ExamGecko
Search Search Login
Home Home / Google / Professional Cloud Architect

Google Professional Cloud Architect Practice Test - Questions Answers, Page 18

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Your company has decided to build a backup replica of their on-premises user authentication PostgreSQL database on Google Cloud Platform. The database is 4 TB, and large updates are frequent. Replication requires private address space communication. Which networking approach should you use?
Your company has a Google Cloud project that uses BigQuery for data warehousing on a pay-per-use basis. You want to monitor queries in real time to discover the most costly queries and which users spend the most. What should you do?
Dress4Win has asked you to recommend machine types they should deploy their application servers to. How should you proceed?
You are implementing Firestore for Mountkirk Games. Mountkirk Games wants to give a new game programmatic access to a legacy game's Firestore database. Access should be as restricted as possible. What should you do?
Auditors visit your teams every 12 months and ask to review all the Google Cloud Identity and Access Management (Cloud IAM) policy changes in the previous 12 months. You want to streamline and expedite the analysis and audit process. What should you do?
For this question, refer to the TerramEarth case study. You start to build a new application that uses a few Cloud Functions for the backend. One use case requires a Cloud Function func_display to invoke another Cloud Function func_query. You want func_query only to accept invocations from func_display. You also want to follow Google's recommended best practices. What should you do?
Your company has an application running as a Deployment in a Google Kubernetes Engine (GKE) cluster When releasing new versions of the application via a rolling deployment, the team has been causing outages The root cause of the outages is misconfigurations with parameters that are only used in production You want to put preventive measures for this in the platform to prevent outages What should you do?
A development manager is building a new application. He asks you to review his requirements and identify what cloud technologies he can use to meet them. The application must:
Your company's user-feedback portal comprises a standard LAMP stack replicated across two zones. It is deployed in the us-central1 region and uses autoscaled managed instance groups on all layers, except the database. Currently, only a small group of select customers have access to the portal. The portal meets a 99,99% availability SLA under these conditions. However next quarter, your company will be making the portal available to all users, including unauthenticated users. You need to develop a resiliency testing strategy to ensure the system maintains the SLA once they introduce additional user load. What should you do?
You write a Python script to connect to Google BigQuery from a Google Compute Engine virtual machine. The script is printing errors that it cannot connect to BigQuery. What should you do to fix the script?

Question 171

Report
Export
Collapse

You have an application that runs in Google Kubernetes Engine (GKE). Over the last 2 weeks, customers have reported that a specific part of the application returns errors very frequently. You currently have no logging or monitoring solution enabled on your GKE cluster. You want to diagnose the problem, but you have not been able to replicate the issue. You want to cause minimal disruption to the application. What should you do?

A.
1. Update your GKE cluster to use Cloud Operations for GKE.
A.
1. Update your GKE cluster to use Cloud Operations for GKE.
Answers
B.
Use the GKE Monitoring dashboard to investigate logs from affected Pods.
B.
Use the GKE Monitoring dashboard to investigate logs from affected Pods.
Answers
C.
1. Create a new GKE cluster with Cloud Operations for GKE enabled.
C.
1. Create a new GKE cluster with Cloud Operations for GKE enabled.
Answers
D.
Migrate the affected Pods to the new cluster, and redirect traffic for those Pods to the new cluster.
D.
Migrate the affected Pods to the new cluster, and redirect traffic for those Pods to the new cluster.
Answers
E.
Use the GKE Monitoring dashboard to investigate logs from affected Pods.
E.
Use the GKE Monitoring dashboard to investigate logs from affected Pods.
Answers
F.
1. Update your GKE cluster to use Cloud Operations for GKE, and deploy Prometheus.
F.
1. Update your GKE cluster to use Cloud Operations for GKE, and deploy Prometheus.
Answers
G.
Set an alert to trigger whenever the application returns an error.
G.
Set an alert to trigger whenever the application returns an error.
Answers
H.
1. Create a new GKE cluster with Cloud Operations for GKE enabled, and deploy Prometheus.
H.
1. Create a new GKE cluster with Cloud Operations for GKE enabled, and deploy Prometheus.
Answers
I.
Migrate the affected Pods to the new cluster, and redirect traffic for those Pods to the new cluster.
I.
Migrate the affected Pods to the new cluster, and redirect traffic for those Pods to the new cluster.
Answers
J.
Set an alert to trigger whenever the application returns an error.
J.
Set an alert to trigger whenever the application returns an error.
Answers
Suggested answer: C

Explanation:

Reference: https://cloud.google.com/blog/products/management-tools/using-logging-your-apps-running-kubernetes-engine

Question 172

Report
Export
Collapse

You need to deploy a stateful workload on Google Cloud. The workload can scale horizontally, but each instance needs to read and write to the same POSIX filesystem. At high load, the stateful workload needs to support up to 100 MB/s of writes. What should you do?

A.
Use a persistent disk for each instance.
A.
Use a persistent disk for each instance.
Answers
B.
Use a regional persistent disk for each instance.
B.
Use a regional persistent disk for each instance.
Answers
C.
Create a Cloud Filestore instance and mount it in each instance.
C.
Create a Cloud Filestore instance and mount it in each instance.
Answers
D.
Create a Cloud Storage bucket and mount it in each instance using gcsfuse.
D.
Create a Cloud Storage bucket and mount it in each instance using gcsfuse.
Answers
Suggested answer: D

Explanation:

Reference: https://cloud.google.com/storage/docs/gcs-fuse

Question 173

Report
Export
Collapse

Your company has an application deployed on Anthos clusters (formerly Anthos GKE) that is running multiple microservices. The cluster has both Anthos Service Mesh and Anthos Config Management configured. End users inform you that the application is responding very slowly. You want to identify the microservice that is causing the delay. What should you do?

A.
Use the Service Mesh visualization in the Cloud Console to inspect the telemetry between the microservices.
A.
Use the Service Mesh visualization in the Cloud Console to inspect the telemetry between the microservices.
Answers
B.
Use Anthos Config Management to create a ClusterSelector selecting the relevant cluster. On the Google Cloud Console page for Google Kubernetes Engine, view the Workloads and filter on the cluster. Inspect the configurations of thefiltered workloads.
B.
Use Anthos Config Management to create a ClusterSelector selecting the relevant cluster. On the Google Cloud Console page for Google Kubernetes Engine, view the Workloads and filter on the cluster. Inspect the configurations of thefiltered workloads.
Answers
C.
Use Anthos Config Management to create a namespaceSelector selecting the relevant cluster namespace. On the Google Cloud Console page for Google Kubernetes Engine, visit the workloads and filter on the namespace. Inspect theconfigurations of the filtered workloads.
C.
Use Anthos Config Management to create a namespaceSelector selecting the relevant cluster namespace. On the Google Cloud Console page for Google Kubernetes Engine, visit the workloads and filter on the namespace. Inspect theconfigurations of the filtered workloads.
Answers
D.
Reinstall istio using the default istio profile in order to collect request latency. Evaluate the telemetry between the microservices in the Cloud Console.
D.
Reinstall istio using the default istio profile in order to collect request latency. Evaluate the telemetry between the microservices in the Cloud Console.
Answers
Suggested answer: A

Question 174

Report
Export
Collapse

You are working at a financial institution that stores mortgage loan approval documents on Cloud Storage. Any change to these approval documents must be uploaded as a separate approval file, so you want to ensure that these documents cannot be deleted or overwritten for the next 5 years. What should you do?

A.
Create a retention policy on the bucket for the duration of 5 years. Create a lock on the retention policy.
A.
Create a retention policy on the bucket for the duration of 5 years. Create a lock on the retention policy.
Answers
B.
Create the bucket with uniform bucket-level access, and grant a service account the role of Object Writer. Use the service account to upload new files.
B.
Create the bucket with uniform bucket-level access, and grant a service account the role of Object Writer. Use the service account to upload new files.
Answers
C.
Use a customer-managed key for the encryption of the bucket. Rotate the key after 5 years.
C.
Use a customer-managed key for the encryption of the bucket. Rotate the key after 5 years.
Answers
D.
Create the bucket with fine-grained access control, and grant a service account the role of Object Writer. Use the service account to upload new files.
D.
Create the bucket with fine-grained access control, and grant a service account the role of Object Writer. Use the service account to upload new files.
Answers
Suggested answer: A

Explanation:

Reference: https://cloud.google.com/storage/docs/using-bucket-lock

Question 175

Report
Export
Collapse

Your team will start developing a new application using microservices architecture on Kubernetes Engine. As part of the development lifecycle, any code change that has been pushed to the remote develop branch on your GitHub repository should be built and tested automatically. When the build and test are successful, the relevant microservice will be deployed automatically in the development environment. You want to ensure that all code deployed in the development environment follows this process. What should you do?

A.
Have each developer install a pre-commit hook on their workstation that tests the code and builds the container when committing on the development branch. After a successful commit, have the developer deploy the newly builtcontainer image on the development cluster.
A.
Have each developer install a pre-commit hook on their workstation that tests the code and builds the container when committing on the development branch. After a successful commit, have the developer deploy the newly builtcontainer image on the development cluster.
Answers
B.
Install a post-commit hook on the remote git repository that tests the code and builds the container when code is pushed to the development branch. After a successful commit, have the developer deploy the newly built container imageon the development cluster.
B.
Install a post-commit hook on the remote git repository that tests the code and builds the container when code is pushed to the development branch. After a successful commit, have the developer deploy the newly built container imageon the development cluster.
Answers
C.
Create a Cloud Build trigger based on the development branch that tests the code, builds the container, and stores it in Container Registry. Create a deployment pipeline that watches for new images and deploys the new image on thedevelopment cluster. Ensure only the deployment tool has access to deploy new versions.
C.
Create a Cloud Build trigger based on the development branch that tests the code, builds the container, and stores it in Container Registry. Create a deployment pipeline that watches for new images and deploys the new image on thedevelopment cluster. Ensure only the deployment tool has access to deploy new versions.
Answers
D.
Create a Cloud Build trigger based on the development branch to build a new container image and store it in Container Registry. Rely on Vulnerability Scanning to ensure the code tests succeed. As the final step of the CloudBuildprocess, deploy the new container image on the development cluster. Ensure only Cloud Build has access to deploy new versions.
D.
Create a Cloud Build trigger based on the development branch to build a new container image and store it in Container Registry. Rely on Vulnerability Scanning to ensure the code tests succeed. As the final step of the CloudBuildprocess, deploy the new container image on the development cluster. Ensure only Cloud Build has access to deploy new versions.
Answers
Suggested answer: A

Question 176

Report
Export
Collapse

Your operations team has asked you to help diagnose a performance issue in a production application that runs on Compute Engine. The application is dropping requests that reach it when under heavy load. The process list for affected instances shows a single application process that is consuming all available CPU, and autoscaling has reached the upper limit of instances. There is no abnormal load on any other related systems, including the database. You want to allow production traffic to be served again as quickly as possible. Which action should you recommend?

A.
Change the autoscaling metric to agent.googleapis.com/memory/percent_used.
A.
Change the autoscaling metric to agent.googleapis.com/memory/percent_used.
Answers
B.
Restart the affected instances on a staggered schedule.
B.
Restart the affected instances on a staggered schedule.
Answers
C.
SSH to each instance and restart the application process.
C.
SSH to each instance and restart the application process.
Answers
D.
Increase the maximum number of instances in the autoscaling group.
D.
Increase the maximum number of instances in the autoscaling group.
Answers
Suggested answer: A

Explanation:

Reference: https://cloud.google.com/blog/products/sap-google-cloud/best-practices-for-sap-app-server-autoscaling-on-google-cloud

Question 177

Report
Export
Collapse

You are implementing the infrastructure for a web service on Google Cloud. The web service needs to receive and store the data from 500,000 requests per second. The data will be queried later in real time, based on exact matches of a known set of attributes. There will be periods where the web service will not receive any requests. The business wants to keep costs low. Which web service platform and database should you use for the application?

A.
Cloud Run and BigQuery
A.
Cloud Run and BigQuery
Answers
B.
Cloud Run and Cloud Bigtable
B.
Cloud Run and Cloud Bigtable
Answers
C.
A Compute Engine autoscaling managed instance group and BigQuery
C.
A Compute Engine autoscaling managed instance group and BigQuery
Answers
D.
A Compute Engine autoscaling managed instance group and Cloud Bigtable
D.
A Compute Engine autoscaling managed instance group and Cloud Bigtable
Answers
Suggested answer: D

Question 178

Report
Export
Collapse

You are developing an application using different microservices that should remain internal to the cluster. You want to be able to configure each microservice with a specific number of replicas. You also want to be able to address a specific microservice from any other microservice in a uniform way, regardless of the number of replicas the microservice scales to. You need to implement this solution on Google Kubernetes Engine. What should you do?

A.
Deploy each microservice as a Deployment. Expose the Deployment in the cluster using a Service, and use the Service DNS name to address it from other microservices within the cluster.
A.
Deploy each microservice as a Deployment. Expose the Deployment in the cluster using a Service, and use the Service DNS name to address it from other microservices within the cluster.
Answers
B.
Deploy each microservice as a Deployment. Expose the Deployment in the cluster using an Ingress, and use the Ingress IP address to address the Deployment from other microservices within the cluster.
B.
Deploy each microservice as a Deployment. Expose the Deployment in the cluster using an Ingress, and use the Ingress IP address to address the Deployment from other microservices within the cluster.
Answers
C.
Deploy each microservice as a Pod. Expose the Pod in the cluster using a Service, and use the Service DNS name to address the microservice from other microservices within the cluster.
C.
Deploy each microservice as a Pod. Expose the Pod in the cluster using a Service, and use the Service DNS name to address the microservice from other microservices within the cluster.
Answers
D.
Deploy each microservice as a Pod. Expose the Pod in the cluster using an Ingress, and use the Ingress IP address name to address the Pod from other microservices within the cluster.
D.
Deploy each microservice as a Pod. Expose the Pod in the cluster using an Ingress, and use the Ingress IP address name to address the Pod from other microservices within the cluster.
Answers
Suggested answer: A

Question 179

Report
Export
Collapse

Your company has a networking team and a development team. The development team runs applications on Compute Engine instances that contain sensitive data. The development team requires administrative permissions for Compute Engine. Your company requires all network resources to be managed by the networking team. The development team does not want the networking team to have access to the sensitive data on the instances. What should you do?

A.
1. Create a project with a standalone VPC and assign the Network Admin role to the networking team.
A.
1. Create a project with a standalone VPC and assign the Network Admin role to the networking team.
Answers
B.
Create a second project with a standalone VPC and assign the Compute Admin role to the development team.
B.
Create a second project with a standalone VPC and assign the Compute Admin role to the development team.
Answers
C.
Use Cloud VPN to join the two VPCs.
C.
Use Cloud VPN to join the two VPCs.
Answers
D.
1. Create a project with a standalone Virtual Private Cloud (VPC), assign the Network Admin role to the networking team, and assign the Compute Admin role to the development team.
D.
1. Create a project with a standalone Virtual Private Cloud (VPC), assign the Network Admin role to the networking team, and assign the Compute Admin role to the development team.
Answers
E.
1. Create a project with a Shared VPC and assign the Network Admin role to the networking team.
E.
1. Create a project with a Shared VPC and assign the Network Admin role to the networking team.
Answers
F.
Create a second project without a VPC, configure it as a Shared VPC service project, and assign the Compute Admin role to the development team.
F.
Create a second project without a VPC, configure it as a Shared VPC service project, and assign the Compute Admin role to the development team.
Answers
G.
1. Create a project with a standalone VPC and assign the Network Admin role to the networking team.
G.
1. Create a project with a standalone VPC and assign the Network Admin role to the networking team.
Answers
H.
Create a second project with a standalone VPC and assign the Compute Admin role to the development team.
H.
Create a second project with a standalone VPC and assign the Compute Admin role to the development team.
Answers
I.
Use VPC Peering to join the two VPCs.
I.
Use VPC Peering to join the two VPCs.
Answers
Suggested answer: C

Explanation:

Reference: https://cloud.google.com/vpc/docs/shared-vpc

Question 180

Report
Export
Collapse

Your company wants you to build a highly reliable web application with a few public APIs as the backend. You don't expect a lot of user traffic, but traffic could spike occasionally. You want to leverage Cloud Load Balancing, and the solution must be cost-effective for users. What should you do?

A.
Store static content such as HTML and images in Cloud CDN. Host the APIs on App Engine and store the user data in Cloud SQL.
A.
Store static content such as HTML and images in Cloud CDN. Host the APIs on App Engine and store the user data in Cloud SQL.
Answers
B.
Store static content such as HTML and images in a Cloud Storage bucket. Host the APIs on a zonal Google Kubernetes Engine cluster with worker nodes in multiple zones, and save the user data in Cloud Spanner.
B.
Store static content such as HTML and images in a Cloud Storage bucket. Host the APIs on a zonal Google Kubernetes Engine cluster with worker nodes in multiple zones, and save the user data in Cloud Spanner.
Answers
C.
Store static content such as HTML and images in Cloud CDN. Use Cloud Run to host the APIs and save the user data in Cloud SQL.
C.
Store static content such as HTML and images in Cloud CDN. Use Cloud Run to host the APIs and save the user data in Cloud SQL.
Answers
D.
Store static content such as HTML and images in a Cloud Storage bucket. Use Cloud Functions to host the APIs and save the user data in Firestore.
D.
Store static content such as HTML and images in a Cloud Storage bucket. Use Cloud Functions to host the APIs and save the user data in Firestore.
Answers
Suggested answer: B
Total 285 questions
Go to page: of 29
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms