Question 1
Question
What is true about a project?
Answer
-
Projects are a way of organizing and grouping resources in some logical way.
-
You can control access to resources within a project using IAM members and roles.
-
Resources within a project are billed together, so projects can be used to organize billing data.
-
All of the above.
Question 2
Question
App Engine Admin is an example of what type of role?
Answer
-
Predefined
-
Primitive
-
Custom
-
Service
Question 3
Question
Which API function would be used to see all the virtual machines in a project?
Answer
-
get.compute.instances
-
list.compute.instances
-
instances.list.compute
-
compute.instances.list
Question 4
Question
What is true about project names versus project IDs?
Answer
-
Project IDs must be unique in all the world.
-
Project names must be unique in all the world.
-
Project names and IDs must be the same.
-
Project names are specified when making service requests.
Question 5
Question
You want to add a colleague to a Google Cloud project so they can help you program it. When adding that person as a member of your project, what could you use to identify them?
Question 6
Question
What is not true about an API?
Answer
-
APIs have to be enabled within a project to be used.
-
API requests must be authenticated and the caller must be assigned a role that authorizes the API request.
-
Only IAM members working in the role of Project Owner, Project Editor or Project Developer can use an API. Other users must use the console.
-
You assign callers IAM roles to allow access to APIs.
Question 7
Question
Project Editor is considered what type of role?
Answer
-
Predefined
-
Custom
-
Primitive
-
Root
Question 8
Question
What best describe the relationship between Services and Service APIs?
Answer
-
Services represent the products available within Google Cloud, and each service has an API that consists of a collection of functions that can be invoked when using the service.
-
Services are things provided by humans, like a help desk of tech support. Service APIs are things that are automated in code.
-
Services are those things aimed at end users, like Google Maps or Gmail. Service APIs are those things used by programmers, like Kubernetes or App Engine.
-
All of the above are true.
Question 9
Question
Let's say you wanted to control what APIs could be used by an application you are developing. What would you do?
Answer
-
Create a login using a G Suite account and programmatically impersonate that account in your code.
-
Create a Service Account with only roles required by your program and download the Service Account key. Configure your software to use that key.
-
Add an SSH key to a Compute Engine instance metadata. Then add that SSH key as an IAM member within your project. Assign the required roles to that member.
-
All of the above would work.
Question 10
Question
If someone is granted the Editor role within a Project, but you want them to have read-only access to a particular bucket in Storage, what could you do?
Answer
-
Assign the Storage Object Viewer role at the Organization level. This will override the Project level permission.
-
Assign the Storage Object Viewer role at the Bucket level. This will override the Project level permission.
-
Put the bucket in a different project and assign them the Storage Object Viewer role at the bucket level.
-
You cannot remove access to the bucket, once you make them a Project Editor.
Question 11
Question
Which command below could be used to create a Cloud Storage bucket named "pet_photos"?
Answer
-
gcloud storage buckets create pet-photos
-
gcloud storage buckets create gs://pet-photos
-
gcloud storage create-bucket --name=pet-photos
-
gsutil mb gs://pet-photos
Question 12
Question
You want to create a virtual machine using code. Which way below would not work?
Answer
-
Use a Deployment Manager template.
-
Using Google Cloud Shell, run the gcloud compute instances create command.
-
Install the Google Cloud SDK on your computer and use the gcloud compute instances create command.
-
Use the Python SDK
-
All of the above would work.
Question 13
Question
You want to copy a file named "noir.jpg" to a Cloud Storage bucket named "pet-photos". What command below would most likely work?
Answer
-
gsutil cp noir.jpg gs://pet-photos
-
gcloud storage buckets copy --source=noir.jpg --target=gs://pet-photos
-
gcloud storage copy-file noir.jpg gs://pet-photos
-
gsutil copy noir.jpg gs://pet-photos
Question 14
Question
What framework is used to create dynamic deployment manager templates?
Question 15
Question
You've created a deployment manager template. Which command would most likely work to deploy the infrastructure specified in the template?
Answer
-
gcloud deployment-manager deployments create deployment-name --config template-file-name
-
gcloud deployment-manager create-deployment deployment-name --config template-file-name
-
deployment-manager create deployment-name --config template-file-name
-
dmutils cd deployment-name --config template-file-name
Question 16
Question
Which programming language is supported when writing applications that run on Google Cloud.
Question 17
Question
Which command below could be used to create a virtual machine with the name "web-server" in Zone A of the US Central 1 region?
Answer
-
gcloud compute instances create web-server --zone=us-central1-a
-
gcloud compute instances create web-server --zone=a --region=us-central1
-
gcloud compute create-instance web-server --zone=us-central1-a
-
gcloud compute us-central1 instances create --name=web-server --zone=a
Question 18
Question
You have a BigQuery table named "pets". Which command below would most likely work if you want to get all the Dogs?
Answer
-
gcloud bigquery queries select --sql="select * from animals_dataset.pets where type='Dog'"
-
gcloud bigquery jobs execute --query="select * from animals_dataset.pets where type='Dog'"
-
bq query "select * from animals_dataset.pets where type='Dog'"
-
bq.pets.select(pet => pet.type == "Dog")
Question 19
Question
Deployment Manager templates can be written in which format below?
Question 20
Question
If you install the Google Cloud SDK on your computer, and you want to set up gcloud, which command do you run?
Answer
-
gcloud install
-
gcloud configure
-
gcloud init
-
gcloud config install
Question 21
Question
How do you enable the Google Cloud CDN?
Answer
-
You add a CDN Distribution when configuring the service and use the distribution's URL when configuring a domain CNAME record.
-
It is enabled when you configure the backend service of an HTTP load balancer.
-
It is part of the Instance Group configuration.
-
It is enabled on a Cloud Storage bucket using the command: gsutil enable-cdn gs://bucket-name --true
Question 22
Question
Where do you set up an autoscaler when deploying applications to Compute Engine?
Question 23
Question
Before connecting to a Windows server to administer it, what must you do.
Answer
-
Download the RDP key used when creating the machine.
-
Download the SSH key used when creating the machine.
-
Generate a password for the account you want use to log into the machine.
-
Use PowerShell to enable Windows Virtual Desktop on the instance you want to connect to.
Question 24
Question
What best describes a Shared VPC?
Answer
-
A single VPC network that can be used by 2 or more projects.
-
A VPC network that supports external IP addresses so machines outside the network can access them.
-
A network that uses a VPN and a Cloud Router to provide access from your on-premises network.
-
A network within your on-premises data center that GCP Compute Engine Virtual Machines can be added to.
Question 25
Question
What is true about Firewall Rules in Google Cloud networks.
Answer
-
Both ingress and egress rules are supported.
-
Tags or Service Accounts can be used to determine which machines in your VPC network Firewall Rules apply to.
-
CIDR addressing can be used to determine which machines outside your network can access the machines in your network.
-
All of the above are true.
Question 26
Question
What protocol is used to connect to Linux machines for administration?
Question 27
Question
If you want to deploy a Web application that is highly available, what would you need to do.
Answer
-
Create at least two machines in the same zone and put a load balancer in front of them.
-
Create at least two machines in different zones and put a load balancer in front of them.
-
Create one machine in GCP and a backup in AWS. Then use a DNS health check and forwarding rule to route to the backup in the event of a failure.
-
Create a health check that monitors a machine and trigger a Cloud Function to create a new machine if the health check fails.
Question 28
Question
What is an advantage of the CDN?
Answer
-
Reduced network egress cost when delivering content all over the world.
-
Reduced latency and better performance when delivering content all over the world.
-
Protection against distributed denial of service attacks.
-
All of the above
Question 29
Question
What protocol is used to connect to a Windows machine running in Google Cloud?
Question 30
Question
Which would be a valid internal IP address range when creating a subnet within a Google Cloud VPC network.
Answer
-
10.128.0.0/20
-
172.16.0.0/16
-
192.168.1.0/24
-
All of the above
Question 31
Question
You're trying to SSH into a machine to administrate it, but it doesn't work. What might be the cause?
Answer
-
The machine does not have a public IP.
-
There is no firewall rule that opens port 22.
-
Your SSH key is invalid.
-
All of the above could be the problem.
Question 32
Question
You have a machine in a Google Cloud network, but you don't want to give it an external IP address. How could you connect to that machine to administer it?
Answer
-
Create another machine in the same network that has an external IP and connect to it first, then connect from it to the machine that has no external IP.
-
Set up a VPN and connect through it.
-
Both of the above would work.
-
None of the above would work. You need to have an external IP address to connect to a machine from an external network.
Question 33
Question
Google Cloud SQL supports which databases?
Answer
-
MySQL
-
PostgreSQL
-
SQL Server
-
All of the above
Question 34
Question
Which is an example of a NoSQL database solution in GCP?
Answer
-
Spanner
-
Bigtable
-
BigQuery
-
Cloud SQL
Question 35
Question
True or False. You enable encryption in a Cloud Storage bucket by creating an encryption key using the Key Management Service and specifying that key when creating the bucket.
Question 36
Question
You are looking for a managed database solution for storing things like user profiles, product information, product reviews and session data. What GCP solution would be most appropriate?
Answer
-
Firestore
-
Bigtable
-
Spanner
-
Cloud Storage
Question 37
Question
What is true about Firestore?
Answer
-
It supports ACID transactions.
-
You can create primary and secondary indexes.
-
There is a 1 GB free tier.
-
All of the above are true.
Question 38
Question
You want to deliver static web content like CSS files, JavaScript files, PDFs, and photos from a Cloud Storage bucket. What would most likely be the best Storage Class to use assuming high availability was a key requirement?
Answer
-
Multi-regional
-
Regional
-
Nearline
-
Coldline
Question 39
Question
What is true about Google Cloud Storage?
Answer
-
Bucket names must be unique within your project.
-
You pay for the amount of space reserved for a bucket when it is created.
-
Versioning can be enabled on a bucket.
-
All of the above are true.
Question 40
Question
What is NOT true about a Spanner database?
Answer
-
Can be configured to run in a single region or multiple regions.
-
Scales by adding additional nodes.
-
Supports strong consistency and ACID transactions.
-
It is designed for very high availability.
-
All of the above are true.
Question 41
Question
Currently, you have an HBase database on-premises that you want to move to GCP. There is a lot of data and very fast writes are required. Which service on GCP would be likely most appropriate?
Answer
-
Firestore
-
Spanner
-
Bigtable
-
BigQuery
Question 42
Question
The company has mandated that you store all company documents and copies of all emails and text messages for seven years just in case you ever need them for an audit. Most of the data will never be accessed, but it is important that you do not lose it. What is the best storage solution?
Answer
-
Multi-regional
-
Regional
-
Nearline
-
Coldline
Question 43
Question
Your company is working on a new version of an enterprise inventory management system that you have sold for many years. In an effort to modernize the application you have rearchitected it using micro-services running in Docker containers. You want to simplify the deployment of the application. You also want to be able to deploy the application to any public cloud or deploy the application to customers' internal data centers, whichever they prefer. Which would you recommend below?
Answer
-
Create Terraform templates to deploy the application infrastructure on any cloud. Then, create shell scripts to deploy the application. Run the scripts from a Jenkins server when code changes are committed.
-
Create Kubernetes configuration files to deploy the application on a Kubernetes cluster. Use a script to create the Kubernetes cluster on the customers' preferred environment.
-
Create scripts to deploy the application to App Engine on GCP, Elastic Beanstalk on AWS or Azure Services. Use the appropriate script depending on the environment chosen.
-
Create a VMWare virtual machine that runs the application. Then, import that VM Image into the customers' preferred Cloud Environment when deploying the application.
Question 44
Question
Which is a trigger supported in Cloud Functions?
Question 45
Question
You want to deploy a web service to a Kubernetes cluster. You want to have multiple instances of the service running and you want new instances created and destroyed to meet demand. Which Kubernetes components do you need to create?
Question 46
Question
You have an existing Web application programmed in ASP.NET version 3. It's an internal app with not a lot of users or data. Currently, the data is stored on the same machine using a SQL Server Express database. You need to move the application to the cloud without rewriting it. What would you choose to deploy the application?
Answer
-
Compute Engine
-
Kubernetes
-
App Engine
-
Cloud Functions
Question 47
Question
What feature of App Engine allows you to easily create Canary deployments and do A/B testing?
Answer
-
DNS Serving
-
Multi-Cast Provisioning
-
Version Selectors
-
Traffic Splitting
Question 48
Question
You and a couple friends have come up with a great idea for an application. All of you can program, but none of you has a lot of experience managing compute infrastructure and networks. You also don't want to spend a lot to get started and you don't want to purchase infrastructure in case the application doesn't become popular. You have chosen Google Cloud to run your application. What service would you recommend for deploying the application?
Answer
-
Compute Engine
-
Kubernetes Engine
-
App Engine
-
Cloud Functions
Question 49
Question
You have version one of an existing App Engine application running. You have created version two. You want to deploy version two to App Engine, but you want to test it before it starts handling the user requests. Which command would you use?
Answer
-
gcloud app deploy --version=two --no-promote
-
gcloud app update --version=two --no-promote
-
gcloud app-engine deployments create my-app --version=two --traffic=0
-
gcloud app-engine deployments update my-app --version=two
Question 50
Question
You've creates a Kubernetes configuration file called app-config.yaml. Which statement below would you most likely use to deploy your application to a Kubernetes Cluster running in Kubernetes Engine?
Answer
-
kubectl apply -f app-config.yaml
-
gcloud kubernetes deployments create my-app --config=app-config.yaml
-
gcloud container deployments create my-app --config=app-config.yaml
-
gcloud deploy my-app--cluster=my-cluster --config=app-config.yaml
Question 51
Question
You want to write a program that responds to photos being uploaded to a Cloud Storage bucket. When a photo appears, you want to first detect if it is inappropriate content. If it is, you want to delete it. If the content is OK, then you want to label the photos with keywords and add it to a Bigtable table that you are using for a searchable index. Which would you use to deploy your program?
Answer
-
Compute Engine VMs
-
Kubernetes
-
App Engine
-
Cloud Functions
Question 52
Question
The smallest unit of deployment in a Kubernetes cluster is called what?
Answer
-
Node
-
Pod
-
Instance
-
Container
Question 53
Question
You've deployed an application to App Engine. There is an occasional performance problem that you are trying to diagnose. What Stackdriver feature might help you with this?
Answer
-
Tracing
-
Alerting
-
Resource monitoring
-
Uptime checks
Question 54
Question
You have an application that you want to write to the Stackdriver logs from a Compute Engine virtual machine. It is not working, what might be the cause?
Answer
-
You have to install the Stackdriver monitoring agent.
-
You have to install the Stackdriver logging agent.
-
Your machine needs full access to all Cloud APIs
-
All of the above.
Question 55
Question
If you wanted to monitor memory utilization of a virtual machine running in Compute Engine, what would you have to do first?
Answer
-
Install the Stackdriver monitoring agent
-
Install the Stackdriver logging agent
-
Start the Linux resource monitoring daemon
-
You don't have to do anything, Stackdriver monitoring is enabled by default for Compute Engine VMs.
Question 56
Question
Which service cannot be monitored using Stackdriver monitoring?
Question 57
Question
If you were setting up an Instance Group and wanted to enable autohealing, what Stackdriver feature would you need to create?
Answer
-
An uptime check
-
A health check
-
An alerting policy
-
A log export
Question 58
Question
You've deployed a new version of an App Engine application. The application worked on your developer machine and passed all of its unit testing. However, it is failing in the Cloud. What Stackdriver feature might help you track down the problem?
Answer
-
Debugging
-
Tracing
-
Error Reporting
-
All of the above
Question 59
Question
You want to be notified if application usage exceeds some value. What would you create?
Answer
-
A health check
-
An alerting policy
-
A logging pipeline
-
A resource monitor
Question 60
Question
You want to analyze your application logs in realtime to detect anomalies. How might you do that?
Answer
-
Export the logs to Cloud Storage and create a Cloud Function to monitor changes.
-
Export the logs to Pub/Sub and create and a Dataflow job to monitor the stream for anomalies.
-
Export the logs to BigQuery and create an App Engine application to query the BigQuery data.
-
Export the logs to Datastore and monitor it with a Spark Cluster running in Dataproc.