ExamGecko
Search Search Login
Home Home / Google / Professional Cloud Developer

Google Professional Cloud Developer Practice Test - Questions Answers, Page 13

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

HipLocal wants to reduce the number of on-call engineers and eliminate manual scaling. Which two services should they choose? (Choose two.)
You work at a rapidly growing financial technology startup. You manage the payment processing application written in Go and hosted on Cloud Run in the Singapore region (asia-southeast1). The payment processing application processes data stored in a Cloud Storage bucket that is also located in the Singapore region. The startup plans to expand further into the Asia Pacific region. You plan to deploy the Payment Gateway in Jakarta, Hong Kong, and Taiwan over the next six months. Each location has data residency requirements that require customer data to reside in the country where the transaction was made. You want to minimize the cost of these deployments. What should you do?
You manage a microservice-based ecommerce platform on Google Cloud that sends confirmation emails to a third-party email service provider using a Cloud Function. Your company just launched a marketing campaign, and some customers are reporting that they have not received order confirmation emails. You discover that the services triggering the Cloud Function are receiving HTTP 500 errors. You need to change the way emails are handled to minimize email loss. What should you do?
You have an application running in a production Google Kubernetes Engine (GKE) cluster. You use Cloud Deploy to automatically deploy your application to your production GKE cluster. As part of your development process: you are planning to make frequent changes to the applications source code and need to select the tools to test the changes before pushing them to your remote source code repository. Your toolset must meet the following requirements: * Test frequent local changes automatically. * Local deployment emulates production deployment. Which tools should you use to test building and running a container on your laptop using minimal resources'?
Your company has a BigQuery dataset named 'Master' that keeps information about employee travel and expenses. This information is organized by employee department. That means employees should only be able to view information for their department. You want to apply a security framework to enforce this requirement with the minimum number of steps. What should you do?
Your service adds text to images that it reads from Cloud Storage. During busy times of the year, requests to Cloud Storage fail with an HTTP 429 'Too Many Requests' status code. How should you handle this error?
You work for an organization that manages an online ecommerce website. Your company plans to expand across the world; however, the estore currently serves one specific region. You need to select a SQL database and configure a schema that will scale as your organization grows. You want to create a table that stores all customer transactions and ensure that the customer (CustomerId) and the transaction (TransactionId) are unique. What should you do?
You are using Cloud Run to host a global ecommerce web application. Your company's design team is creating a new color scheme for the web app. You have been tasked with determining whether the new color scheme will increase sales You want to conduct testing on live production traffic How should you design the study?
You are load testing your server application. During the first 30 seconds, you observe that a previously inactive Cloud Storage bucket is now servicing 2000 write requests per second and 7500 read requests per second. Your application is now receiving intermittent 5xx and 429 HTTP responses from the Cloud Storage JSON API as the demand escalates. You want to decrease the failed responses from the Cloud Storage API. What should you do?
You are developing an online gaming platform as a microservices application on Google Kubernetes Engine (GKE). Users on social media are complaining about long loading times for certain URL requests to the application. You need to investigate performance bottlenecks in the application and identify which HTTP requests have a significantly high latency span in user requests. What should you do9

Question 121

Report
Export
Collapse

You want to create ''fully baked'' or ''golden'' Compute Engine images for your application. You need to bootstrap your application to connect to the appropriate database according to the environment the application is running on (test, staging, production). What should you do?

A.
Embed the appropriate database connection string in the image. Create a different image for each environment.
A.
Embed the appropriate database connection string in the image. Create a different image for each environment.
Answers
B.
When creating the Compute Engine instance, add a tag with the name of the database to be connected. In your application, query the Compute Engine API to pull the tags for the current instance, and use the tag to construct the appropriate database connection string.
B.
When creating the Compute Engine instance, add a tag with the name of the database to be connected. In your application, query the Compute Engine API to pull the tags for the current instance, and use the tag to construct the appropriate database connection string.
Answers
C.
When creating the Compute Engine instance, create a metadata item with a key of ''DATABASE'' and a value for the appropriate database connection string. In your application, read the ''DATABASE'' environment variable, and use the value to connect to the appropriate database.
C.
When creating the Compute Engine instance, create a metadata item with a key of ''DATABASE'' and a value for the appropriate database connection string. In your application, read the ''DATABASE'' environment variable, and use the value to connect to the appropriate database.
Answers
D.
When creating the Compute Engine instance, create a metadata item with a key of ''DATABASE'' and a value for the appropriate database connection string. In your application, query the metadata server for the ''DATABASE'' value, and use the value to connect to the appropriate database.
D.
When creating the Compute Engine instance, create a metadata item with a key of ''DATABASE'' and a value for the appropriate database connection string. In your application, query the metadata server for the ''DATABASE'' value, and use the value to connect to the appropriate database.
Answers
Suggested answer: D

Question 122

Report
Export
Collapse

You are developing a microservice-based application that will be deployed on a Google Kubernetes Engine cluster. The application needs to read and write to a Spanner database. You want to follow security best practices while minimizing code changes. How should you configure your application to retrieve Spanner credentials?

A.
Configure the appropriate service accounts, and use Workload Identity to run the pods.
A.
Configure the appropriate service accounts, and use Workload Identity to run the pods.
Answers
B.
Store the application credentials as Kubernetes Secrets, and expose them as environment variables.
B.
Store the application credentials as Kubernetes Secrets, and expose them as environment variables.
Answers
C.
Configure the appropriate routing rules, and use a VPC-native cluster to directly connect to the database.
C.
Configure the appropriate routing rules, and use a VPC-native cluster to directly connect to the database.
Answers
D.
Store the application credentials using Cloud Key Management Service, and retrieve them whenever a database connection is made.
D.
Store the application credentials using Cloud Key Management Service, and retrieve them whenever a database connection is made.
Answers
Suggested answer: A

Explanation:

https://cloud.google.com/kubernetes-engine/docs/concepts/workload-identity

Question 123

Report
Export
Collapse

You are deploying your application on a Compute Engine instance that communicates with Cloud SQL. You will use Cloud SQL Proxy to allow your application to communicate to the database using the service account associated with the application's instance. You want to follow the Google-recommended best practice of providing minimum access for the role assigned to the service account. What should you do?

A.
Assign the Project Editor role.
A.
Assign the Project Editor role.
Answers
B.
Assign the Project Owner role.
B.
Assign the Project Owner role.
Answers
C.
Assign the Cloud SQL Client role.
C.
Assign the Cloud SQL Client role.
Answers
D.
Assign the Cloud SQL Editor role.
D.
Assign the Cloud SQL Editor role.
Answers
Suggested answer: C

Question 124

Report
Export
Collapse

Your team develops stateless services that run on Google Kubernetes Engine (GKE). You need to deploy a new service that will only be accessed by other services running in the GKE cluster. The service will need to scale as quickly as possible to respond to changing load. What should you do?

A.
Use a Vertical Pod Autoscaler to scale the containers, and expose them via a ClusterIP Service.
A.
Use a Vertical Pod Autoscaler to scale the containers, and expose them via a ClusterIP Service.
Answers
B.
Use a Vertical Pod Autoscaler to scale the containers, and expose them via a NodePort Service.
B.
Use a Vertical Pod Autoscaler to scale the containers, and expose them via a NodePort Service.
Answers
C.
Use a Horizontal Pod Autoscaler to scale the containers, and expose them via a ClusterIP Service.
C.
Use a Horizontal Pod Autoscaler to scale the containers, and expose them via a ClusterIP Service.
Answers
D.
Use a Horizontal Pod Autoscaler to scale the containers, and expose them via a NodePort Service.
D.
Use a Horizontal Pod Autoscaler to scale the containers, and expose them via a NodePort Service.
Answers
Suggested answer: C

Explanation:

https://cloud.google.com/kubernetes-engine/docs/concepts/service

Question 125

Report
Export
Collapse

You recently migrated a monolithic application to Google Cloud by breaking it down into microservices. One of the microservices is deployed using Cloud Functions. As you modernize the application, you make a change to the API of the service that is backward-incompatible. You need to support both existing callers who use the original API and new callers who use the new API. What should you do?

A.
Leave the original Cloud Function as-is and deploy a second Cloud Function with the new API. Use a load balancer to distribute calls between the versions.
A.
Leave the original Cloud Function as-is and deploy a second Cloud Function with the new API. Use a load balancer to distribute calls between the versions.
Answers
B.
Leave the original Cloud Function as-is and deploy a second Cloud Function that includes only the changed API. Calls are automatically routed to the correct function.
B.
Leave the original Cloud Function as-is and deploy a second Cloud Function that includes only the changed API. Calls are automatically routed to the correct function.
Answers
C.
Leave the original Cloud Function as-is and deploy a second Cloud Function with the new API. Use Cloud Endpoints to provide an API gateway that exposes a versioned API.
C.
Leave the original Cloud Function as-is and deploy a second Cloud Function with the new API. Use Cloud Endpoints to provide an API gateway that exposes a versioned API.
Answers
D.
Re-deploy the Cloud Function after making code changes to support the new API. Requests for both versions of the API are fulfilled based on a version identifier included in the call.
D.
Re-deploy the Cloud Function after making code changes to support the new API. Requests for both versions of the API are fulfilled based on a version identifier included in the call.
Answers
Suggested answer: D

Question 126

Report
Export
Collapse

Your company just experienced a Google Kubernetes Engine (GKE) API outage due to a zone failure. You want to deploy a highly available GKE architecture that minimizes service interruption to users in the event of a future zone failure. What should you do?

A.
Deploy Zonal clusters
A.
Deploy Zonal clusters
Answers
B.
Deploy Regional clusters
B.
Deploy Regional clusters
Answers
C.
Deploy Multi-Zone clusters
C.
Deploy Multi-Zone clusters
Answers
D.
Deploy GKE on-premises clusters
D.
Deploy GKE on-premises clusters
Answers
Suggested answer: B

Explanation:

https://cloud.google.com/kubernetes-engine/docs/concepts/types-of-clusters#regional_clusters

A regional cluster has multiple replicas of the control plane, running in multiple zones within a given region. Nodes in a regional cluster can run in multiple zones or a single zone depending on the configured node locations. By default, GKE replicates each node pool across three zones of the control plane's region. When you create a cluster or when you add a new node pool, you can change the default configuration by specifying the zone(s) in which the cluster's nodes run. All zones must be within the same region as the control plane.

Question 127

Report
Export
Collapse

Your team develops services that run on Google Cloud. You want to process messages sent to a Pub/Sub topic, and then store them. Each message must be processed exactly once to avoid duplication of data and any data conflicts. You need to use the cheapest and most simple solution. What should you do?

A.
Process the messages with a Dataproc job, and write the output to storage.
A.
Process the messages with a Dataproc job, and write the output to storage.
Answers
B.
Process the messages with a Dataflow streaming pipeline using Apache Beam's PubSubIO package, and write the output to storage.
B.
Process the messages with a Dataflow streaming pipeline using Apache Beam's PubSubIO package, and write the output to storage.
Answers
C.
Process the messages with a Cloud Function, and write the results to a BigQuery location where you can run a job to deduplicate the data.
C.
Process the messages with a Cloud Function, and write the results to a BigQuery location where you can run a job to deduplicate the data.
Answers
D.
Retrieve the messages with a Dataflow streaming pipeline, store them in Cloud Bigtable, and use another Dataflow streaming pipeline to deduplicate messages.
D.
Retrieve the messages with a Dataflow streaming pipeline, store them in Cloud Bigtable, and use another Dataflow streaming pipeline to deduplicate messages.
Answers
Suggested answer: B

Explanation:

https://cloud.google.com/dataflow/docs/concepts/streaming-with-cloud-pubsub

Question 128

Report
Export
Collapse

You are running a containerized application on Google Kubernetes Engine. Your container images are stored in Container Registry. Your team uses CI/CD practices. You need to prevent the deployment of containers with known critical vulnerabilities. What should you do?

A.
* Use Web Security Scanner to automatically crawl your application * Review your application logs for scan results, and provide an attestation that the container is free of known critical vulnerabilities * Use Binary Authorization to implement a policy that forces the attestation to be provided before the container is deployed
A.
* Use Web Security Scanner to automatically crawl your application * Review your application logs for scan results, and provide an attestation that the container is free of known critical vulnerabilities * Use Binary Authorization to implement a policy that forces the attestation to be provided before the container is deployed
Answers
B.
* Use Web Security Scanner to automatically crawl your application * Review the scan results in the scan details page in the Cloud Console, and provide an attestation that the container is free of known critical vulnerabilities * Use Binary Authorization to implement a policy that forces the attestation to be provided before the container is deployed
B.
* Use Web Security Scanner to automatically crawl your application * Review the scan results in the scan details page in the Cloud Console, and provide an attestation that the container is free of known critical vulnerabilities * Use Binary Authorization to implement a policy that forces the attestation to be provided before the container is deployed
Answers
C.
* Enable the Container Scanning API to perform vulnerability scanning * Review vulnerability reporting in Container Registry in the Cloud Console, and provide an attestation that the container is free of known critical vulnerabilities * Use Binary Authorization to implement a policy that forces the attestation to be provided before the container is deployed
C.
* Enable the Container Scanning API to perform vulnerability scanning * Review vulnerability reporting in Container Registry in the Cloud Console, and provide an attestation that the container is free of known critical vulnerabilities * Use Binary Authorization to implement a policy that forces the attestation to be provided before the container is deployed
Answers
D.
* Enable the Container Scanning API to perform vulnerability scanning * Programmatically review vulnerability reporting through the Container Scanning API, and provide an attestation that the container is free of known critical vulnerabilities * Use Binary Authorization to implement a policy that forces the attestation to be provided before the container is deployed
D.
* Enable the Container Scanning API to perform vulnerability scanning * Programmatically review vulnerability reporting through the Container Scanning API, and provide an attestation that the container is free of known critical vulnerabilities * Use Binary Authorization to implement a policy that forces the attestation to be provided before the container is deployed
Answers
Suggested answer: D

Explanation:

https://cloud.google.com/binary-authorization/docs/creating-attestations-kritis

https://cloud.google.com/container-analysis/docs/os-overview

Question 129

Report
Export
Collapse

You have an on-premises application that authenticates to the Cloud Storage API using a user-managed service account with a user-managed key. The application connects to Cloud Storage using Private Google Access over a Dedicated Interconnect link. You discover that requests from the application to access objects in the Cloud Storage bucket are failing with a 403 Permission Denied error code. What is the likely cause of this issue?

A.
The folder structure inside the bucket and object paths have changed.
A.
The folder structure inside the bucket and object paths have changed.
Answers
B.
The permissions of the service account's predefined role have changed.
B.
The permissions of the service account's predefined role have changed.
Answers
C.
The service account key has been rotated but not updated on the application server.
C.
The service account key has been rotated but not updated on the application server.
Answers
D.
The Interconnect link from the on-premises data center to Google Cloud is experiencing a temporary outage.
D.
The Interconnect link from the on-premises data center to Google Cloud is experiencing a temporary outage.
Answers
Suggested answer: C

Question 130

Report
Export
Collapse

You are using the Cloud Client Library to upload an image in your application to Cloud Storage. Users of the application report that occasionally the upload does not complete and the client library reports an HTTP 504 Gateway Timeout error. You want to make the application more resilient to errors. What changes to the application should you make?

A.
Write an exponential backoff process around the client library call.
A.
Write an exponential backoff process around the client library call.
Answers
B.
Write a one-second wait time backoff process around the client library call.
B.
Write a one-second wait time backoff process around the client library call.
Answers
C.
Design a retry button in the application and ask users to click if the error occurs.
C.
Design a retry button in the application and ask users to click if the error occurs.
Answers
D.
Create a queue for the object and inform the users that the application will try again in 10 minutes.
D.
Create a queue for the object and inform the users that the application will try again in 10 minutes.
Answers
Suggested answer: A
Total 265 questions
Go to page: of 27
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms