: This statement is not correct. While it is always a good practice to have a backup of your resources, creating multiple subnets, compartments, and user groups without a valid reason can lead to complexity and confusion. Additionally, it can increase the risk of security vulnerabilities if the resources are not properly secured.
B. Only 1 Subnet and 1 Compartment are allowed, multiple Groups highly advised: This statement is also not correct. While it is true that you can create only one subnet and one compartment for an Autonomous Dedicated Database environment, creating multiple user groups is not necessarily highly advised. The number of user groups you create should be based on your specific requirements and should not be excessive.
C. Only 1 of each is allowed to be allocated per environment: This statement is true. When creating an Autonomous Dedicated Database environment, you can create only one subnet and one compartment. This is a limitation of the service that cannot be changed.
D. Create a Separate VCN that contains only public subnets: This statement is not related to the use of subnets, compartments, and user groups for access control in an Autonomous Dedicated Database environment. This statement is related to the overall network architecture of the environment, where you can create a separate VCN (Virtual Cloud Network) that contains only public subnets. This can help improve security by isolating your public-facing resources from your private resources.
In summary, the correct answer is C. You can only allocate one subnet and one compartment for an Autonomous Dedicated Database environment, and the number of user groups you create should be based on your specific requirements.