Oracle Database Administration 2019 Certified Professional — Question 32

Secure Cluster Communication protects the cluster interconnect from common security threats when used together with Single Network Support. Secure Cluster Communication includes message digest mechanisms, protection against fuzzing, and uses Transport Layer Security (TLS) to provide privacy and data integrity between the cluster members.
Which statement is true about securing cluster interconnect communication?

Answer options

• A. Security for the cluster interconnect is invoked automatically as part of a new Oracle Grid Infrastructure 19c deployment or an upgrade to Oracle Grid Infrastructure 19c and Database administrators or cluster administrators do not need to make any configuration changes for this feature.
• B. Security for the cluster interconnect is invoked automatically as part of a new Oracle Grid Infrastructure 19c deployment or an upgrade to Oracle Grid Infrastructure 19c using an auto-generated encryption key that is stored locally on each node of the cluster in an Oracle Wallet and Database administrators or cluster administrators must provide a valid path for the Wallet file.
• C. Security for the cluster interconnect is invoked by auto-generated server certificates that will be assigned to each cluster node as part of a new Oracle Grid Infrastructure 19c deployment or an upgrade to Oracle Grid Infrastructure 19c.
• D. Database administrators or cluster administrators must provide an encryption key during new Oracle Grid Infrastructure 19c deployment or an upgrade to Oracle Grid Infrastructure 19c to secure the interconnect communication.
• E. Database administrators or cluster administrators must provide a valid server certificate and an Oracle Wallet for each node during new Oracle Grid Infrastructure 19c deployment or an upgrade to Oracle Grid Infrastructure 19c to secure the interconnect communication.

Correct answer: A

Explanation

Option A is correct because it states that security for the cluster interconnect is automatically enabled without requiring additional configuration during the deployment or upgrade process. The other options imply that some form of manual intervention is needed, such as providing encryption keys or certificates, which is not necessary for the automatic security feature in this scenario.