Your customer wants you to partition the database and storage grids in his X3-2 full rack, creating
database clusters and two storage grids.
One cluster will be used for production and should consist of 6 databases servers and 11 cells
from the first storage grid.
The other cluster will be used for test and development, and should consist of 2 database servers
and 3 cells from the second storage grid.
The storage must be partitioned so that the cells are visible only to the appropriate database
servers based on the description above.
What must be done to achieve this?
A.
Configure Exadata realms using Oracle ASM scoped security mode.
B.
Configure Exadata realms using Database scoped security mode.
C.
Edit the CELLIP.ORA file on each database server to contain IP addresses of cells in the
storage grid associated with cluster to which that database server belongs.
D.
Edit the CELLINIT.ORA file on each database server to contain IP addresses of cells in the
storage grid associated with the cluster to which that database server belongs.
E.
Edit the CELLIP.ORA file on each database server to contain IP addresses of database servers
which are allowed access to specific cells in the same storage grid.
F.
Edit the CELLIP.ORA file on each cell to contain IP addresses of database servers in the
database server grid that are associated with the storage grid to which that cell belongs.
Explanation:
cellip.ora
The cellip.ora is the configuration file, on every compute node, that tells ASM instances which cells
are available to this cluster.
Here is a content of a typical cellip.ora file for a quarter rack system:
$ cat /etc/oracle/cell/network-config/cellip.ora
cell=”192.168.10.3″
cell=”192.168.10.4″
cell=”192.168.10.5″
Now that we see what is in the cellip.ora, the grid disk path, in the examples above, should make
more sense.
Note:
*cellinit.ora decides which network takes storage traffic.
*cellip.ora – list of cells, new cells can be added dynamically without shutdown
B & C is right
why B?
Because:
To set up security so that specific databases have access to specified grid disks, configure database-scoped security.
C is correct .We dont need any ASM or DB level security as it is going to be 2 clusters.
Answer is C -> u need to drop the cell node(s’) detail(s) from /etc/oracle/cell/network-config/cellip.ora of DB nodes to remove the cell(s) from a cluster. Before it drop all the disks of cell(s) from ASM.
B & C are correct
https://docs.oracle.com/cd/E50790_01/doc/doc.121/e50471/security.htm#SAGUG20379
C explanation from Mat is partially correct. But the real reason is not because it’s 2 cluster’s it’s because each cluster uses different cells (distinct cells) and therefore cellip.ora on each db-node is sufficient. NO need to add ASM and/or database scoped security (be aware of the fact that ASM scoped security alone is possible, but db scoped security is only possible on top of ASM scoped security).