ExamGecko
Search Search Login
Home Home / Google / Professional Cloud Architect

Google Professional Cloud Architect Practice Test - Questions Answers, Page 8

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Your company has decided to build a backup replica of their on-premises user authentication PostgreSQL database on Google Cloud Platform. The database is 4 TB, and large updates are frequent. Replication requires private address space communication. Which networking approach should you use?
Your company has a Google Cloud project that uses BigQuery for data warehousing on a pay-per-use basis. You want to monitor queries in real time to discover the most costly queries and which users spend the most. What should you do?
Dress4Win has asked you to recommend machine types they should deploy their application servers to. How should you proceed?
You are implementing Firestore for Mountkirk Games. Mountkirk Games wants to give a new game programmatic access to a legacy game's Firestore database. Access should be as restricted as possible. What should you do?
Auditors visit your teams every 12 months and ask to review all the Google Cloud Identity and Access Management (Cloud IAM) policy changes in the previous 12 months. You want to streamline and expedite the analysis and audit process. What should you do?
For this question, refer to the TerramEarth case study. You start to build a new application that uses a few Cloud Functions for the backend. One use case requires a Cloud Function func_display to invoke another Cloud Function func_query. You want func_query only to accept invocations from func_display. You also want to follow Google's recommended best practices. What should you do?
Your company has an application running as a Deployment in a Google Kubernetes Engine (GKE) cluster When releasing new versions of the application via a rolling deployment, the team has been causing outages The root cause of the outages is misconfigurations with parameters that are only used in production You want to put preventive measures for this in the platform to prevent outages What should you do?
A development manager is building a new application. He asks you to review his requirements and identify what cloud technologies he can use to meet them. The application must:
Your company's user-feedback portal comprises a standard LAMP stack replicated across two zones. It is deployed in the us-central1 region and uses autoscaled managed instance groups on all layers, except the database. Currently, only a small group of select customers have access to the portal. The portal meets a 99,99% availability SLA under these conditions. However next quarter, your company will be making the portal available to all users, including unauthenticated users. You need to develop a resiliency testing strategy to ensure the system maintains the SLA once they introduce additional user load. What should you do?
You write a Python script to connect to Google BigQuery from a Google Compute Engine virtual machine. The script is printing errors that it cannot connect to BigQuery. What should you do to fix the script?

Question 71

Report
Export
Collapse

One of the developers on your team deployed their application in Google Container Engine with the Dockerfile below. They report that their application deployments are taking too long.

You want to optimize this Dockerfile for faster deployment times without adversely affecting the app's functionality.

Which two actions should you take? Choose 2 answers.

A.
Remove Python after running pip
A.
Remove Python after running pip
Answers
B.
Remove dependencies from requirements.txt
B.
Remove dependencies from requirements.txt
Answers
C.
Use a slimmed-down base image like Alpine Linux
C.
Use a slimmed-down base image like Alpine Linux
Answers
D.
Use larger machine types for your Google Container Engine node pools
D.
Use larger machine types for your Google Container Engine node pools
Answers
E.
Copy the source after he package dependencies (Python and pip) are installed
E.
Copy the source after he package dependencies (Python and pip) are installed
Answers
Suggested answer: C, E

Explanation:

The speed of deployment can be changed by limiting the size of the uploaded app, limiting the complexity of the build necessary in the Dockerfile, if present, and by ensuring a fast and reliable internet connection.

Note: Alpine Linux is built around musl libc and busybox. This makes it smaller and more resource efficient than traditional GNU/Linux distributions. A container requires no more than 8 MB and a minimal installation to disk requires around 130 MB of storage. Not only do you get a fully-fledged Linux environment but a large selection of packages from the repository.

References: https://groups.google.com/forum/#!topic/google-appengine/hZMEkmmObDU https://www.alpinelinux.org/about/

Question 72

Report
Export
Collapse

Your solution is producing performance bugs in production that you did not see in staging and test environments. You want to adjust your test and deployment procedures to avoid this problem in the future.

What should you do?

A.
Deploy fewer changes to production
A.
Deploy fewer changes to production
Answers
B.
Deploy smaller changes to production
B.
Deploy smaller changes to production
Answers
C.
Increase the load on your test and staging environments
C.
Increase the load on your test and staging environments
Answers
D.
Deploy changes to a small subset of users before rolling out to production
D.
Deploy changes to a small subset of users before rolling out to production
Answers
Suggested answer: D

Question 73

Report
Export
Collapse

A small number of API requests to your microservices-based application take a very long time. You know that each request to the API can traverse many services. You want to know which service takes the longest in those cases.

What should you do?

A.
Set timeouts on your application so that you can fail requests faster
A.
Set timeouts on your application so that you can fail requests faster
Answers
B.
Send custom metrics for each of your requests to Stackdriver Monitoring
B.
Send custom metrics for each of your requests to Stackdriver Monitoring
Answers
C.
Use Stackdriver Monitoring to look for insights that show when your API latencies are high
C.
Use Stackdriver Monitoring to look for insights that show when your API latencies are high
Answers
D.
Instrument your application with Stackdriver Trace in order to break down the request latencies at each microservice
D.
Instrument your application with Stackdriver Trace in order to break down the request latencies at each microservice
Answers
Suggested answer: D

Explanation:

References: https://cloud.google.com/trace/docs/quickstart#find_a_trace

Question 74

Report
Export
Collapse

During a high traffic portion of the day, one of your relational databases crashes, but the replica is never promoted to a master. You want to avoid this in the future.

What should you do?

A.
Use a different database
A.
Use a different database
Answers
B.
Choose larger instances for your database
B.
Choose larger instances for your database
Answers
C.
Create snapshots of your database more regularly
C.
Create snapshots of your database more regularly
Answers
D.
Implement routinely scheduled failovers of your databases
D.
Implement routinely scheduled failovers of your databases
Answers
Suggested answer: D

Question 75

Report
Export
Collapse

Your organization requires that metrics from all applications be retained for 5 years for future analysis in possible legal proceedings.

Which approach should you use?

A.
Grant the security team access to the logs in each Project
A.
Grant the security team access to the logs in each Project
Answers
B.
Configure Stackdriver Monitoring for all Projects, and export to BigQuery
B.
Configure Stackdriver Monitoring for all Projects, and export to BigQuery
Answers
C.
Configure Stackdriver Monitoring for all Projects with the default retention policies
C.
Configure Stackdriver Monitoring for all Projects with the default retention policies
Answers
D.
Configure Stackdriver Monitoring for all Projects, and export to Google Cloud Storage
D.
Configure Stackdriver Monitoring for all Projects, and export to Google Cloud Storage
Answers
Suggested answer: B

Explanation:

Stackdriver Logging provides you with the ability to filter, search, and view logs from your cloud and open source application services. Allows you to define metrics based on log contents that are incorporated into dashboards and alerts.

Enables you to export logs to BigQuery, Google Cloud Storage, and Pub/Sub. References: https://cloud.google.com/stackdriver/

Question 76

Report
Export
Collapse

Your company has decided to build a backup replica of their on-premises user authentication PostgreSQL database on Google Cloud Platform. The database is 4 TB, and large updates are frequent. Replication requires private address space communication.

Which networking approach should you use?

A.
Google Cloud Dedicated Interconnect
A.
Google Cloud Dedicated Interconnect
Answers
B.
Google Cloud VPN connected to the data center network
B.
Google Cloud VPN connected to the data center network
Answers
C.
A NAT and TLS translation gateway installed on-premises
C.
A NAT and TLS translation gateway installed on-premises
Answers
D.
A Google Compute Engine instance with a VPN server installed connected to the data center network
D.
A Google Compute Engine instance with a VPN server installed connected to the data center network
Answers
Suggested answer: A

Explanation:

Google Cloud Dedicated Interconnect provides direct physical connections and RFC 1918 communication between your on-premises network and Google's network. Dedicated Interconnect enables you to transfer large amounts of data between networks, which can be more cost effective than purchasing additional bandwidth over the public Internet or using VPN tunnels.

Benefits:

Traffic between your on-premises network and your VPC network doesn't traverse the public Internet. Traffic traverses a dedicated connection with fewer hops, meaning there are less points of failure where traffic might get dropped or disrupted.

Your VPC network's internal (RFC 1918) IP addresses are directly accessible from your on-premises network. You don't need to use a NAT device or VPN tunnel to reach internal IP addresses. Currently, you can only reach internal IP addresses over a dedicated connection. To reach Google external IP addresses, you must use a separate connection.

You can scale your connection to Google based on your needs. Connection capacity is delivered over one or more 10 Gbps Ethernet connections, with a maximum of eight connections (80 Gbps total per interconnect).

The cost of egress traffic from your VPC network to your on-premises network is reduced. A dedicated connection is generally the least expensive method if you have a high-volume of traffic to and from Google's network. References:

https://cloud.google.com/interconnect/docs/details/dedicated

Question 77

Report
Export
Collapse

Auditors visit your teams every 12 months and ask to review all the Google Cloud Identity and Access Management (Cloud IAM) policy changes in the previous 12 months. You want to streamline and expedite the analysis and audit process.

What should you do?

A.
Create custom Google Stackdriver alerts and send them to the auditor
A.
Create custom Google Stackdriver alerts and send them to the auditor
Answers
B.
Enable Logging export to Google BigQuery and use ACLs and views to scope the data shared with the auditor
B.
Enable Logging export to Google BigQuery and use ACLs and views to scope the data shared with the auditor
Answers
C.
Use cloud functions to transfer log entries to Google Cloud SQL and use ACLs and views to limit an auditor's view
C.
Use cloud functions to transfer log entries to Google Cloud SQL and use ACLs and views to limit an auditor's view
Answers
D.
Enable Google Cloud Storage (GCS) log export to audit logs into a GCS bucket and delegate access to the bucket
D.
Enable Google Cloud Storage (GCS) log export to audit logs into a GCS bucket and delegate access to the bucket
Answers
Suggested answer: B

Question 78

Report
Export
Collapse

You are designing a large distributed application with 30 microservices. Each of your distributed microservices needs to connect to a database back-end. You want to store the credentials securely.

Where should you store the credentials?

A.
In the source code
A.
In the source code
Answers
B.
In an environment variable
B.
In an environment variable
Answers
C.
In a secret management system
C.
In a secret management system
Answers
D.
In a config file that has restricted access through ACLs
D.
In a config file that has restricted access through ACLs
Answers
Suggested answer: C

Explanation:

References: https://cloud.google.com/kms/docs/secret-management

Question 79

Report
Export
Collapse

A lead engineer wrote a custom tool that deploys virtual machines in the legacy data center. He wants to migrate the custom tool to the new cloud environment. You want to advocate for the adoption of Google Cloud Deployment Manager.

What are two business risks of migrating to Cloud Deployment Manager? Choose 2 answers.

A.
Cloud Deployment Manager uses Python
A.
Cloud Deployment Manager uses Python
Answers
B.
Cloud Deployment Manager APIs could be deprecated in the future
B.
Cloud Deployment Manager APIs could be deprecated in the future
Answers
C.
Cloud Deployment Manager is unfamiliar to the company's engineers
C.
Cloud Deployment Manager is unfamiliar to the company's engineers
Answers
D.
Cloud Deployment Manager requires a Google APIs service account to run
D.
Cloud Deployment Manager requires a Google APIs service account to run
Answers
E.
Cloud Deployment Manager can be used to permanently delete cloud resources
E.
Cloud Deployment Manager can be used to permanently delete cloud resources
Answers
F.
Cloud Deployment Manager only supports automation of Google Cloud resources
F.
Cloud Deployment Manager only supports automation of Google Cloud resources
Answers
Suggested answer: B, F

Question 80

Report
Export
Collapse

A development manager is building a new application. He asks you to review his requirements and identify what cloud technologies he can use to meet them. The application must:

A.
Be based on open-source technology for cloud portability
A.
Be based on open-source technology for cloud portability
Answers
B.
Dynamically scale compute capacity based on demand
B.
Dynamically scale compute capacity based on demand
Answers
C.
Support continuous software delivery
C.
Support continuous software delivery
Answers
D.
Run multiple segregated copies of the same application stack
D.
Run multiple segregated copies of the same application stack
Answers
E.
Deploy application bundles using dynamic templates
E.
Deploy application bundles using dynamic templates
Answers
F.
Route network traffic to specific services based on URLWhich combination of technologies will meet all of his requirements?
F.
Route network traffic to specific services based on URLWhich combination of technologies will meet all of his requirements?
Answers
G.
Google Kubernetes Engine, Jenkins, and Helm
G.
Google Kubernetes Engine, Jenkins, and Helm
Answers
H.
Google Kubernetes Engine and Cloud Load Balancing
H.
Google Kubernetes Engine and Cloud Load Balancing
Answers
I.
Google Kubernetes Engine and Cloud Deployment Manager
I.
Google Kubernetes Engine and Cloud Deployment Manager
Answers
J.
Google Kubernetes Engine, Jenkins, and Cloud Load Balancing
J.
Google Kubernetes Engine, Jenkins, and Cloud Load Balancing
Answers
Suggested answer: D

Explanation:

Jenkins is an open-source automation server that lets you flexibly orchestrate your build, test, and deployment pipelines. Kubernetes Engine is a hosted version of Kubernetes, a powerful cluster manager and orchestration system for containers.

When you need to set up a continuous delivery (CD) pipeline, deploying Jenkins on Kubernetes Engine provides important benefits over a standard VM-based deployment

Incorrect Answers:

A: Helm is a tool for managing Kubernetes charts. Charts are packages of pre-configured Kubernetes resources.

Use Helm to:

Find and use popular software packaged as Kubernetes charts

Share your own applications as Kubernetes charts

Create reproducible builds of your Kubernetes applications

Intelligently manage your Kubernetes manifest files

Manage releases of Helm packages

References: https://cloud.google.com/solutions/jenkins-on-kubernetes-engine

Total 285 questions
Go to page: of 29
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms