Free Google Professional-Cloud-Developer Exam Questions

Question 1

Your team detected a spike of errors in an application running on Cloud Run in your production project. The application is configured to read messages from Pub/Sub topic A, process the messages, and write the messages to topic B. You want to conduct tests to identify the cause of the errors. You can use a set of mock messages for testing. What should you do?

A : ploy the Pub/Sub and Cloud Run emulators on your local machine. Deploy the application locally, and change the logging level in the application to DEBUG or INFO. Write mock messages to topic A, and then analyze the logs.

B : the gcloud CLI to write mock messages to topic A. Change the logging level in the application to DEBUG or INFO, and then analyze the logs.

C : ploy the Pub/Sub emulator on your local machine. Point the production application to your local Pub/Sub topics. Write mock messages to topic A, and then analyze the logs.

D : the Google Cloud console to write mock messages to topic A. Change the logging level in the application to DEBUG or INFO, and then analyze the logs.

Answer: C

Question 2

Your application is deployed in a Google Kubernetes Engine (GKE) cluster. When a new version of your application is released, your CI/CD tool updates the spec.template.spec.containers[0].image value to reference the Docker image of your new application version. When the Deployment object applies the change, you want to deploy at least 1 replica of the new version and maintain the previous replicas until the new replica is healthy. Which change should you make to the GKE Deployment object shown below?

A : t the Deployment strategy to RollingUpdate with maxSurge set to 0, maxUnavailable set to 1.

B : t the Deployment strategy to RollingUpdate with maxSurge set to 1, maxUnavailable set to 0.

C : t the Deployment strategy to Recreate with maxSurge set to 0, maxUnavailable set to 1.

D : t the Deployment strategy to Recreate with maxSurge set to 1, maxUnavailable set to 0.

Answer: D

Question 3

Your company's development teams want to use various open source operating systems in their Docker builds. When images are created in published containers in your company's environment, you need to scan them for Common Vulnerabilities and Exposures (CVEs) The scanning process must not impact software development agility. You want to use managed services where possible. What should you do?

A : able the Vulnerability scanning setting in the Container Registry.

B : eate a Cloud Function that is triggered on a code check-in and scan the code for CVEs.

C : allow the use of non-commercially supported base images in your development environment

D : Cloud Monitoring to review the output of Cloud Build to determine whether a vulnerable version has been used

Answer: A

Question 4

Azgomi is a popular community application that facilitates communication between people in close proximity. It is used for event planning, organizing sporting events, and connecting businesses with their local communities. Although it launched recently in a few neighborhoods in Dallas, it is rapidly expanding into a global phenomenon. The company's venture capital investors are looking for rapid growth and expansion into new regions, offering the same experience to users, regardless of their location.

Azgomi wants to expand its service to new regions, with updated functionality to better serve its global customers. They plan to hire and train a new team to support these regions in their respective time zones. It is essential that the application scales smoothly and provides clear uptime data, and that they analyze and respond to any issues that occur. The existing technical environment is a mix of on-premises hardware and infrastructure running in Google Cloud Platform. The application runs on Compute Engine virtual machine instances hosted in GCP. State is stored in a single instance MySQL database in GCP. Release cycles include development freezes to allow for QA testing. The application has no logging. Applications are manually deployed by infrastructure engineers during periods of slow traffic on weekday evenings. There are basic indicators of uptime, and alerts are frequently fired when the APIs are unresponsive.

Azgomi's investors want to expand its footprint and support the increase in demand they are seeing. They require the following:

• Expand availability of the application to new regions.

• Support 10x as many concurrent users.

• Ensure a consistent experience for users when they travel to different regions.

• Obtain user activity metrics to better understand how to monetize their product.

• Ensure compliance with regulations in the new regions (for example, GDPR).

• Reduce infrastructure management time and cost.

• Adopt Google-recommended practices for cloud computing.

○ Develop standardized workflows and processes around application lifecycle management.

○ Define service level indicators (SLIs) and service level objectives (SLOs).

The technical requirements for Azgomi include:

• Providing secure communications between the on-premises data center and cloud-hosted applications and infrastructure.

• The application must provide usage metrics and monitoring.

• APIs require authentication and authorization.

• Implement faster and more accurate validation of new features.

• Logging and performance metrics must provide actionable information to be able to provide debugging information and alerts.

• Must scale to meet user demand.

What steps can Azgomi take to revamp their architecture in order to accommodate a significant surge in user traffic?

A : Use multiple Compute Engine instances to run MySQL to store state information. Use a Google Cloud-managed load balancer to distribute the load between instances. Use managed instance groups for scaling.

B : Use Google Kubernetes Engine (GKE) to run the application as a microservice. Run the MySQL database on a dedicated GKE node.

C : Use a Cloud Storage bucket to host the application as a static website, and use another Cloud Storage bucket to store user data.

D : Use Memorystore to store session information and CloudSQL to store state information. Use a Google Cloud-managed load balancer to distribute the load between instances. Use managed instance groups for scaling.

Answer: C

Question 5

Azgomi is a community application that facilitates communication between people in close proximity, used for event planning and organizing sporting events, and for businesses to connect with their local communities. Azgomi's unique style of hyper-local community communication and business outreach is in demand around the world. The executive statement is to expand the number one local community app globally. The solution concept is to expand their existing service in new regions to better serve their global customers, and hire and train a new team to support these regions in their time zones. Azgomi wants to ensure the application scales smoothly and provides clear uptime data, and that they analyze and respond to any issues that occur. Their existing technical environment is a mix of on-premises hardware and infrastructure running in Google Cloud Platform.

Azgomi's investors want to expand their footprint and support the increase in demand they are seeing. They require the application to expand availability to new regions, support 10x as many concurrent users, ensure a consistent experience for users when they travel to different regions, obtain user activity metrics to better monetize their product, ensure compliance with regulations in new regions, reduce infrastructure management time and cost, and adopt Google-recommended practices for cloud computing. The technical requirements include providing secure communications between the on-premises data center and cloud-hosted applications and infrastructure, providing usage metrics and monitoring, requiring authentication and authorization for APIs, implementing faster and more accurate validation of new features, providing actionable information for logging and performance metrics, and scaling to meet user demand.

A recent security audit discovered that Azgomi's database credentials for their Compute Engine-hosted MySQL databases are stored in plain text on persistent disks. Azgomi needs to reduce the risk of these credentials being stolen.

What actions do you suggest for them?

A : Create a service account and download its key. Use it to authenticate to Cloud KMS for database credentials.

B : Create a service account and use its key to authenticate to Cloud KMS for a decryption key to access the database credentials.

C : Create a service account and give it the roles/iam.serviceAccountUser role. Authenticate using Cloud SQL Proxy while impersonating this account.

D : Grant the roles/secretmanager.secretAccessor role to the Compute Engine service account and use Secret Manager API to store and access the database credentials.

Answer: C