Free Google Professional-Cloud-Developer Exam Questions

Question 1

The analytics system is currently facing a permission error while executing queries against a BigQuery dataset. The SQL query is executed in batch by passing the contents of a SQL file to the BigQuery CLI, which in turn redirects the output to another process. To resolve this issue, you need to identify the root cause of the permission error and take necessary steps to fix it.

What actions are recommended in this situation?

A : Create a view in BigQuery from an SQL query and SELECT* from the view in the command-line interface.

B : Grant the service account BigQuery Data Editor and BigQuery Data Viewer roles.

C : Grant the service account BigQuery Data Viewer and BigQuery Job User roles.

D : Create a new dataset in BigQuery, copy the source table to the new dataset, and query the new dataset and table from the command-line interface.

Answer: C

Question 2

Your team is responsible for maintaining an application that aggregates news articles from many different sources. Your monitoring dashboard contains publicly accessible real-time reports and runs on a Compute Engine instance as a web application. External stakeholders and analysts need to access these reports via a secure channel without authentication. How should you configure this secure channel?

A : a public IP address to the instance. Use the service account key of the instance to encrypt the traffic

B : Cloud Scheduler to trigger Cloud Build every hour to create an export from the reports. Store the reports in a public Cloud Storage bucket.

C : an HTTP(S) load balancer in front of the monitoring dashboard. Configure Identity-Aware Proxy to secure the communication channel.

D : Add an HTTP(S) load balancer in front of the monitoring dashboard. Set up a Google-managed SSL certificate on the load balancer for traffic encryption.

Answer: B

Question 3

What is a pod in a Kubernetes cluster?

A : Compute instances managed by Kubernetes

B : A set of containers with shared storage and network resources

C : Units within a node that can contain one or more containers with shared storage and network resources

D : A YAML file with deployment information

Answer: C

Question 4

What is the condition that is met when an object is created prior to the specified date in Cloud Storage?

A : CreatedBefore

B : CustomTimeBefore

C : DaysSinceCustomTime

D : MatchesStorageClass

Answer: A

Question 5

Azgomi is a community application that facilitates communication between people in close proximity, used for event planning and organizing sporting events, and for businesses to connect with their local communities. Azgomi's unique style of hyper-local community communication and business outreach is in demand around the world. The executive statement is to expand the number one local community app globally. The solution concept is to expand their existing service in new regions to better serve their global customers, and hire and train a new team to support these regions in their time zones. Azgomi wants to ensure the application scales smoothly and provides clear uptime data, and that they analyze and respond to any issues that occur. Their existing technical environment is a mix of on-premises hardware and infrastructure running in Google Cloud Platform.

Azgomi's investors want to expand their footprint and support the increase in demand they are seeing. They require the application to expand availability to new regions, support 10x as many concurrent users, ensure a consistent experience for users when they travel to different regions, obtain user activity metrics to better monetize their product, ensure compliance with regulations in new regions, reduce infrastructure management time and cost, and adopt Google-recommended practices for cloud computing. The technical requirements include providing secure communications between the on-premises data center and cloud-hosted applications and infrastructure, providing usage metrics and monitoring, requiring authentication and authorization for APIs, implementing faster and more accurate validation of new features, providing actionable information for logging and performance metrics, and scaling to meet user demand.

A recent security audit discovered that Azgomi's database credentials for their Compute Engine-hosted MySQL databases are stored in plain text on persistent disks. Azgomi needs to reduce the risk of these credentials being stolen.

What actions do you suggest for them?

A : Create a service account and download its key. Use it to authenticate to Cloud KMS for database credentials.

B : Create a service account and use its key to authenticate to Cloud KMS for a decryption key to access the database credentials.

C : Create a service account and give it the roles/iam.serviceAccountUser role. Authenticate using Cloud SQL Proxy while impersonating this account.

D : Grant the roles/secretmanager.secretAccessor role to the Compute Engine service account and use Secret Manager API to store and access the database credentials.

Answer: C