[Mar 09, 2024] Google Professional-Cloud-Developer Exam Dumps Are Essential To Get Good Marks [Q146-Q168]

[Mar 09, 2024] Google Professional-Cloud-Developer Exam Dumps Are Essential To Get Good Marks

Latest Google Professional-Cloud-Developer Dumps with Test Engine and PDF (New Questions)

NEW QUESTION # 146
Your company has created an application that uploads a report to a Cloud Storage bucket. When the report is uploaded to the bucket, you want to publish a message to a Cloud Pub/Sub topic. You want to implement a solution that will take a small amount to effort to implement. What should you do?

• A. Create a Cloud Function that is triggered by the Cloud Storage bucket. In the Cloud Function, publish a message to the Cloud Pub/Sub topic.
• B. Configure the Cloud Storage bucket to trigger Cloud Pub/Sub notifications when objects are modified.
• C. Create an application deployed in a Google Kubernetes Engine cluster to receive the file; when it is received, publish a message to the Cloud Pub/Sub topic.
• D. Create an App Engine application to receive the file; when it is received, publish a message to the Cloud Pub/Sub topic.

Answer: A

Explanation:
Explanation
https://cloud.google.com/storage/docs/pubsub-notifications

NEW QUESTION # 147
Your data is stored in Cloud Storage buckets. Fellow developers have reported that data downloaded from Cloud Storage is resulting in slow API performance. You want to research the issue to provide details to the GCP support team. Which command should you run?

• A. gcloud compute scp example-instance:~/test-data -o output.json gs://my-bucket
• B. gcloud services test -o output.json gs://my-bucket
• C. gsutil test -o output.json gs://my-bucket
• D. gsutil perfdiag -o output.json gs://my-bucket

Answer: D

Explanation:
Reference: https://groups.google.com/forum/#!topic/gce-discussion/xBl9Jq5HDsY

NEW QUESTION # 148
Case study
This is a case study. Case studies are not timed separately. You can use as much exam time as you would like to complete each case. However, there may be additional case studies and sections on this exam. You must manage your time to ensure that you are able to complete all questions included on this exam in the time provided.
To answer the questions included in a case study, you will need to reference information that is provided in the case study. Case studies might contain exhibits and other resources that provide more information about the scenario that is described in the case study. Each question is independent of the other questions in this case study.
At the end of this case study, a review screen will appear. This screen allows you to review your answers and to make changes before you move to the next section of the exam. After you begin a new section, you cannot return to this section.
To start the case study
To display the first question in this case study, click the Next button. Use the buttons in the left pane to explore the content of the case study before you answer the questions. Clicking these buttons displays information such as business requirements, existing environment, and problem statements. If the case study has an All Information tab, note that the information displayed is identical to the information displayed on the subsequent tabs. When you are ready to answer a question, click the Question button to return to the question.
Company Overview
HipLocal is a community application designed to facilitate communication between people in close proximity. It is used for event planning and organizing sporting events, and for businesses to connect with their local communities. HipLocal launched recently in a few neighborhoods in Dallas and is rapidly growing into a global phenomenon. Its unique style of hyper-local community communication and business outreach is in demand around the world.
Executive Statement
We are the number one local community app; it's time to take our local community services global. Our venture capital investors want to see rapid growth and the same great experience for new local and virtual communities that come online, whether their members are 10 or 10000 miles away from each other.
Solution Concept
HipLocal wants to expand their existing service, with updated functionality, in new regions to better serve their global customers. They want to hire and train a new team to support these regions in their time zones. They will need to ensure that the application scales smoothly and provides clear uptime data.
Existing Technical Environment
HipLocal's environment is a mix of on-premises hardware and infrastructure running in Google Cloud Platform.
The HipLocal team understands their application well, but has limited experience in global scale applications.
Their existing technical environment is as follows:
* Existing APIs run on Compute Engine virtual machine instances hosted in GCP.
* State is stored in a single instance MySQL database in GCP.
* Data is exported to an on-premises Teradata/Vertica data warehouse.
* Data analytics is performed in an on-premises Hadoop environment.
* The application has no logging.
* There are basic indicators of uptime; alerts are frequently fired when the APIs are unresponsive.
Business Requirements
HipLocal's investors want to expand their footprint and support the increase in demand they are seeing. Their requirements are:
* Expand availability of the application to new regions.
* Increase the number of concurrent users that can be supported.
* Ensure a consistent experience for users when they travel to different regions.
* Obtain user activity metrics to better understand how to monetize their product.
* Ensure compliance with regulations in the new regions (for example, GDPR).
* Reduce infrastructure management time and cost.
* Adopt the Google-recommended practices for cloud computing.
Technical Requirements
* The application and backend must provide usage metrics and monitoring.
* APIs require strong authentication and authorization.
* Logging must be increased, and data should be stored in a cloud analytics platform.
* Move to serverless architecture to facilitate elastic scaling.
* Provide authorized access to internal apps in a secure manner.
In order for HipLocal to store application state and meet their stated business requirements, which database service should they migrate to?

• A. Separate Cloud SQL clusters for each region
• B. Cloud Memorystore as a cache
• C. Cloud Spanner
• D. Cloud Datastore

Answer: C

Explanation:
Explanation/Reference:

NEW QUESTION # 149
You have an application that uses an HTTP Cloud Function to process user activity from both desktop browser and mobile application clients. This function will serve as the endpoint for all metric submissions using HTTP POST.
Due to legacy restrictions, the function must be mapped to a domain that is separate from the domain requested by users on web or mobile sessions. The domain for the Cloud Function is https://fn.example.com. Desktop and mobile clients use the domain https://www.example.com. You need to add a header to the function's HTTP response so that only those browser and mobile sessions can submit metrics to the Cloud Function. Which response header should you add?

• A. Access-Control-Allow-Origin: https://fn.example.com
• B. Access-Control-Allow-origin: https://www.example.com
• C. Access-Control-Allow-Origin: https://*.example.com
• D. Access-Control-Allow-Origin: *

Answer: B

NEW QUESTION # 150
You are creating a Google Kubernetes Engine (GKE) cluster and run this command:

The command fails with the error:

You want to resolve the issue. What should you do?

• A. Open a support case to request additional GKE quotA.
• B. Decouple services in the cluster, and rewrite new clusters to function with fewer cores.
• C. Request additional GKE quota is the GCP Console.
• D. Request additional Compute Engine quota in the GCP Console.

Answer: C

NEW QUESTION # 151
In order to meet their business requirements, how should HipLocal store their application state?

• A. Move the state storage to Cloud Spanner.
• B. Replace the MySQL instance with Cloud SQL.
• C. Put a memcache layer in front of MySQL.
• D. Use local SSDs to store state.

Answer: C

Explanation:
Topic 1, HipLocal
Company Overview
HipLocal is a community application designed to facilitate communication between people in close proximity. It is used for event planning and organizing sporting events, and for businesses to connect with their local communities. HipLocal launched recently in a few neighborhoods in Dallas and is rapidly growing into a global phenomenon. Its unique style of hyper-local community communication and business outreach is in demand around the world.
Executive statement
We are the number one local community app; it's time to take our local community services global. Our venture capital investors want to see rapid growth and the same great experience for new local and virtual communities that come online, whether their members are 10 or 10,000 miles away from each other.
Solution concept
HipLocal wants to expand their existing service, with updated functionality, in new regions to better serve their global customers. They want to hire and train a new team to support these regions in their time zones. They will need to ensure that the application scales smoothly and provides clear uptime data.
Existing technical environment
HipLocal's environment is a mix of on-premises hardware and infrastructure running in Google Cloud Platform. The HipLocal team understands their application well but has limited experience in global scale applications. Their existing technical environment is as follows:
Existing APIs run on Compute Engine virtual machine instances hosted in GCP State is stored in a single instance MySQL database in GCP Data is exported to an on-premises Teradata/Vertica data warehouse Data analytics is performed in an on-premises Hadoop environment The application has no logging There are basic indicators of uptime; alerts are frequently fired when the APIs are unresponsive Business Requirements HipLocal's investors want to expand their footprint and support the increase in demand they are seeing. Their requirements are:
Expand availability of the application to new regions
Increase the number of concurrent users that can be supported
Ensure a consistent experience for users when they travel to different regions Obtain user activity metrics to better understand how to monetize their product Ensure compliance with regulations in the new regions (for example, GDPR) Reduce infrastructure management time and cost Adopt the Google-recommended practices for cloud computing Technical Requirements The application and backend must provide usage metrics and monitoring APIs require strong authentication and authorization Logging must be increased, and data should be stored in a cloud analytics platform Move to serverless architecture to facilitate elastic scaling Provide authorized access to internal apps in a secure manner

NEW QUESTION # 152
You have written a Cloud Function that accesses other Google Cloud resources. You want to secure the environment using the principle of least privilege. What should you do?

• A. Create a new service account that has Editor authority to access the resources. The deployer is given permission to get the access token.
• B. Create a new service account that has a custom IAM role to access the resources. The deployer is given permission to act as the new service account.
• C. Create a new service account that has a custom IAM role to access the resources. The deployer is given permission to get the access token.
• D. Create a new service account that has Editor authority to access the resources. The deployer is given permission to act as the new service account.

Answer: B

NEW QUESTION # 153
You have containerized a legacy application that stores its configuration on an NFS share. You need to deploy this application to Google Kubernetes Engine (GKE) and do not want the application serving traffic until after the configuration has been retrieved. What should you do?

• A. Add a startup script to the GKE instance group to mount the NFS share at node startup. Copy the configuration files into the container, and start the service using an ENTRYPOINT script.
• B. Use the COPY statement in the Dockerfile to load the configuration into the container image. Verify that the configuration is available, and start the service using an ENTRYPOINT script.
• C. Use the gsutil utility to copy files from within the Docker container at startup, and start the service using an ENTRYPOINT script.
• D. Create a PersistentVolumeClaim on the GKE cluster. Access the configuration files from the volume, and start the service using an ENTRYPOINT script.

Answer: A

NEW QUESTION # 154
Your analytics system executes queries against a BigQuery dataset. The SQL query is executed in batch and passes the contents of a SQL file to the BigQuery CLI. Then it redirects the BigQuery CLI output to another process. However, you are getting a permission error from the BigQuery CLI when the queries are executed. You want to resolve the issue. What should you do?

• A. Create a view in BigQuery from the SQL query and SELECT* from the view in the CLI.
• B. Grant the service account BigQuery Data Viewer and BigQuery Job User roles.
• C. Grant the service account BigQuery Data Editor and BigQuery Data Viewer roles.
• D. Create a new dataset in BigQuery, and copy the source table to the new dataset Query the new dataset and table from the CLI.

Answer: C

NEW QUESTION # 155
Your code is running on Cloud Functions in projectA . It is supposed to write an object in a Cloud Storage bucket owned by project B.
However, the write call is failing with the error "403 Forbidden".
What should you do to correct the problem?

• A. Grant your user account the roles/storage.objectCreator role for the Cloud Storage bucket.
• B. Enable the Cloud Storage API in project B.
• C. Grant your user account the roles/iam.serviceAccountUser role for the service-PROJECTA@gcf-adminrobot.
  iam.gserviceaccount.com service account.
• D. Grant the [email protected] service account the roles/ storage.objectCreator role for the Cloud Storage bucket.

Answer: C

NEW QUESTION # 156
You are planning to migrate a MySQL database to the managed Cloud SQL database for Google Cloud. You have Compute Engine virtual machine instances that will connect with this Cloud SQL instance. You do not want to whitelist IPs for the Compute Engine instances to be able to access Cloud SQL.
What should you do?

• A. Enable private IP for the Cloud SQL instance.
• B. Create a CloudSQL instance on one project. Create Compute engine instances in a different project.Create a VPN between these two projects to allow internal access to CloudSQL.
• C. Create a role in Cloud SQL that allows access to the database from external instances, and assign the Compute Engine instances to that role.
• D. Whitelist a project to access Cloud SQL, and add Compute Engine instances in the whitelisted project.

Answer: C

NEW QUESTION # 157
You are developing an application using different microservices that should remain internal to the cluster. You want to be able to configure each microservice with a specific number of replicas. You also want to be able to address a specific microservice from any other microservice in a uniform way, regardless of the number of replicas the microservice scales to. You need to implement this solution on Google Kubernetes Engine. What should you do?

• A. Deploy each microservice as a Deployment. Expose the Deployment in the cluster using an Ingress, and use the Ingress IP address to address the Deployment from other microservices within the cluster.
• B. Deploy each microservice as a Pod. Expose the Pod in the cluster using a Service, and use the Service DNS name to address the microservice from other microservices within the cluster.
• C. Deploy each microservice as a Deployment. Expose the Deployment in the cluster using a Service, and use the Service DNS name to address it from other microservices within the cluster.
• D. Deploy each microservice as a Pod. Expose the Pod in the cluster using an Ingress, and use the Ingress IP address name to address the Pod from other microservices within the cluster.

Answer: C

NEW QUESTION # 158
You have an application deployed in Google Kubernetes Engine (GKE). You need to update the application to make authorized requests to Google Cloud managed services. You want this to be a one-time setup, and you need to follow security best practices of auto-rotating your security keys and storing them in an encrypted store. You already created a service account with appropriate access to the Google Cloud service. What should you do next?

• A. Export the Google Cloud service account, and upload it to HashiCorp Vault to generate a dynamic service account for your application.
• B. Export the Google Cloud service account, and embed it in the source code of the application.
• C. Assign the Google Cloud service account to your GKE Pod using Workload Identity.
• D. Export the Google Cloud service account, and share it with the Pod as a Kubernetes Secret.

Answer: C

Explanation:
https://cloud.google.com/kubernetes-engine/docs/concepts/workload-identity Applications running on GKE might need access to Google Cloud APIs such as Compute Engine API, BigQuery Storage API, or Machine Learning APIs.
Workload Identity allows a Kubernetes service account in your GKE cluster to act as an IAM service account. Pods that use the configured Kubernetes service account automatically authenticate as the IAM service account when accessing Google Cloud APIs. Using Workload Identity allows you to assign distinct, fine-grained identities and authorization for each application in your cluster.

NEW QUESTION # 159
You are planning to deploy your application in a Google Kubernetes Engine (GKE) cluster The application exposes an HTTP-based health check at /healthz. You want to use this health check endpoint to determine whether traffic should be routed to the pod by the load balancer.
Which code snippet should you include in your Pod configuration?

• A. Option C
• B. Option A
• C. Option B
• D. Option D

Answer: C

Explanation:
Explanation
For the GKE ingress controller to use your readinessProbes as health checks, the Pods for an Ingress must exist at the time of Ingress creation. If your replicas are scaled to 0, the default health check will apply.

NEW QUESTION # 160
You manage a microservices application on Google Kubernetes Engine (GKE) using Istio. You secure the communication channels between your microservices by implementing an Istio AuthorizationPolicy, a Kubernetes NetworkPolicy, and mTLS on your GKE cluster. You discover that HTTP requests between two Pods to specific URLs fail, while other requests to other URLs succeed. What is the cause of the connection issue?

• A. The cluster has mTLS configured in permissive mode, but the Pod's sidecar proxy is sending unencrypted traffic in plain text.
• B. The Pod initiating the HTTP requests is attempting to connect to the target Pod via an incorrect TCP port.
• C. A Kubernetes NetworkPolicy resource is blocking HTTP traffic between the Pods.
• D. The Authorization Policy of your cluster is blocking HTTP requests for specific paths within your application.

Answer: D

NEW QUESTION # 161
You are in the final stage of migrating an on-premises data center to Google Cloud. You are quickly approaching your deadline, and discover that a web API is running on a server slated for decommissioning.
You need to recommend a solution to modernize this API while migrating to Google Cloud. The modernized web API must meet the following requirements:
* Autoscales during high traffic periods at the end of each month
* Written in Python 3.x
* Developers must be able to rapidly deploy new versions in response to frequent code changes You want to minimize cost, effort, and operational overhead of this migration. What should you do?

• A. Modernize and deploy the code on App Engine standard environment.
• B. Modernize and deploy the code on App Engine flexible environment.
• C. Deploy the modernized application to an n1-standard-1 Compute Engine instance.
• D. Ask the development team to re-write the application to run as a Docker container on Google Kubernetes Engine.

Answer: A

Explanation:
Explanation
https://cloud.google.com/appengine/docs/standard

NEW QUESTION # 162
You need to copy directory local-scripts and all of its contents from your local workstation to a Compute Engine virtual machine instance.
Which command should you use?

• A. gsutil cp --project "my-gcp-project" -r ~/local-scripts/ gcp-instance-name:~/ server-scripts/ --zone "us-east1-b"
• B. gsutil cp --project "my-gcp-project" -R ~/local-scripts/ gcp-instance-name:~/ server-scripts/ --zone "us-east1-b"
• C. gcloud compute scp --project "my-gcp-project" --recurse ~/local-scripts/ gcpinstance- name:~/server-scripts/ --zone "us-east1-b"
• D. gcloud compute mv --project "my-gcp-project" --recurse ~/local-scripts/ gcpinstance- name:~/server-scripts/ --zone "us-east1-b"

Answer: C

Explanation:
Reference:
https://cloud.google.com/sdk/gcloud/reference/compute/copy-files

NEW QUESTION # 163
Your team is developing unit tests for Cloud Function code. The code is stored in a Cloud Source Repositories repository. You are responsible for implementing the tests. Only a specific service account has the necessary permissions to deploy the code to Cloud Functions. You want to ensure that the code cannot be deployed without first passing the tests. How should you configure the unit testing process?

• A. Configure Cloud Build to run the unit tests, using the specific service account as the build agent. If the code passes the tests, Cloud Build deploys the Cloud Function.
• B. Configure Cloud Build to run the unit tests. If the code passes the tests, the developer deploys the Cloud Function.
• C. Configure Cloud Build to deploy the Cloud Function, using the specific service account as the build agent. Run the unit tests after successful deployment.
• D. Configure Cloud Build to deploy the Cloud Function. If the code passes the tests, a deployment approval is sent to you.

Answer: A

NEW QUESTION # 164
You are planning to add unit tests to your application. You need to be able to assert that published Pub/Sub messages are processed by your subscriber in order. You want the unit tests to be cost-effective and reliable.
What should you do?

• A. Use the Pub/Sub emulator.
• B. Implement a mocking framework.
• C. Add a filter by tester to the subscription.
• D. Create a topic and subscription for each tester.

Answer: A

Explanation:
Explanation
https://cloud.google.com/pubsub/docs/emulator, "Testing apps locally with the emulator".

NEW QUESTION # 165
Your code is running on Cloud Functions in project A.
It is supposed to write an object in a Cloud Storage
bucket owned by project B.
However, the write call is failing with the error "403 Forbidden".
What should you do to correct the problem?

• A. Grant your user account the roles/storage.objectCreator role for the Cloud Storage bucket.
• B. Enable the Cloud Storage API in project B.
• C. Grant your user account the roles/iam.serviceAccountUser role for the service-PROJECTA@gcf-adminrobot.
  iam.gserviceaccount.com service account.
• D. Grant the [email protected] service account the roles/ storage.objectCreator role for the Cloud Storage bucket.

Answer: C

NEW QUESTION # 166
You are running an application on App Engine that you inherited. You want to find out whether the application is using insecure binaries or is vulnerable to XSS attacks.
Which service should you use?

• A. Cloud Amor
• B. Stackdriver Debugger
• C. Cloud Security Scanner
• D. Stackdriver Error Reporting

Answer: C

Explanation:
Explanation/Reference: https://cloud.google.com/security-scanner

NEW QUESTION # 167
You are planning to deploy your application in a Google Kubernetes Engine (GKE) cluster. Your application can scale horizontally, and each instance of your application needs to have a stable network identity and its own persistent disk.
Which GKE object should you use?

• A. StatefulSet
• B. ReplicaController
• C. Deployment
• D. ReplicaSet

Answer: A

Explanation:
Explanation/Reference: https://livebook.manning.com/book/kubernetes-in-action/chapter-10/46

NEW QUESTION # 168
......

TestsDumps just published the Google Professional-Cloud-Developer exam dumps!: https://actualanswers.testsdumps.com/Professional-Cloud-Developer_real-exam-dumps.html