Google ASSOCIATE-CLOUD-ENGINEER Online Practice Questions and Exam Preparation

Google ASSOCIATE-CLOUD-ENGINEER Online Questions & Answers

• Question 341:

  You have production and test workloads that you want to deploy on Compute Engine. Production VMs need to be in a different subnet than the test VMs. All the VMs must be able to reach each other over Internal IP without creating additional routes. You need to set up VPC and the 2 subnets. Which configuration meets these requirements?

  A. Create a single custom VPC with 2 subnets. Create each subnet in a different region and with a different CIDR range.
  B. Create a single custom VPC with 2 subnets. Create each subnet in the same region and with the same CIDR range.
  C. Create 2 custom VPCs, each with a single subnet. Create each subnet in a different region and with a different CIDR range.
  D. Create 2 custom VPCs, each with a single subnet. Create each subnet in the same region and with the same CIDR range.
  A. Create a single custom VPC with 2 subnets. Create each subnet in a different region and with a different CIDR range.

  ---

  Explanation

  https://cloud.google.com/vpc/docs/using-vpc#subnet-rules

  Primary and secondary ranges for subnets cannot overlap with any allocated range, any primary or secondary range of another subnet in the same network, or any IP ranges of subnets in peered networks.

• Question 342:

  You have experimented with Google Cloud using your own credit card and expensed the costs to your company. Your company wants to streamline the billing process and charge the costs of your projects to their monthly invoice. What should you do?

  A. Grant the financial team the IAM role of "Billing Account User" on the billing account linked to your credit card.
  B. Set up BigQuery billing export and grant your financial department IAM access to query the data.
  C. Create a ticket with Google Billing Support to ask them to send the invoice to your company.
  D. Change the billing account of your projects to the billing account of your company.
  D. Change the billing account of your projects to the billing account of your company.

  ---

  Explanation

• Question 343:

  You are deploying an application to a Compute Engine VM in a managed instance group. The application must be running at all times, but only a single instance of the VM should run per GCP project. How should you configure the instance group?

  A. Set autoscaling to On, set the minimum number of instances to 1, and then set the maximum number of instances to 1.
  B. Set autoscaling to Off, set the minimum number of instances to 1, and then set the maximum number of instances to 1.
  C. Set autoscaling to On, set the minimum number of instances to 1, and then set the maximum number of instances to 2.
  D. Set autoscaling to Off, set the minimum number of instances to 1, and then set the maximum number of instances to 2.
  A. Set autoscaling to On, set the minimum number of instances to 1, and then set the maximum number of instances to 1.

  ---

  Explanation

  In my GCP console, I created a managed instance group for each answer. For each answer I deleted the instance that was created as a simple test to prove or disprove each answer.

  In answer A, another instance was created after I deleted the instance In answer B, no other instance was created after I deleted the instance In answer C, another instance was created after I deleted the instance In answer D, no other instance was created after I deleted the instance

  My observation is A is the correct Answer.

  A - Correct - It correctly solves the problem with only a single instance at one time B - Incorrect - Does not fit the requirement because AFTER the deletion of the instance, no other instance was created C - Incorrect - It creates another instance after the delete HOWEVER it 2 VM's could be created even if the target is exceeded D - Incorrect - Does not fit the requirement because AFTER the deletion of the instance, no other instance was created

• Question 344:

  You manage three Google Cloud projects with the Cloud Monitoring API enabled. You want to follow Google-recommended practices to visualize CPU and network metrics for all three projects together. What should you do?

  A. 1. Create a Cloud Monitoring Dashboard 2.Collect metrics and publish them into the Pub/Sub topics 3.Add CPU and network Charts (or each of (he three projects
  B. 1. Create a Cloud Monitoring Dashboard. 2.Select the CPU and Network metrics from the three projects. 3.Add CPU and network Charts lot each of the three protects.
  C. 1 Create a Service Account and apply roles/viewer on the three projects 2.Collect metrics and publish them lo the Cloud Monitoring API 3.Add CPU and network Charts for each of the three projects.
  D. 1. Create a fourth Google Cloud project 2 Create a Cloud Workspace from the fourth project and add the other three projects
  B. 1. Create a Cloud Monitoring Dashboard. 2.Select the CPU and Network metrics from the three projects. 3.Add CPU and network Charts lot each of the three protects.

  ---

  Explanation

• Question 345:

  You are deploying an application to Google Kubernetes Engine (GKE) that needs to call an external third- party API. You need to provide the external API vendor with a list of IP addresses for their firewall to allow traffic from your application. You want to follow Google-recommended practices and avoid any risk of interrupting traffic to the API due to IP address changes. What should you do?

  A. Configure your GKE cluster with one node, and set the node to have a static external IP address. Ensure that the GKE cluster autoscaler is off. Send the external IP address of the node to the vendor to be added to the allowlist.
  B. Configure your GKE cluster with private nodes. Configure a Cloud NAT instance with static IP addresses. Provide these IP addresses to the vendor to be added to the allowlist.
  C. Configure your GKE cluster with private nodes. Configure a Cloud NAT instance with dynamic IP addresses. Provide these IP addresses to the vendor to be added to the allowlist.
  D. Configure your GKE cluster with public nodes. Write a Cloud Function that pulls the public IP addresses of each node in the cluster, Trigger the function to run every day with Cloud Scheduler. Send the list to the vendor by email every day.
  B. Configure your GKE cluster with private nodes. Configure a Cloud NAT instance with static IP addresses. Provide these IP addresses to the vendor to be added to the allowlist.

  ---

  Explanation

  Private GKE nodes enhance security by not exposing the nodes to the public internet. Cloud NAT with static IP addresses ensures all egress traffic from the cluster uses a consistent, known set of IPs, which you can safely provide to the third-party API vendor. This approach aligns with Google-recommended practices for secure and reliable egress traffic from GKE clusters.

• Question 346:

  You need a dynamic way of provisioning VMs on Compute Engine. The exact specifications will be in a dedicated configuration file. You want to follow Google's recommended practices. Which method should you use?

  A. Deployment Manager
  B. Cloud Composer
  C. Managed Instance Group
  D. Unmanaged Instance Group
  A. Deployment Manager

  ---

  Explanation

  https://cloud.google.com/deployment-manager/docs/configuration/create-basic-configuration

• Question 347:

  You want to configure 10 Compute Engine instances for availability when maintenance occurs. Your requirements state that these instances should attempt to automatically restart if they crash. Also, the instances should be highly available including during system maintenance. What should you do?

  A. Create an instance template for the instances. Set the `Automatic Restart' to on. Set the `On-host maintenance' to Migrate VM instance. Add the instance template to an instance group.
  B. Create an instance template for the instances. Set `Automatic Restart' to off. Set `On-host maintenance' to Terminate VM instances. Add the instance template to an instance group.
  C. Create an instance group for the instances. Set the `Autohealing' health check to healthy (HTTP).
  D. Create an instance group for the instance. Verify that the `Advanced creation options' setting for `do not retry machine creation' is set to off.
  A. Create an instance template for the instances. Set the `Automatic Restart' to on. Set the `On-host maintenance' to Migrate VM instance. Add the instance template to an instance group.

  ---

  Explanation

  https://cloud.google.com/compute/docs/instances/setting-instance-scheduling-options

  onHostMaintenance: Determines the behavior when a maintenance event occurs that might cause your instance to reboot.

  [Default] MIGRATE, which causes Compute Engine to live migrate an instance when there is a maintenance event.

  TERMINATE, which stops an instance instead of migrating it.

  automaticRestart: Determines the behavior when an instance crashes or is stopped by the system.

  [Default] true, so Compute Engine restarts an instance if the instance crashes or is stopped.

  false, so Compute Engine does not restart an instance if the instance crashes or is stopped.

• Question 348:

  You need to set up a policy so that videos stored in a specific Cloud Storage Regional bucket are moved to Coldline after 90 days, and then deleted after one year from their creation. How should you set up the policy?

  A. Use Cloud Storage Object Lifecycle Management using Age conditions with SetStorageClass and Delete actions. Set the SetStorageClass action to 90 days and the Delete action to 275 days (365 - 90)
  B. Use Cloud Storage Object Lifecycle Management using Age conditions with SetStorageClass and Delete actions. Set the SetStorageClass action to 90 days and the Delete action to 365 days.
  C. Use gsutil rewrite and set the Delete action to 275 days (365-90).
  D. Use gsutil rewrite and set the Delete action to 365 days.
  B. Use Cloud Storage Object Lifecycle Management using Age conditions with SetStorageClass and Delete actions. Set the SetStorageClass action to 90 days and the Delete action to 365 days.

  ---

  Explanation

  There should be no reason to recalculate the time needed to delete after a year.

• Question 349:

  Your team is developing a product catalog that allows end users to search and filter. The full catalog of products consists of about 500 products. The team doesn't have any experience with SQL, or schema migrations, so they're considering a

  NoSQL option.

  Which database service would work best?

  A. Cloud SQL
  B. Cloud Memorystore
  C. Bigtable
  D. Cloud Datastore
  D. Cloud Datastore

  ---

  Explanation

• Question 350:

  You need to provide a cost estimate for a Kubernetes cluster using the GCP pricing calculator for Kubernetes. Your workload requires high IOPs, and you will also be using disk snapshots. You start by entering the number of nodes, average hours, and average days. What should you do next?

  A. Fill in local SSD. Fill in persistent disk storage and snapshot storage.
  B. Fill in local SSD. Add estimated cost for cluster management.
  C. Select Add GPUs. Fill in persistent disk storage and snapshot storage.
  D. Select Add GPUs. Add estimated cost for cluster management.
  A. Fill in local SSD. Fill in persistent disk storage and snapshot storage.

  ---

  Explanation

  This one is Tricky, local SSD is require for High IOPS - https://cloud.google.com/compute/docs/disks/local-ssd , but it say using disk snapshots. A is correct.