Google ASSOCIATE-CLOUD-ENGINEER Online Practice Questions and Exam Preparation

Google ASSOCIATE-CLOUD-ENGINEER Online Questions & Answers

• Question 301:

  Your organization has three existing Google Cloud projects. You need to bill the Marketing department for only their Google Cloud services for a new initiative within their group. What should you do?

  A. 1. Verify that you ace assigned the Billing Administrator IAM role tor your organization's Google Cloud Project for the Marketing department 2. Link the new project to a Marketing Billing Account
  B. 1. Verify that you are assigned the Billing Administrator IAM role for your organization's Google Cloud account 2.Create a new Google Cloud Project for the Marketing department 3.Set the default key-value project labels to department marketing for all services in this project
  C. 1. Verify that you are assigned the Organization Administrator IAM role for your organization's Google Cloud account 2.Create a new Google Cloud Project for the Marketing department 3.Link the new project to a Marketing Billing Account.
  D. 1. Verity that you are assigned the Organization Administrator IAM role for your organization's Google Cloud account 2.Create a new Google Cloud Project for the Marketing department 3.Set the default key value project labels to department marketing for all services in this protect
  A. 1. Verify that you ace assigned the Billing Administrator IAM role tor your organization's Google Cloud Project for the Marketing department 2. Link the new project to a Marketing Billing Account

  ---

  Explanation

  Option A seems the only valid answer as Billing Admin can link a new project to a billing acc

  B and D assumes you have the resourcemanager.projects.create permission to create a new project. According to https://cloud.google.com/resource-manager/docs/creating-managing-labels#permissions resourcemanager.projects.update permission is needed to edit the labels neither Billing Adminstrator nor Organization Adminstrator has resourcemanager.projects.update permission to edit the labels they only can see the labels of a project as both have only resourcemanager.projects.get permission so Options B and D are both wrong

  C is wrong because neither does Organizational admin have resourcemanager.projects.create permission to create a project nor does it have permission to link a project to a billing account - > https://cloud.google.com/iam/docs/ understanding-roles#resourcemanager.organizationAdmin

• Question 302:

  You've created the code for a Cloud Function that will respond to HTTP triggers and return some data in JSON format. You have the code locally, it's tested and working. Which command can you use to create the function inside Google Cloud?

  A. gcloud functions deploy
  B. gcloud function create
  C. gcloud functions create
  D. gcloud function deploy
  D. gcloud function deploy

  ---

  Explanation

• Question 303:

  You have a Google Cloud Platform account with access to both production and development projects. You need to create an automated process to list all compute instances in development and production projects on a daily basis. What should you do?

  A. Create two configurations using gcloud config. Write a script that sets configurations as active, individually. For each configuration, use gcloud compute instances list to get a list of compute resources.
  B. Create two configurations using gsutil config. Write a script that sets configurations as active, individually. For each configuration, use gsutil compute instances list to get a list of compute resources.
  C. Go to Cloud Shell and export this information to Cloud Storage on a daily basis.
  D. Go to GCP Console and export this information to Cloud SQL on a daily basis.
  A. Create two configurations using gcloud config. Write a script that sets configurations as active, individually. For each configuration, use gcloud compute instances list to get a list of compute resources.

  ---

  Explanation

  Create two configurations using gcloud config. Write a script that sets configurations as active, individually. For each configuration, use gcloud compute instances list to get a list of compute resources.

• Question 304:

  Your company uses BigQuery for data warehousing. Over time, many different business units in your company have created 1000+ datasets across hundreds of projects. Your CIO wants you to examine all datasets to find tables that contain an employee_ssn column. You want to minimize effort in performing this task. What should you do?

  A. Go to Data Catalog and search for employee_ssn in the search box.
  B. Write a shell script that uses the bq command line tool to loop through all the projects in your organization.
  C. Write a script that loops through all the projects in your organization and runs a query on INFORMATION_SCHEMA.COLUMNS view to find the employee_ssn column.
  D. Write a Cloud Dataflow job that loops through all the projects in your organization and runs a query on INFORMATION_SCHEMA.COLUMNS view to find employee_ssn column.
  A. Go to Data Catalog and search for employee_ssn in the search box.

  ---

  Explanation

  A is the correct answer, Data Catalog can be used to search the column with keyword:value pair,

  Filter your search by adding a keyword:value to your search terms in the search box:

  Keyword Description name: Match data asset name ***column: Match column name or nested column name description: Match table description

• Question 305:

  You want to select and configure a solution for storing and archiving data on Google Cloud Platform. You need to support compliance objectives for data from one geographic location. This data is archived after 30 days and needs to be accessed annually. What should you do?

  A. Select Multi-Regional Storage. Add a bucket lifecycle rule that archives data after 30 days to Coldline Storage.
  B. Select Multi-Regional Storage. Add a bucket lifecycle rule that archives data after 30 days to Nearline Storage.
  C. Select Regional Storage. Add a bucket lifecycle rule that archives data after 30 days to Nearline Storage.
  D. Select Regional Storage. Add a bucket lifecycle rule that archives data after 30 days to Coldline Storage.
  D. Select Regional Storage. Add a bucket lifecycle rule that archives data after 30 days to Coldline Storage.

  ---

  Explanation

  Google Cloud Coldline is a new cold-tier storage for archival data with access frequency of less than once per year. Unlike other cold storage options, Nearline has no delays prior to data access, so now it is the leading solution among competitors.

• Question 306:

  Your team has been working on building a web application. The plan is to deploy to Kubernetes. You currently have a Dockerfile that works locally. How can you get the application deployed to Kubernetes?

  A. Use kubectl to push the convert the Dockerfile into a deployment.
  B. Use docker to create a container image, save the image to Cloud Storage, deploy the uploaded image to Kubernetes with kubectl.
  C. Use kubectl apply to push the Dockerfile to Kubernetes.
  D. Use docker to create a container image, push it to the Google Container Registry, deploy the uploaded image to Kubernetes with kubectl.
  D. Use docker to create a container image, push it to the Google Container Registry, deploy the uploaded image to Kubernetes with kubectl.

  ---

  Explanation

• Question 307:

  You need to create a Compute Engine instance in a new project that doesn't exist yet. What should you do?

  A. Using the Cloud SDK, create a new project, enable the Compute Engine API in that project, and then create the instance specifying your new project.
  B. Enable the Compute Engine API in the Cloud Console, use the Cloud SDK to create the instance, and then use the --project flag to specify a new project.
  C. Using the Cloud SDK, create the new instance, and use the --project flag to specify the new project. Answer yes when prompted by Cloud SDK to enable the Compute Engine API.
  D. Enable the Compute Engine API in the Cloud Console. Go to the Compute Engine section of the Console to create a new instance, and look for the Create In A New Project option in the creation form.
  A. Using the Cloud SDK, create a new project, enable the Compute Engine API in that project, and then create the instance specifying your new project.

  ---

  Explanation

  Quickstart: Creating a New Instance Using the Command Line Before you begin

  1.In the Cloud Console, on the project selector page, select or create a Cloud project.

  2.Make sure that billing is enabled for your Google Cloud project. Learn how to confirm billing is enabled for your project.

  To use the gcloud command-line tool for this quickstart, you must first install and initialize the Cloud SDK:

  1.Download and install the Cloud SDK using the instructions given on Installing Google Cloud SDK.

  2.Initialize the SDK using the instructions given on Initializing Cloud SDK.

  To use gcloud in Cloud Shell for this quickstart, first activate Cloud Shell using the instructions given on Starting Cloud Shell.

  https://cloud.google.com/ai-platform/deep-learning-vm/docs/quickstart-cli#before-you-begin

• Question 308:

  You are planning to migrate your containerized workloads to Google Kubernetes Engine (GKE). You need to determine which GKE option to use. Your solution must have high availability, minimal downtime, and the ability to promptly apply security updates to your nodes. You also want to pay only for the compute resources that your workloads use without managing nodes. You want to follow Google-recommended practices and minimize operational costs. What should you do?

  A. Configure a Standard regional GKE duster.
  B. Configure a Standard zonal GKE duster.
  C. Configure a Standard multi-zonal GKE cluster.
  D. Configure an Autopilot GKE cluster.
  D. Configure an Autopilot GKE cluster.

  ---

  Explanation

  Autopilot GKE Cluster:

  With Autopilot, Google Cloud manages the underlying node infrastructure, including patching, scaling, and maintenance. This means you don't need to manage nodes manually, which reduces operational overhead and ensures that security

  updates are promptly applied. Additionally, Autopilot follows a pay-per-pod model, so you pay only for the compute resources your workloads use. It is designed to be highly available and to minimize downtime.

• Question 309:

  You are building a data lake on Google Cloud for your Internet of Things (IoT) application. The IoT application has millions of sensors that are constantly streaming structured and unstructured data to your backend in the cloud. You want to build a highly available and resilient architecture based on Google-recommended practices. What should you do?

  A. Stream data to Pub/Sub, and use Dataflow to send data to Cloud Storage.
  B. Stream data to Pub/Sub, and use Storage Transfer Service to send data to BigQuery.
  C. Stream data to Dataflow, and use Dataprep by Trifacta to send data to Bigtable.
  D. Stream data to Dataflow, and use Storage Transfer Service to send data to BigQuery.
  A. Stream data to Pub/Sub, and use Dataflow to send data to Cloud Storage.

  ---

  Explanation

  Streaming data to Pub/Sub allows you to decouple the ingestion of data from the processing and storage, providing a scalable and reliable message queue that can handle the high volume of data coming from millions of sensors.

  Using Dataflow to consume data from Pub/Sub and send it to Cloud Storage allows for real-time data processing and storage. Dataflow is a fully managed service for processing data in real-time or batch mode, making it an ideal choice for handling the constant stream of data from IoT sensors.

  Storing data in Cloud Storage offers high durability and availability, providing a robust foundation for building a data lake. Cloud Storage is a scalable object storage service that can handle large volumes of structured and unstructured data, making it well-suited for the IoT application's data requirements.

• Question 310:

  You want to permanently delete a Pub/Sub topic managed by Config Connector in your Google Cloud project. What should you do?

  A. Use kubectl to create the label deleted-by-cnrm and to change its value to true for the topic resource.
  B. Use kubectl to delete the topic resource.
  C. Use gcloud CLI to delete the topic.
  D. Use gcloud CLI to update the topic label managed-by-cnrm to false.
  B. Use kubectl to delete the topic resource.

  ---

  Explanation

  https://cloud.google.com/config-connector/docs/how-to/getting-started#deleting_a_resource