Google Professional-Cloud-Architect Exam Practice Test Instant Access

Question 1

Your company has an application that is running on multiple instances of Compute Engine. It generates 1 TB per day of logs. For compliance reasons, the logs need to be kept for at least two years. The logs need to be available for active query for 30 days. After that, they just need to be retained for audit purposes. You want to implement a storage solution that is compliant, minimizes costs, and follows Google-recommended practices. What should you do?

A1. Install the Cloud Ops agent on all instances.
2. Create a sink to export logs into a partitioned BigQuery table.
3. Set a time_partitioning_expiration of 30 days.

B1. Install the Cloud Ops agent on all instances.
2. Create a sink to export logs into a regional Cloud Storage bucket.
3. Create an Object Lifecycle rule to move files into a Coldline Cloud Storage bucket after one month.
4. Configure a retention policy at the bucket level to create a lock.

C1. Create a daily cron job, running on all instances, that uploads logs into a partitioned BigQuery
table. 2. Set a time_partitioning_expiration of 30 days.

D1. Write a daily cron job, running on all instances, that uploads logs into a Cloud Storage bucket.
2. Create a sink to export logs into a regional Cloud Storage bucket.
3. Create an Object Lifecycle rule to move files into a Coldline Cloud Storage bucket after one month.

Answer : B

Question 2

Your company has a Google Cloud project that uses BigQuery for data warehousing on a pay-per-use basis. You want to monitor queries in real time to discover the most costly queries and which users spend the most. What should you do?

A1. Create a Cloud Logging sink to export BigQuery data access logs to Cloud Storage. 2. Develop a Dataflow pipeline to compute the cost of queries split by users.

B1. Create a Cloud Logging sink to export BigQuery data access logs to BigQuery.
2. Perform a BigQuery query on the generated table to extract the information you need.

C1. Activate billing export into BigQuery.
2. Perform a BigQuery query on the billing table to extract the information you need.

D1. In the BigQuery dataset that contains all the tables to be queried, add a label for each user that can launch a query.
2. Open the Billing page of the project.
3. Select Reports.
4. Select BigQuery as the product and filter by the user you want to check.

Answer : C

Question 3

For this question, refer to the TerramEarth case study. You are building a microservice-based application for TerramEarth. The application is based on Docker containers. You want to follow Google-recommended practices to build the application continuously and store the build artifacts. What should you do?

A1. Configure a trigger in Cloud Build for new source changes.
2. Invoke Cloud Build to build one container image, and tag the image with the label 'latest.'
3. Push the image to the Artifact Registry.

B1. Configure a trigger in Cloud Build for new source changes.
2. Invoke Cloud Build to build container images for each microservice, and tag them using the code commit hash.
3. Push the images to the Artifact Registry.

C1 Create a Scheduler job to check the repo every minute.
2. For any new change, invoke Cloud Build to build container images for the microservices.
3. Tag the images using the current timestamp, and push them to the Artifact Registry.

D1. Configure a trigger in Cloud Build for new source changes.
2. The trigger invokes build jobs and build container images for the microservices.
3. Tag the images with a version number, and push them to Cloud Storage.

Answer : C

Question 4

You are responsible for the Google Cloud environment in your company Multiple departments need access to their own projects and the members within each department will have the same project responsibilities You want to structure your Google Cloud environment for minimal maintenance and maximum overview of 1AM permissions as each department's projects start and end You want to follow Google-recommended practices What should you do?

ACreate a Google Group per department and add all department members to their respective groups Create a folder per department
and grant the respective group the required 1AM permissions at the folder level Add the projects under the respective folders

BGrant all department members the required 1AM permissions for their respective projects

CCreate a Google Group per department and add all department members to their respective groups Grant each group the required I AM permissions for their respective projects

DCreate a folder per department and grant the respective members of the department the required 1AM permissions at the folder level. Structure all projects for each department under the respective folders

Answer : A

Question 5

You are working with a data warehousing team that performs data analysis. The team needs to process data from external partners, but the data contains personally identifiable information (PlI). You need to process and store the data without storing any of the Pll dat

a. What should you do?

ACreate a Dataflow pipeline to retrieve the data from the external sources. As part of the pipeline use the Cloud Data Loss Prevention (Cloud DLP) API to remove any Pll data Store the result in BigQuery

BCreate a Dataflow pipeline to retrieve the data from the external sources. As part of the pipeline store all non-PII data in BigQuery and store all Pll data in a Cloud Storage bucket that has a retention policy set.

CAsk the external partners to upload an data on Cloud Storage Configure Bucket Lock for the bucket Create a Dataflow pipeline to read the data from the bucket As part of the pipeline, use the Cloud Data Loss Prevention (Cloud DIP) API to remove any Pll data Store the result in BigQuery

DAsk the external partners to import ail data in your BigQuery dataset Create a dataflow pipeline to copy the data into a new table As part of the Dataflow bucket skip all data in columns that have Pll data

Answer : A

Question 6

You want to store critical business information in Cloud Storage buckets. The information is regularly changed but previous versions need to be referenced on a regular basis. You want to ensure that there is a record of all changes to any information in these buckets. You want to ensure that accidental edits or deletions can be easily roiled back. Which feature should you enable?

ABucket Lock

BObject Versioning

CObject change notification

DObject Lifecycle Management

Answer : B

Question 7

You are configuring the cloud network architecture for a newly created project m Google Cloud that will host applications in Compote Engine Compute Engine virtual machine instances will be created in two different subnets (sub-a and sub-b) within a single region

* Instances in sub-a win have public IP addresses

* Instances in sub-b will have only private IP addresses

To download updated packages, instances must connect to a public repository outside the boundaries of Google Cloud You need to allow sub-b to access the external repository. What should you do?

AEnable Private Google Access on sub-b

BConfigure Cloud NAT and select sub b m the NAT mapping section

CConfigure a bastion host instance in sub a to connect to instances in sub-b

DEnable Identity Aware Proxy for TCP forwarding for instances in sub-b

Answer : B

Google Cloud Architect Professional Exam Practice Test