Free Google Professional-Cloud-Developer Exam Questions

Question 1

Azgomi is a community application that facilitates communication between people in close proximity, used for event planning and organizing sporting events, and for businesses to connect with their local communities. Azgomi's unique style of hyper-local community communication and business outreach is in demand around the world. The executive statement is to expand the number one local community app globally. The solution concept is to expand their existing service in new regions to better serve their global customers, and hire and train a new team to support these regions in their time zones. Azgomi wants to ensure the application scales smoothly and provides clear uptime data, and that they analyze and respond to any issues that occur. Their existing technical environment is a mix of on-premises hardware and infrastructure running in Google Cloud Platform.

Azgomi's investors want to expand their footprint and support the increase in demand they are seeing. They require the application to expand availability to new regions, support 10x as many concurrent users, ensure a consistent experience for users when they travel to different regions, obtain user activity metrics to better monetize their product, ensure compliance with regulations in new regions, reduce infrastructure management time and cost, and adopt Google-recommended practices for cloud computing. The technical requirements include providing secure communications between the on-premises data center and cloud-hosted applications and infrastructure, providing usage metrics and monitoring, requiring authentication and authorization for APIs, implementing faster and more accurate validation of new features, providing actionable information for logging and performance metrics, and scaling to meet user demand.

A recent security audit discovered that Azgomi's database credentials for their Compute Engine-hosted MySQL databases are stored in plain text on persistent disks. Azgomi needs to reduce the risk of these credentials being stolen.

What actions do you suggest for them?

A : Create a service account and download its key. Use it to authenticate to Cloud KMS for database credentials.

B : Create a service account and use its key to authenticate to Cloud KMS for a decryption key to access the database credentials.

C : Create a service account and give it the roles/iam.serviceAccountUser role. Authenticate using Cloud SQL Proxy while impersonating this account.

D : Grant the roles/secretmanager.secretAccessor role to the Compute Engine service account and use Secret Manager API to store and access the database credentials.

Answer: C

Question 2

Your application is logging to Stackdriver. You want to get the count of all requests on all /api/alpha/* endpoints. What should you do?

A : a Stackdriver counter metric for path:/api/alpha/.

B : a Stackdriver counter metric for endpoint:/api/alpha/*.

C : port the logs to Cloud Storage and count lines matching /api/alpha.

D : port the logs to Cloud Pub/Sub and count lines matching /api/alpha.

Answer: C

Question 3

You are developing a new application that has the following design requirements:

Creation and changes to the application infrastructure are versioned and auditable.

The application and deployment infrastructure uses Google-managed services as much as possible.

The application runs on a serverless compute platform.

How should you design the application’s architecture?

A : 1. Store the application and infrastructure source code in a Git repository.2. Use Cloud Build to deploy the application infrastructure with Terraform.3. Deploy the application to a Cloud Function as a pipeline step.

B : 1. Deploy Jenkins from the Google Cloud Marketplace, and define a continuous integration pipeline inJenkins.2. Configure a pipeline step to pull the application source code from a Git repository.3. Deploy the application source code to App Engine as a pipeline step.

C : 1. Create a continuous integration pipeline on Cloud Build, and configure the pipeline to deploy theapplication infrastructure using Deployment Manager templates.2. Configure a pipeline step to create a container with the latest application source code.3. Deploy the container to a Compute Engine instance as a pipeline step.

D : 1. Deploy the application infrastructure using gcloud commands.2. Use Cloud Build to define a continuous integration pipeline for changes to the application source code.3. Configure a pipeline step to pull the application source code from a Git repository, and create acontainerized application.4. Deploy the new container on Cloud Run as a pipeline step.

Answer: D

Question 4

A CI/CD pipeline is being developed, which includes a version control system, Cloud Build, and Container Registry. Whenever a new tag is added to the repository, a Cloud Build job is activated. This job performs unit tests on the latest code, creates a new Docker container image, and saves it to the Container Registry. The final phase of the pipeline is to deploy the updated container to the production Google Kubernetes Engine (GKE) cluster.

What options are available to choose a tool and deployment strategy that satisfies these conditions:

• No downtime should be experienced

• Automated testing should be comprehensive

• Testing before release should be possible

• Quick rollbacks should be supported

A : Trigger a Spinnaker pipeline configured as an A/B test of your new code and, if successful, deploy the container to production.

B : Trigger a Cloud Build job that utilizes Kubernetes CLI tools to deploy your new container to your GKE cluster, allowing for a canary test.

C : Trigger a Cloud Build job that utilizes Kubernetes CLI tools to deploy your new container to your GKE cluster, allowing for a shadow test.

D : Trigger a Spinnaker pipeline configured as a canary test of your new code and, if successful, deploy the container to production.

Answer: C

Question 5

Your company is planning to migrate their on-premises Hadoop environment to the cloud. Increasing storage cost and maintenance of data stored in HDFS is a major concern for your company. You also want to make minimal changes to existing data analytics jobs and existing architecture. How should you proceed with the migration?

A : grate your data stored in Hadoop to BigQuery. Change your jobs to source their information from BigQuery instead of the on-premises Hadoop environment.

B : eate Compute Engine instances with HDD instead of SSD to save costs. Then perform a full migration of your existing environment into the new one in Compute Engine instances.

C : eate a Cloud Dataproc cluster on Google Cloud Platform, and then migrate your Hadoop environment to the new Cloud Dataproc cluster. Move your HDFS data into larger HDD disks to save on storage costs.

D : eate a Cloud Dataproc cluster on Google Cloud Platform, and then migrate your Hadoop code objects to the new cluster. Move your data to Cloud Storage and leverage the Cloud Dataproc connector to run jobs on that data.

Answer: D