ExamGecko
Login
Home / Google / Professional Cloud Developer / List of questions
Ask Question

Google Professional Cloud Developer Practice Test - Questions Answers, Page 20

List of questions

Question 191

Report
Export
Collapse

You are designing an application that consists of several microservices. Each microservice has its own RESTful API and will be deployed as a separate Kubernetes Service. You want to ensure that the consumers of these APIs aren't impacted when there is a change to your API, and also ensure that third-party systems aren't interrupted when new versions of the API are released. How should you configure the connection to the application following Google-recommended best practices?

Use an Ingress that uses the API's URL to route requests to the appropriate backend.
Use an Ingress that uses the API's URL to route requests to the appropriate backend.
Leverage a Service Discovery system, and connect to the backend specified by the request.
Leverage a Service Discovery system, and connect to the backend specified by the request.
Use multiple clusters, and use DNS entries to route requests to separate versioned backends.
Use multiple clusters, and use DNS entries to route requests to separate versioned backends.
Combine multiple versions in the same service, and then specify the API version in the POST request.
Combine multiple versions in the same service, and then specify the API version in the POST request.
Suggested answer: D
asked 18/09/2024
Higher System Consultancy
41 questions

Question 192

Report
Export
Collapse

Your team is building an application for a financial institution. The application's frontend runs on Compute Engine, and the data resides in Cloud SQL and one Cloud Storage bucket. The application will collect data containing PII, which will be stored in the Cloud SQL database and the Cloud Storage bucket. You need to secure the PII data. What should you do?

1) Create the relevant firewall rules to allow only the frontend to communicate with the Cloud SQL database 2) Using IAM, allow only the frontend service account to access the Cloud Storage bucket
1) Create the relevant firewall rules to allow only the frontend to communicate with the Cloud SQL database 2) Using IAM, allow only the frontend service account to access the Cloud Storage bucket
1) Create the relevant firewall rules to allow only the frontend to communicate with the Cloud SQL database 2) Enable private access to allow the frontend to access the Cloud Storage bucket privately
1) Create the relevant firewall rules to allow only the frontend to communicate with the Cloud SQL database 2) Enable private access to allow the frontend to access the Cloud Storage bucket privately
1) Configure a private IP address for Cloud SQL 2) Use VPC-SC to create a service perimeter 3) Add the Cloud SQL database and the Cloud Storage bucket to the same service perimeter
1) Configure a private IP address for Cloud SQL 2) Use VPC-SC to create a service perimeter 3) Add the Cloud SQL database and the Cloud Storage bucket to the same service perimeter
1) Configure a private IP address for Cloud SQL 2) Use VPC-SC to create a service perimeter 3) Add the Cloud SQL database and the Cloud Storage bucket to different service perimeters
1) Configure a private IP address for Cloud SQL 2) Use VPC-SC to create a service perimeter 3) Add the Cloud SQL database and the Cloud Storage bucket to different service perimeters
Suggested answer: C
asked 18/09/2024
Frank Acosta
38 questions

Question 193

Report
Export
Collapse

You are designing a chat room application that will host multiple rooms and retain the message history for each room. You have selected Firestore as your database. How should you represent the data in Firestore?

Create a collection for the rooms. For each room, create a document that lists the contents of the messages
Create a collection for the rooms. For each room, create a document that lists the contents of the messages
Create a collection for the rooms. For each room, create a collection that contains a document for each message
Create a collection for the rooms. For each room, create a collection that contains a document for each message
Create a collection for the rooms. For each room, create a document that contains a collection for documents, each of which contains a message.
Create a collection for the rooms. For each room, create a document that contains a collection for documents, each of which contains a message.
Create a collection for the rooms, and create a document for each room. Create a separate collection for messages, with one document per message. Each room's document contains a list of references to the messages.
Create a collection for the rooms, and create a document for each room. Create a separate collection for messages, with one document per message. Each room's document contains a list of references to the messages.
Suggested answer: C

Explanation:

https://firebase.google.com/docs/firestore/data-model#hierarchical-data

asked 18/09/2024
Dewald Van Schalkwyk
32 questions

Question 194

Report
Export
Collapse

You are developing an application that will handle requests from end users. You need to secure a Cloud Function called by the application to allow authorized end users to authenticate to the function via the application while restricting access to unauthorized users. You will integrate Google Sign-In as part of the solution and want to follow Google-recommended best practices. What should you do?

Deploy from a source code repository and grant users the roles/cloudfunctions.viewer role.
Deploy from a source code repository and grant users the roles/cloudfunctions.viewer role.
Deploy from a source code repository and grant users the roles/cloudfunctions.invoker role
Deploy from a source code repository and grant users the roles/cloudfunctions.invoker role
Deploy from your local machine using gcloud and grant users the roles/cloudfunctions.admin role
Deploy from your local machine using gcloud and grant users the roles/cloudfunctions.admin role
Deploy from your local machine using gcloud and grant users the roles/cloudfunctions.developer role
Deploy from your local machine using gcloud and grant users the roles/cloudfunctions.developer role
Suggested answer: C
asked 18/09/2024
Fathy Refay
42 questions

Question 195

Report
Export
Collapse

You are running a web application on Google Kubernetes Engine that you inherited. You want to determine whether the application is using libraries with known vulnerabilities or is vulnerable to XSS attacks. Which service should you use?

Google Cloud Armor
Google Cloud Armor
Debugger
Debugger
Web Security Scanner
Web Security Scanner
Error Reporting
Error Reporting
Suggested answer: C

Explanation:

https://cloud.google.com/security-command-center/docs/concepts-web-security-scanner-overview

Web Security Scanner identifies security vulnerabilities in your App Engine, Google Kubernetes Engine (GKE), and Compute Engine web applications. It crawls your application, following all links within the scope of your starting URLs, and attempts to exercise as many user inputs and event handlers as possible.

asked 18/09/2024
ERIK BURDETT
42 questions

Question 196

Report
Export
Collapse

You are building a highly available and globally accessible application that will serve static content to users. You need to configure the storage and serving components. You want to minimize management overhead and latency while maximizing reliability for users. What should you do?

1) Create a managed instance group. Replicate the static content across the virtual machines (VMs) 2) Create an external HTTP(S) load balancer. 3) Enable Cloud CDN, and send traffic to the managed instance group.
1) Create a managed instance group. Replicate the static content across the virtual machines (VMs) 2) Create an external HTTP(S) load balancer. 3) Enable Cloud CDN, and send traffic to the managed instance group.
1) Create an unmanaged instance group. Replicate the static content across the VMs. 2) Create an external HTTP(S) load balancer 3) Enable Cloud CDN, and send traffic to the unmanaged instance group.
1) Create an unmanaged instance group. Replicate the static content across the VMs. 2) Create an external HTTP(S) load balancer 3) Enable Cloud CDN, and send traffic to the unmanaged instance group.
1) Create a Standard storage class, regional Cloud Storage bucket. Put the static content in the bucket 2) Reserve an external IP address, and create an external HTTP(S) load balancer 3) Enable Cloud CDN, and send traffic to your backend bucket
1) Create a Standard storage class, regional Cloud Storage bucket. Put the static content in the bucket 2) Reserve an external IP address, and create an external HTTP(S) load balancer 3) Enable Cloud CDN, and send traffic to your backend bucket
1) Create a Standard storage class, multi-regional Cloud Storage bucket. Put the static content in the bucket. 2) Reserve an external IP address, and create an external HTTP(S) load balancer. 3) Enable Cloud CDN, and send traffic to your backend bucket.
1) Create a Standard storage class, multi-regional Cloud Storage bucket. Put the static content in the bucket. 2) Reserve an external IP address, and create an external HTTP(S) load balancer. 3) Enable Cloud CDN, and send traffic to your backend bucket.
Suggested answer: D
asked 18/09/2024
Akash Patel
40 questions

Question 197

Report
Export
Collapse

You are writing from a Go application to a Cloud Spanner database. You want to optimize your application's performance using Google-recommended best practices. What should you do?

Write to Cloud Spanner using Cloud Client Libraries.
Write to Cloud Spanner using Cloud Client Libraries.
Write to Cloud Spanner using Google API Client Libraries
Write to Cloud Spanner using Google API Client Libraries
Write to Cloud Spanner using a custom gRPC client library.
Write to Cloud Spanner using a custom gRPC client library.
Write to Cloud Spanner using a third-party HTTP client library.
Write to Cloud Spanner using a third-party HTTP client library.
Suggested answer: A

Explanation:

https://cloud.google.com/apis/docs/cloud-client-libraries

''Cloud Client Libraries are the recommended option for accessing Cloud APIs programmatically, where available. Cloud Client Libraries use the latest client library models''

https://cloud.google.com/apis/docs/client-libraries-explained

https://cloud.google.com/go/docs/reference

asked 18/09/2024
Johnny Tien
47 questions

Question 198

Report
Export
Collapse

You have an application deployed in Google Kubernetes Engine (GKE). You need to update the application to make authorized requests to Google Cloud managed services. You want this to be a one-time setup, and you need to follow security best practices of auto-rotating your security keys and storing them in an encrypted store. You already created a service account with appropriate access to the Google Cloud service. What should you do next?

Become a Premium Member for full access
  Unlock Premium Member

Question 199

Report
Export
Collapse

You are planning to deploy hundreds of microservices in your Google Kubernetes Engine (GKE) cluster. How should you secure communication between the microservices on GKE using a managed service?

Become a Premium Member for full access
  Unlock Premium Member

Question 200

Report
Export
Collapse

You are developing an application that will store and access sensitive unstructured data objects in a Cloud Storage bucket. To comply with regulatory requirements, you need to ensure that all data objects are available for at least 7 years after their initial creation. Objects created more than 3 years ago are accessed very infrequently (less than once a year). You need to configure object storage while ensuring that storage cost is optimized. What should you do? (Choose two.)

Become a Premium Member for full access
  Unlock Premium Member
Total 265 questions
Go to page: of 27
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

You work at a rapidly growing financial technology startup. You manage the payment processing application written in Go and hosted on Cloud Run in the Singapore region (asia-southeast1). The payment processing application processes data stored in a Cloud Storage bucket that is also located in the Singapore region. The startup plans to expand further into the Asia Pacific region. You plan to deploy the Payment Gateway in Jakarta, Hong Kong, and Taiwan over the next six months. Each location has data residency requirements that require customer data to reside in the country where the transaction was made. You want to minimize the cost of these deployments. What should you do?
HipLocal wants to reduce the number of on-call engineers and eliminate manual scaling. Which two services should they choose? (Choose two.)
You need to migrate a standalone Java application running in an on-premises Linux virtual machine (VM) to Google Cloud in a cost-effective manner. You decide not to take the lift-and-shift approach, and instead you plan to modernize the application by converting it to a container. How should you accomplish this task?
You need to redesign the ingestion of audit events from your authentication service to allow it to handle a large increase in traffic. Currently, the audit service and the authentication system run in the same Compute Engine virtual machine. You plan to use the following Google Cloud tools in the new architecture: Multiple Compute Engine machines, each running an instance of the authentication service Multiple Compute Engine machines, each running an instance of the audit service Pub/Sub to send the events from the authentication services. How should you set up the topics and subscriptions to ensure that the system can handle a large volume of messages and can scale efficiently?
You are deploying a microservices application to Google Kubernetes Engine (GKE). The application will receive daily updates. You expect to deploy a large number of distinct containers that will run on the Linux operating system (OS). You want to be alerted to any known OS vulnerabilities in the new containers. You want to follow Google-recommended best practices. What should you do?
Your team detected a spike of errors in an application running on Cloud Run in your production project. The application is configured to read messages from Pub/Sub topic A, process the messages, and write the messages to topic B. You want to conduct tests to identify the cause of the errors. You can use a set of mock messages for testing. What should you do?
You manage a microservice-based ecommerce platform on Google Cloud that sends confirmation emails to a third-party email service provider using a Cloud Function. Your company just launched a marketing campaign, and some customers are reporting that they have not received order confirmation emails. You discover that the services triggering the Cloud Function are receiving HTTP 500 errors. You need to change the way emails are handled to minimize email loss. What should you do?
You have an application running in a production Google Kubernetes Engine (GKE) cluster. You use Cloud Deploy to automatically deploy your application to your production GKE cluster. As part of your development process: you are planning to make frequent changes to the applications source code and need to select the tools to test the changes before pushing them to your remote source code repository. Your toolset must meet the following requirements: * Test frequent local changes automatically. * Local deployment emulates production deployment. Which tools should you use to test building and running a container on your laptop using minimal resources'?
You are building a highly available and globally accessible application that will serve static content to users. You need to configure the storage and serving components. You want to minimize management overhead and latency while maximizing reliability for users. What should you do?
You are building a mobile application that will store hierarchical data structures in a database. The application will enable users working offline to sync changes when they are back online. A backend service will enrich the data in the database using a service account. The application is expected to be very popular and needs to scale seamlessly and securely. Which database and IAM role should you use?