Free Google Professional-Cloud-Developer Exam Questions

Question 1

Azgomi is a community application that facilitates communication between people in close proximity, used for event planning and organizing sporting events, and for businesses to connect with their local communities. Azgomi's unique style of hyper-local community communication and business outreach is in demand around the world. The executive statement is to expand the number one local community app globally. The solution concept is to expand their existing service in new regions to better serve their global customers, and hire and train a new team to support these regions in their time zones. Azgomi wants to ensure the application scales smoothly and provides clear uptime data, and that they analyze and respond to any issues that occur. Their existing technical environment is a mix of on-premises hardware and infrastructure running in Google Cloud Platform.

Azgomi's investors want to expand their footprint and support the increase in demand they are seeing. They require the application to expand availability to new regions, support 10x as many concurrent users, ensure a consistent experience for users when they travel to different regions, obtain user activity metrics to better monetize their product, ensure compliance with regulations in new regions, reduce infrastructure management time and cost, and adopt Google-recommended practices for cloud computing. The technical requirements include providing secure communications between the on-premises data center and cloud-hosted applications and infrastructure, providing usage metrics and monitoring, requiring authentication and authorization for APIs, implementing faster and more accurate validation of new features, providing actionable information for logging and performance metrics, and scaling to meet user demand.

A recent security audit discovered that Azgomi's database credentials for their Compute Engine-hosted MySQL databases are stored in plain text on persistent disks. Azgomi needs to reduce the risk of these credentials being stolen.

What actions do you suggest for them?

A : Create a service account and download its key. Use it to authenticate to Cloud KMS for database credentials.

B : Create a service account and use its key to authenticate to Cloud KMS for a decryption key to access the database credentials.

C : Create a service account and give it the roles/iam.serviceAccountUser role. Authenticate using Cloud SQL Proxy while impersonating this account.

D : Grant the roles/secretmanager.secretAccessor role to the Compute Engine service account and use Secret Manager API to store and access the database credentials.

Answer: C

Question 2

You are planning to deploy your application in a Google Kubernetes Engine (GKE) cluster. Your application can scale horizontally, and each instance of your application needs to have a stable network identity and its own persistent disk. Which GKE object should you use?

A : ployment

B : atefulSet

C : plicaSet

D : plicaController

Answer: B

Question 3

What is the condition that is met when an object is created prior to the specified date in Cloud Storage?

A : CreatedBefore

B : CustomTimeBefore

C : DaysSinceCustomTime

D : MatchesStorageClass

Answer: A

Question 4

A CI/CD pipeline is being developed, which includes a version control system, Cloud Build, and Container Registry. Whenever a new tag is added to the repository, a Cloud Build job is activated. This job performs unit tests on the latest code, creates a new Docker container image, and saves it to the Container Registry. The final phase of the pipeline is to deploy the updated container to the production Google Kubernetes Engine (GKE) cluster.

What options are available to choose a tool and deployment strategy that satisfies these conditions:

• No downtime should be experienced

• Automated testing should be comprehensive

• Testing before release should be possible

• Quick rollbacks should be supported

A : Trigger a Spinnaker pipeline configured as an A/B test of your new code and, if successful, deploy the container to production.

B : Trigger a Cloud Build job that utilizes Kubernetes CLI tools to deploy your new container to your GKE cluster, allowing for a canary test.

C : Trigger a Cloud Build job that utilizes Kubernetes CLI tools to deploy your new container to your GKE cluster, allowing for a shadow test.

D : Trigger a Spinnaker pipeline configured as a canary test of your new code and, if successful, deploy the container to production.

Answer: C

Question 5

You are using Cloud Run to host a global ecommerce web application. Your company’s design team is creating a new color scheme for the web app. You have been tasked with determining whether the new color scheme will increase sales. You want to conduct testing on live production traffic. How should you design the study?

A : an external HTTP(S) load balancer to route a predetermined percentage of traffic to two different color schemes of your application. Analyze the results to determine whether there is a statistically significant difference in sales.

B : an external HTTP(S) load balancer to route traffic to the original color scheme while the new deployment is created and tested. After testing is complete, reroute all traffic to the new color scheme. Analyze the results to determine whether there is a statistically significant difference in sales.

C : an external HTTP(S) load balancer to mirror traffic to the new version of your application. Analyze the results to determine whether there is a statistically significant difference in sales

D : able a feature flag that displays the new color scheme to half of all users. Monitor sales to see whether they increase for this group of users.

Answer: D