Google Associate-Cloud-Engineer Exam Practice Test Instant Access

Question 1

You are in charge of provisioning access for all Google Cloud users in your organization. Your company recently acquired a startup company that has their own Google Cloud organization. You need to ensure that your Site Reliability Engineers (SREs) have the same project permissions in the startup company's organization as in your own organization. What should you do?

AIn the Google Cloud console for your organization, select Create role from selection, and choose destination as the startup company's organization

BIn the Google Cloud console for the startup company, select Create role from selection and choose source as the startup company's Google Cloud organization.

CUse the gcloud iam roles copy command, and provide the Organization ID of the startup company's
Google Cloud Organization as the destination.

DUse the gcloud iam roles copy command, and provide the project IDs of all projects in the startup company s organization as the destination.

Answer : C

Question 2

You have an on-premises data analytics set of binaries that processes data files in memory for about 45 minutes every midnight. The sizes of those data files range from 1 gigabyte to 16 gigabytes. You want to migrate this application to Google Cloud with minimal effort and cost. What should you do?

AUpload the code to Cloud Functions. Use Cloud Scheduler to start the application.

BCreate a container for the set of binaries. Use Cloud Scheduler to start a Cloud Run job for the container.

CCreate a container for the set of binaries Deploy the container to Google Kubernetes Engine (GKE) and use the Kubernetes scheduler to start the application.

DLift and shift to a VM on Compute Engine. Use an instance schedule to start and stop the instance.

Answer : B

Question 3

You have a Bigtable instance that consists of three nodes that store personally identifiable information (Pll) dat

a. You need to log all read or write operations, including any metadata or configuration reads of this database table, in your company's Security Information and Event Management (SIEM) system. What should you do?

A* Navigate to Cloud Mentioning in the Google Cloud console, and create a custom monitoring job for the
Bigtable instance to track all changes.
* Create an alert by using webhook endpoints. with the SIEM endpoint as a receiver

B Navigate to the Audit Logs page in the Google Cloud console, and enable Data Read. Data Write and Admin Read logs for the Bigtable instance
* Create a Pub/Sub topic as a Cloud Logging sink destination, and add your SIEM as a subscriber to the topic.

C* Install the Ops Agent on the Bigtable instance during configuration. K
* Create a service account with read permissions for the Bigtable instance.
* Create a custom Dataflow job with this service account to export logs to the company's SIEM system.

D* Navigate to the Audit Logs page in the Google Cloud console, and enable Admin Write logs for the
Biglable instance.
* Create a Cloud Functions instance to export logs from Cloud Logging to your SIEM.

Answer : B

Question 4

You used the gcloud container clusters command to create two Google Cloud Kubernetes (GKE) clusters prod-cluster and dev-cluster.

* prod-cluster is a standard cluster.

* dev-cluster is an auto-pilot duster.

When you run the Kubect1 get nodes command, you only see the nodes from prod-cluster Which commands should you run to check the node status for dev-cluster?

AOption A

BOption B

COption C

DOption D

Answer : C

Question 5

Your company requires all developers to have the same permissions, regardless of the Google Cloud project they are working on. Your company's security policy also restricts developer permissions to Compute Engine. Cloud Functions, and Cloud SQL. You want to implement the security policy with minimal effort. What should you do?

A* Create a custom role with Compute Engine, Cloud Functions, and Cloud SQL permissions in one project within the Google Cloud organization.
* Copy the role across all projects created within the organization with the gcloud iam roles copy command.
* Assign the role to developers in those projects.

B* Add all developers to a Google group in Google Groups for Workspace.
* Assign the predefined role of Compute Admin to the Google group at the Google Cloud organization level.

C* Add all developers to a Google group in Cloud Identity.
* Assign predefined roles for Compute Engine, Cloud Functions, and Cloud SQL permissions to the Google group for each project in the Google Cloud organization.

D* Add all developers to a Google group in Cloud Identity.
* Create a custom role with Compute Engine, Cloud Functions, and Cloud SQL permissions at the Google Cloud organization level.
* Assign the custom role to the Google group.

Answer : D

Question 6

You are working in a team that has developed a new application that needs to be deployed on Kubernetes. The production application is business critical and should be optimized for reliability. You need to provision a Kubernetes cluster and want to follow Google-recommended practices. What should you do?

ACreate a GKE Autopilot cluster. Enroll the cluster in the rapid release channel.

BCreate a GKE Autopilot cluster. Enroll the cluster in the stable release channel.

CCreate a zonal GKE standard cluster. Enroll the cluster in the stable release channel.

DCreate a regional GKE standard cluster. Enroll the cluster in the rapid release channel.

Answer : B

Question 7

Your application is running on Google Cloud in a managed instance group (MIG). You see errors in Cloud Logging for one VM that one of the processes is not responsive. You want to replace this VM in the MIG quickly. What should you do?

ASelect the MIG from the Compute Engine console and, in the menu, select Replace VMs.

BUse the gcloud compute instance-groups managed recreate-instances command to recreate theVM.

CUse the gcloud compute instances update command with a REFRESH action for the VM.

DUpdate and apply the instance template of the MIG.

Answer : A

Google Associate Cloud Engineer Exam Practice Test