ExamGecko
Home / Google / Professional Cloud Developer / List of questions
Ask Question

Google Professional Cloud Developer Practice Test - Questions Answers, Page 20

List of questions

Question 191

Report
Export
Collapse

You are designing an application that consists of several microservices. Each microservice has its own RESTful API and will be deployed as a separate Kubernetes Service. You want to ensure that the consumers of these APIs aren't impacted when there is a change to your API, and also ensure that third-party systems aren't interrupted when new versions of the API are released. How should you configure the connection to the application following Google-recommended best practices?

Use an Ingress that uses the API's URL to route requests to the appropriate backend.
Use an Ingress that uses the API's URL to route requests to the appropriate backend.
Leverage a Service Discovery system, and connect to the backend specified by the request.
Leverage a Service Discovery system, and connect to the backend specified by the request.
Use multiple clusters, and use DNS entries to route requests to separate versioned backends.
Use multiple clusters, and use DNS entries to route requests to separate versioned backends.
Combine multiple versions in the same service, and then specify the API version in the POST request.
Combine multiple versions in the same service, and then specify the API version in the POST request.
Suggested answer: D
asked 18/09/2024
Higher System Consultancy
41 questions

Question 192

Report
Export
Collapse

Your team is building an application for a financial institution. The application's frontend runs on Compute Engine, and the data resides in Cloud SQL and one Cloud Storage bucket. The application will collect data containing PII, which will be stored in the Cloud SQL database and the Cloud Storage bucket. You need to secure the PII data. What should you do?

1) Create the relevant firewall rules to allow only the frontend to communicate with the Cloud SQL database 2) Using IAM, allow only the frontend service account to access the Cloud Storage bucket
1) Create the relevant firewall rules to allow only the frontend to communicate with the Cloud SQL database 2) Using IAM, allow only the frontend service account to access the Cloud Storage bucket
1) Create the relevant firewall rules to allow only the frontend to communicate with the Cloud SQL database 2) Enable private access to allow the frontend to access the Cloud Storage bucket privately
1) Create the relevant firewall rules to allow only the frontend to communicate with the Cloud SQL database 2) Enable private access to allow the frontend to access the Cloud Storage bucket privately
1) Configure a private IP address for Cloud SQL 2) Use VPC-SC to create a service perimeter 3) Add the Cloud SQL database and the Cloud Storage bucket to the same service perimeter
1) Configure a private IP address for Cloud SQL 2) Use VPC-SC to create a service perimeter 3) Add the Cloud SQL database and the Cloud Storage bucket to the same service perimeter
1) Configure a private IP address for Cloud SQL 2) Use VPC-SC to create a service perimeter 3) Add the Cloud SQL database and the Cloud Storage bucket to different service perimeters
1) Configure a private IP address for Cloud SQL 2) Use VPC-SC to create a service perimeter 3) Add the Cloud SQL database and the Cloud Storage bucket to different service perimeters
Suggested answer: C
asked 18/09/2024
Frank Acosta
38 questions

Question 193

Report
Export
Collapse

You are designing a chat room application that will host multiple rooms and retain the message history for each room. You have selected Firestore as your database. How should you represent the data in Firestore?

Create a collection for the rooms. For each room, create a document that lists the contents of the messages
Create a collection for the rooms. For each room, create a document that lists the contents of the messages
Create a collection for the rooms. For each room, create a collection that contains a document for each message
Create a collection for the rooms. For each room, create a collection that contains a document for each message
Create a collection for the rooms. For each room, create a document that contains a collection for documents, each of which contains a message.
Create a collection for the rooms. For each room, create a document that contains a collection for documents, each of which contains a message.
Create a collection for the rooms, and create a document for each room. Create a separate collection for messages, with one document per message. Each room's document contains a list of references to the messages.
Create a collection for the rooms, and create a document for each room. Create a separate collection for messages, with one document per message. Each room's document contains a list of references to the messages.
Suggested answer: C

Explanation:

https://firebase.google.com/docs/firestore/data-model#hierarchical-data

asked 18/09/2024
Dewald Van Schalkwyk
32 questions

Question 194

Report
Export
Collapse

You are developing an application that will handle requests from end users. You need to secure a Cloud Function called by the application to allow authorized end users to authenticate to the function via the application while restricting access to unauthorized users. You will integrate Google Sign-In as part of the solution and want to follow Google-recommended best practices. What should you do?

Deploy from a source code repository and grant users the roles/cloudfunctions.viewer role.
Deploy from a source code repository and grant users the roles/cloudfunctions.viewer role.
Deploy from a source code repository and grant users the roles/cloudfunctions.invoker role
Deploy from a source code repository and grant users the roles/cloudfunctions.invoker role
Deploy from your local machine using gcloud and grant users the roles/cloudfunctions.admin role
Deploy from your local machine using gcloud and grant users the roles/cloudfunctions.admin role
Deploy from your local machine using gcloud and grant users the roles/cloudfunctions.developer role
Deploy from your local machine using gcloud and grant users the roles/cloudfunctions.developer role
Suggested answer: C
asked 18/09/2024
Fathy Refay
42 questions

Question 195

Report
Export
Collapse

You are running a web application on Google Kubernetes Engine that you inherited. You want to determine whether the application is using libraries with known vulnerabilities or is vulnerable to XSS attacks. Which service should you use?

Google Cloud Armor
Google Cloud Armor
Debugger
Debugger
Web Security Scanner
Web Security Scanner
Error Reporting
Error Reporting
Suggested answer: C

Explanation:

https://cloud.google.com/security-command-center/docs/concepts-web-security-scanner-overview

Web Security Scanner identifies security vulnerabilities in your App Engine, Google Kubernetes Engine (GKE), and Compute Engine web applications. It crawls your application, following all links within the scope of your starting URLs, and attempts to exercise as many user inputs and event handlers as possible.

asked 18/09/2024
ERIK BURDETT
42 questions

Question 196

Report
Export
Collapse

You are building a highly available and globally accessible application that will serve static content to users. You need to configure the storage and serving components. You want to minimize management overhead and latency while maximizing reliability for users. What should you do?

1) Create a managed instance group. Replicate the static content across the virtual machines (VMs) 2) Create an external HTTP(S) load balancer. 3) Enable Cloud CDN, and send traffic to the managed instance group.
1) Create a managed instance group. Replicate the static content across the virtual machines (VMs) 2) Create an external HTTP(S) load balancer. 3) Enable Cloud CDN, and send traffic to the managed instance group.
1) Create an unmanaged instance group. Replicate the static content across the VMs. 2) Create an external HTTP(S) load balancer 3) Enable Cloud CDN, and send traffic to the unmanaged instance group.
1) Create an unmanaged instance group. Replicate the static content across the VMs. 2) Create an external HTTP(S) load balancer 3) Enable Cloud CDN, and send traffic to the unmanaged instance group.
1) Create a Standard storage class, regional Cloud Storage bucket. Put the static content in the bucket 2) Reserve an external IP address, and create an external HTTP(S) load balancer 3) Enable Cloud CDN, and send traffic to your backend bucket
1) Create a Standard storage class, regional Cloud Storage bucket. Put the static content in the bucket 2) Reserve an external IP address, and create an external HTTP(S) load balancer 3) Enable Cloud CDN, and send traffic to your backend bucket
1) Create a Standard storage class, multi-regional Cloud Storage bucket. Put the static content in the bucket. 2) Reserve an external IP address, and create an external HTTP(S) load balancer. 3) Enable Cloud CDN, and send traffic to your backend bucket.
1) Create a Standard storage class, multi-regional Cloud Storage bucket. Put the static content in the bucket. 2) Reserve an external IP address, and create an external HTTP(S) load balancer. 3) Enable Cloud CDN, and send traffic to your backend bucket.
Suggested answer: D
asked 18/09/2024
Akash Patel
40 questions

Question 197

Report
Export
Collapse

You are writing from a Go application to a Cloud Spanner database. You want to optimize your application's performance using Google-recommended best practices. What should you do?

Write to Cloud Spanner using Cloud Client Libraries.
Write to Cloud Spanner using Cloud Client Libraries.
Write to Cloud Spanner using Google API Client Libraries
Write to Cloud Spanner using Google API Client Libraries
Write to Cloud Spanner using a custom gRPC client library.
Write to Cloud Spanner using a custom gRPC client library.
Write to Cloud Spanner using a third-party HTTP client library.
Write to Cloud Spanner using a third-party HTTP client library.
Suggested answer: A

Explanation:

https://cloud.google.com/apis/docs/cloud-client-libraries

''Cloud Client Libraries are the recommended option for accessing Cloud APIs programmatically, where available. Cloud Client Libraries use the latest client library models''

https://cloud.google.com/apis/docs/client-libraries-explained

https://cloud.google.com/go/docs/reference

asked 18/09/2024
Johnny Tien
47 questions

Question 198

Report
Export
Collapse

You have an application deployed in Google Kubernetes Engine (GKE). You need to update the application to make authorized requests to Google Cloud managed services. You want this to be a one-time setup, and you need to follow security best practices of auto-rotating your security keys and storing them in an encrypted store. You already created a service account with appropriate access to the Google Cloud service. What should you do next?

Become a Premium Member for full access
  Unlock Premium Member

Question 199

Report
Export
Collapse

You are planning to deploy hundreds of microservices in your Google Kubernetes Engine (GKE) cluster. How should you secure communication between the microservices on GKE using a managed service?

Become a Premium Member for full access
  Unlock Premium Member

Question 200

Report
Export
Collapse

You are developing an application that will store and access sensitive unstructured data objects in a Cloud Storage bucket. To comply with regulatory requirements, you need to ensure that all data objects are available for at least 7 years after their initial creation. Objects created more than 3 years ago are accessed very infrequently (less than once a year). You need to configure object storage while ensuring that storage cost is optimized. What should you do? (Choose two.)

Become a Premium Member for full access
  Unlock Premium Member
Total 265 questions
Go to page: of 27
Search

Related questions