ExamGecko
Login
Ask Question

Google Professional Cloud DevOps Engineer Practice Test - Questions Answers, Page 7

List of questions

Question 61

Report
Export
Collapse

You support a Node.js application running on Google Kubernetes Engine (GKE) in production. The application makes several HTTP requests to dependent applications. You want to anticipate which dependent applications might cause performance issues. What should you do?

Instrument all applications with Stackdriver Profiler.
Instrument all applications with Stackdriver Profiler.
Instrument all applications with Stackdriver Trace and review inter-service HTTP requests.
Instrument all applications with Stackdriver Trace and review inter-service HTTP requests.
Use Stackdriver Debugger to review the execution of logic within each application to instrument all applications.
Use Stackdriver Debugger to review the execution of logic within each application to instrument all applications.
Modify the Node.js application to log HTTP request and response times to dependent applications. Use Stackdriver Logging to find dependent applications that are performing poorly.
Modify the Node.js application to log HTTP request and response times to dependent applications. Use Stackdriver Logging to find dependent applications that are performing poorly.
Suggested answer: B
asked 18/09/2024
Aline Oliveira
40 questions

Question 62

Report
Export
Collapse

You use Spinnaker to deploy your application and have created a canary deployment stage in the pipeline. Your application has an in-memory cache that loads objects at start time. You want to automate the comparison of the canary version against the production version. How should you configure the canary analysis?

Compare the canary with a new deployment of the current production version.
Compare the canary with a new deployment of the current production version.
Compare the canary with a new deployment of the previous production version.
Compare the canary with a new deployment of the previous production version.
Compare the canary with the existing deployment of the current production version.
Compare the canary with the existing deployment of the current production version.
Compare the canary with the average performance of a sliding window of previous production versions.
Compare the canary with the average performance of a sliding window of previous production versions.
Suggested answer: A

Explanation:

https://cloud.google.com/architecture/automated-canary-analysis-kubernetes-engine-spinnaker

https://spinnaker.io/guides/user/canary/best-practices/#compare-canary-against-baseline-not-against-production

asked 18/09/2024
Sharanjit Kareer
41 questions

Question 63

Report
Export
Collapse

Your team of Infrastructure DevOps Engineers is growing, and you are starting to use Terraform to manage infrastructure. You need a way to implement code versioning and to share code with other team members. What should you do?

Store the Terraform code in a version-control system. Establish procedures for pushing new versions and merging with the master.
Store the Terraform code in a version-control system. Establish procedures for pushing new versions and merging with the master.
Store the Terraform code in a network shared folder with child folders for each version release. Ensure that everyone works on different files.
Store the Terraform code in a network shared folder with child folders for each version release. Ensure that everyone works on different files.
Store the Terraform code in a Cloud Storage bucket using object versioning. Give access to the bucket to every team member so they can download the files.
Store the Terraform code in a Cloud Storage bucket using object versioning. Give access to the bucket to every team member so they can download the files.
Store the Terraform code in a shared Google Drive folder so it syncs automatically to every team member's computer. Organize files with a naming convention that identifies each new version.
Store the Terraform code in a shared Google Drive folder so it syncs automatically to every team member's computer. Organize files with a naming convention that identifies each new version.
Suggested answer: A

Explanation:

https://www.terraform.io/docs/cloud/guides/recommended-practices/part3.3.html

asked 18/09/2024
Courage Marume
35 questions

Question 64

Report
Export
Collapse

You are using Stackdriver to monitor applications hosted on Google Cloud Platform (GCP). You recently deployed a new application, but its logs are not appearing on the Stackdriver dashboard.

You need to troubleshoot the issue. What should you do?

Confirm that the Stackdriver agent has been installed in the hosting virtual machine.
Confirm that the Stackdriver agent has been installed in the hosting virtual machine.
Confirm that your account has the proper permissions to use the Stackdriver dashboard.
Confirm that your account has the proper permissions to use the Stackdriver dashboard.
Confirm that port 25 has been opened in the firewall to allow messages through to Stackdriver.
Confirm that port 25 has been opened in the firewall to allow messages through to Stackdriver.
Confirm that the application is using the required client library and the service account key has proper permissions.
Confirm that the application is using the required client library and the service account key has proper permissions.
Suggested answer: A

Explanation:

https://cloud.google.com/monitoring/agent/monitoring/troubleshooting#checklist

asked 18/09/2024
Grzegorz GÅ‚ogowski
32 questions

Question 65

Report
Export
Collapse

Your organization recently adopted a container-based workflow for application development. Your team develops numerous applications that are deployed continuously through an automated build pipeline to the production environment. A recent security audit alerted your team that the code pushed to production could contain vulnerabilities and that the existing tooling around virtual machine (VM) vulnerabilities no longer applies to the containerized environment. You need to ensure the security and patch level of all code running through the pipeline. What should you do?

Set up Container Analysis to scan and report Common Vulnerabilities and Exposures.
Set up Container Analysis to scan and report Common Vulnerabilities and Exposures.
Configure the containers in the build pipeline to always update themselves before release.
Configure the containers in the build pipeline to always update themselves before release.
Reconfigure the existing operating system vulnerability software to exist inside the container.
Reconfigure the existing operating system vulnerability software to exist inside the container.
Implement static code analysis tooling against the Docker files used to create the containers.
Implement static code analysis tooling against the Docker files used to create the containers.
Suggested answer: D

Explanation:

https://cloud.google.com/binary-authorization

Binary Authorization is a deploy-time security control that ensures only trusted container images are deployed on Google Kubernetes Engine (GKE) or Cloud Run. With Binary Authorization, you can require images to be signed by trusted authorities during the development process and then enforce signature validation when deploying. By enforcing validation, you can gain tighter control over your container environment by ensuring only verified images are integrated into the build-and-release process.

asked 18/09/2024
Nicholas Stoner
41 questions

Question 66

Report
Export
Collapse

You use Cloud Build to build your application. You want to reduce the build time while minimizing cost and development effort. What should you do?

Use Cloud Storage to cache intermediate artifacts.
Use Cloud Storage to cache intermediate artifacts.
Run multiple Jenkins agents to parallelize the build.
Run multiple Jenkins agents to parallelize the build.
Use multiple smaller build steps to minimize execution time.
Use multiple smaller build steps to minimize execution time.
Use larger Cloud Build virtual machines (VMs) by using the machine-type option.
Use larger Cloud Build virtual machines (VMs) by using the machine-type option.
Suggested answer: C

Explanation:

https://cloud.google.com/storage/docs/best-practices

. https://cloud.google.com/build/docs/speeding-up-builds#caching_directories_with_google_cloud_storage

Caching directories with Google Cloud Storage To increase the speed of a build, reuse the results from a previous build. You can copy the results of a previous build to a Google Cloud Storage bucket, use the results for faster calculation, and then copy the new results back to the bucket. Use this method when your build takes a long time and produces a small number of files that does not take time to copy to and from Google Cloud Storage.

upvoted2times

asked 18/09/2024
Ismaiel Al-Mufleh
47 questions

Question 67

Report
Export
Collapse

You support a web application that is hosted on Compute Engine. The application provides a booking service for thousands of users. Shortly after the release of a new feature, your monitoring dashboard shows that all users are experiencing latency at login. You want to mitigate the impact of the incident on the users of your service. What should you do first?

Roll back the recent release.
Roll back the recent release.
Review the Stackdriver monitoring.
Review the Stackdriver monitoring.
Upsize the virtual machines running the login services.
Upsize the virtual machines running the login services.
Deploy a new release to see whether it fixes the problem.
Deploy a new release to see whether it fixes the problem.
Suggested answer: C

Explanation:

Rollback to previous stable version. Then you need to find what is causing the issue.

asked 18/09/2024
Nenad Celikovic
38 questions

Question 68

Report
Export
Collapse

You are deploying an application that needs to access sensitive information. You need to ensure that this information is encrypted and the risk of exposure is minimal if a breach occurs. What should you do?

Store the encryption keys in Cloud Key Management Service (KMS) and rotate the keys frequently
Store the encryption keys in Cloud Key Management Service (KMS) and rotate the keys frequently
Inject the secret at the time of instance creation via an encrypted configuration management system.
Inject the secret at the time of instance creation via an encrypted configuration management system.
Integrate the application with a Single sign-on (SSO) system and do not expose secrets to the application
Integrate the application with a Single sign-on (SSO) system and do not expose secrets to the application
Leverage a continuous build pipeline that produces multiple versions of the secret for each instance of the application.
Leverage a continuous build pipeline that produces multiple versions of the secret for each instance of the application.
Suggested answer: A

Explanation:

https://cloud.google.com/security-key-management

asked 18/09/2024
Todd Hekkema
42 questions

Question 69

Report
Export
Collapse

You encounter a large number of outages in the production systems you support. You receive alerts for all the outages that wake you up at night. The alerts are due to unhealthy systems that are automatically restarted within a minute. You want to set up a process that would prevent staff burnout while following Site Reliability Engineering practices. What should you do?

Eliminate unactionable alerts.
Eliminate unactionable alerts.
Create an incident report for each of the alerts.
Create an incident report for each of the alerts.
Distribute the alerts to engineers in different time zones.
Distribute the alerts to engineers in different time zones.
Redefine the related Service Level Objective so that the error budget is not exhausted.
Redefine the related Service Level Objective so that the error budget is not exhausted.
Suggested answer: A

Explanation:

Eliminate bad monitoring : Unactionable alerts (i.e., spam) https://cloud.google.com/blog/products/management-tools/meeting-reliability-challenges-with-sre-principles

agree with kyubiblaze about having to remove unactionable items aka spam: 'good monitoring alerts on actionable problems' @ https://cloud.google.com/blog/products/management-tools/meeting-reliability-challenges-with-sre-principles

asked 18/09/2024
Velmurugan P
42 questions

Question 70

Report
Export
Collapse

You have migrated an e-commerce application to Google Cloud Platform (GCP). You want to prepare the application for the upcoming busy season. What should you do first to prepare for the busy season?

Load teat the application to profile its performance for scaling.
Load teat the application to profile its performance for scaling.
Enable AutoScaling on the production clusters, in case there is growth.
Enable AutoScaling on the production clusters, in case there is growth.
Pre-provision double the compute power used last season, expecting growth.
Pre-provision double the compute power used last season, expecting growth.
Create a runbook on inflating the disaster recovery (DR) environment if there is growth.
Create a runbook on inflating the disaster recovery (DR) environment if there is growth.
Suggested answer: A

Explanation:

https://cloud.google.com/blog/topics/retail/preparing-for-peak-holiday-season-while-wfh

asked 18/09/2024
Kristian Gutierrez
47 questions
Total 166 questions
Go to page: of 17
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

You are creating a CI/CD pipeline to perform Terraform deployments of Google Cloud resources Your CI/CD tooling is running in Google Kubernetes Engine (GKE) and uses an ephemeral Pod for each pipeline run You must ensure that the pipelines that run in the Pods have the appropriate Identity and Access Management (1AM) permissions to perform the Terraform deployments You want to follow Google-recommended practices for identity management What should you do? Choose 2 answers
The new version of your containerized application has been tested and is ready to be deployed to production on Google Kubernetes Engine (GKE) You could not fully load-test the new version in your pre-production environment and you need to ensure that the application does not have performance problems after deployment Your deployment must be automated What should you do?
You are creating Cloud Logging sinks to export log entries from Cloud Logging to BigQuery for future analysis Your organization has a Google Cloud folder named Dev that contains development projects and a folder named Prod that contains production projects Log entries for development projects must be exported to dev_dataset. and log entries for production projects must be exported to prod_dataset You need to minimize the number of log sinks created and you want to ensure that the log sinks apply to future projects What should you do?
Your team is designing a new application for deployment into Google Kubernetes Engine (GKE). You need to set up monitoring to collect and aggregate various application-level metrics in a centralized location. You want to use Google Cloud Platform services while minimizing the amount of work required to set up monitoring. What should you do?
You are managing an application that exposes an HTTP endpoint without using a load balancer. The latency of the HTTP responses is important for the user experience. You want to understand what HTTP latencies all of your users are experiencing. You use Stackdriver Monitoring. What should you do?
You are performing a semiannual capacity planning exercise for your flagship service. You expect a service user growth rate of 10% month-over-month over the next six months. Your service is fully containerized and runs on Google Cloud Platform (GCP). using a Google Kubernetes Engine (GKE) Standard regional cluster on three zones with cluster autoscaler enabled. You currently consume about 30% of your total deployed CPU capacity, and you require resilience against the failure of a zone. You want to ensure that your users experience minimal negative impact as a result of this growth or as a result of zone failure, while avoiding unnecessary costs. How should you prepare to handle the predicted growth?
You are managing an application that runs in Compute Engine The application uses a custom HTTP server to expose an API that is accessed by other applications through an internal TCP/UDP load balancer A firewall rule allows access to the API port from 0.0.0-0/0. You need to configure Cloud Logging to log each IP address that accesses the API by using the fewest number of steps What should you do Bret?
Your company runs applications in Google Kubernetes Engine (GKE). Several applications rely on ephemeral volumes. You noticed some applications were unstable due to the DiskPressure node condition on the worker nodes. You need to identify which Pods are causing the issue, but you do not have execute access to workloads and nodes. What should you do?
You need to build a CI/CD pipeline for a containerized application in Google Cloud Your development team uses a central Git repository for trunk-based development You want to run all your tests in the pipeline for any new versions of the application to improve the quality What should you do?
You support an application running on App Engine. The application is used globally and accessed from various device types. You want to know the number of connections. You are using Stackdriver Monitoring for App Engine. What metric should you use?