Google Professional-Cloud-Architect Exam Practice Questions (P. 5)
- Full Access (551 questions)
- Six months of Premium Access
- Access to one million comments
- Seamless ChatGPT Integration
- Ability to download PDF files
- Anki Flashcard files for revision
- No Captcha & No AdSense
- Advanced Exam Configuration
Question #41
Your customer support tool logs all email and chat conversations to Cloud Bigtable for retention and analysis. What is the recommended approach for sanitizing this data of personally identifiable information or payment card information before initial storage?
- AHash all data using SHA256
- BEncrypt all data using elliptic curve cryptography
- CDe-identify the data with the Cloud Data Loss Prevention APIMost Voted
- DUse regular expressions to find and redact phone numbers, email addresses, and credit card numbers
Correct Answer:
C
Reference:
https://cloud.google.com/solutions/pci-dss-compliance-in-gcp#using_data_loss_prevention_api_to_sanitize_data
C
Reference:
https://cloud.google.com/solutions/pci-dss-compliance-in-gcp#using_data_loss_prevention_api_to_sanitize_data
send
light_mode
delete
Question #42
You are using Cloud Shell and need to install a custom utility for use in a few weeks. Where can you store the file so it is in the default execution path and persists across sessions?
send
light_mode
delete
Question #43
You want to create a private connection between your instances on Compute Engine and your on-premises data center. You require a connection of at least 20
Gbps. You want to follow Google-recommended practices. How should you set up the connection?
Gbps. You want to follow Google-recommended practices. How should you set up the connection?
- ACreate a VPC and connect it to your on-premises data center using Dedicated Interconnect.Most Voted
- BCreate a VPC and connect it to your on-premises data center using a single Cloud VPN.
- CCreate a Cloud Content Delivery Network (Cloud CDN) and connect it to your on-premises data center using Dedicated Interconnect.
- DCreate a Cloud Content Delivery Network (Cloud CDN) and connect it to your on-premises datacenter using a single Cloud VPN.
Correct Answer:
A
A
send
light_mode
delete
Question #44
You are analyzing and defining business processes to support your startup's trial usage of GCP, and you don't yet know what consumer demand for your product will be. Your manager requires you to minimize GCP service costs and adhere to Google best practices. What should you do?
- AUtilize free tier and sustained use discounts. Provision a staff position for service cost management.
- BUtilize free tier and sustained use discounts. Provide training to the team about service cost management.Most Voted
- CUtilize free tier and committed use discounts. Provision a staff position for service cost management.
- DUtilize free tier and committed use discounts. Provide training to the team about service cost management.
Correct Answer:
B
B
send
light_mode
delete
Question #45
You are building a continuous deployment pipeline for a project stored in a Git source repository and want to ensure that code changes can be verified before deploying to production. What should you do?
- AUse Spinnaker to deploy builds to production using the red/black deployment strategy so that changes can easily be rolled back.
- BUse Spinnaker to deploy builds to production and run tests on production deployments.
- CUse Jenkins to build the staging branches and the master branch. Build and deploy changes to production for 10% of users before doing a complete rollout.
- DUse Jenkins to monitor tags in the repository. Deploy staging tags to a staging environment for testing. After testing, tag the repository for production and deploy that to the production environment.Most Voted
Correct Answer:
D
Reference:
https://github.com/GoogleCloudPlatform/continuous-deployment-on-kubernetes/blob/master/README.md
D
Reference:
https://github.com/GoogleCloudPlatform/continuous-deployment-on-kubernetes/blob/master/README.md
send
light_mode
delete
Question #46
You have an outage in your Compute Engine managed instance group: all instances keep restarting after 5 seconds. You have a health check configured, but autoscaling is disabled. Your colleague, who is a Linux expert, offered to look into the issue. You need to make sure that he can access the VMs. What should you do?
- AGrant your colleague the IAM role of project Viewer
- BPerform a rolling restart on the instance group
- CDisable the health check for the instance group. Add his SSH key to the project-wide SSH KeysMost Voted
- DDisable autoscaling for the instance group. Add his SSH key to the project-wide SSH Keys
Correct Answer:
C
C
send
light_mode
delete
Question #47
Your company is migrating its on-premises data center into the cloud. As part of the migration, you want to integrate Google Kubernetes Engine (GKE) for workload orchestration. Parts of your architecture must also be PCI DSS-compliant. Which of the following is most accurate?
- AApp Engine is the only compute platform on GCP that is certified for PCI DSS hosting.
- BGKE cannot be used under PCI DSS because it is considered shared hosting.
- CGKE and GCP provide the tools you need to build a PCI DSS-compliant environment.Most Voted
- DAll Google Cloud services are usable because Google Cloud Platform is certified PCI-compliant.
Correct Answer:
C
C
send
light_mode
delete
Question #48
Your company has multiple on-premises systems that serve as sources for reporting. The data has not been maintained well and has become degraded over time.
You want to use Google-recommended practices to detect anomalies in your company data. What should you do?
You want to use Google-recommended practices to detect anomalies in your company data. What should you do?
- AUpload your files into Cloud Storage. Use Cloud Datalab to explore and clean your data.
- BUpload your files into Cloud Storage. Use Cloud Dataprep to explore and clean your data.Most Voted
- CConnect Cloud Datalab to your on-premises systems. Use Cloud Datalab to explore and clean your data.
- DConnect Cloud Dataprep to your on-premises systems. Use Cloud Dataprep to explore and clean your data.
Correct Answer:
B
B
send
light_mode
delete
Question #49
Google Cloud Platform resources are managed hierarchically using organization, folders, and projects. When Cloud Identity and Access Management (IAM) policies exist at these different levels, what is the effective policy at a particular node of the hierarchy?
- AThe effective policy is determined only by the policy set at the node
- BThe effective policy is the policy set at the node and restricted by the policies of its ancestors
- CThe effective policy is the union of the policy set at the node and policies inherited from its ancestorsMost Voted
- DThe effective policy is the intersection of the policy set at the node and policies inherited from its ancestors
Correct Answer:
C
Reference:
https://cloud.google.com/resource-manager/docs/cloud-platform-resource-hierarchy
C
Reference:
https://cloud.google.com/resource-manager/docs/cloud-platform-resource-hierarchy
send
light_mode
delete
Question #50
You are migrating your on-premises solution to Google Cloud in several phases. You will use Cloud VPN to maintain a connection between your on-premises systems and Google Cloud until the migration is completed. You want to make sure all your on-premise systems remain reachable during this period. How should you organize your networking in Google Cloud?
- AUse the same IP range on Google Cloud as you use on-premises
- BUse the same IP range on Google Cloud as you use on-premises for your primary IP range and use a secondary range that does not overlap with the range you use on-premisesMost Voted
- CUse an IP range on Google Cloud that does not overlap with the range you use on-premises
- DUse an IP range on Google Cloud that does not overlap with the range you use on-premises for your primary IP range and use a secondary range with the same IP range as you use on-premises
Correct Answer:
C
C
send
light_mode
delete
All Pages