You need to deploy resources from your laptop to Google Cloud using Terraform. Resources in your Google Cloud environment must be created using a service account. Your Cloud Identity has the roles/iam.serviceAccountTokenCreator Identity and Access Management (IAM) role and the necessary permissions to deploy the resources using Terraform. You want to set up your development environment to deploy the desired resources following Google-recommended best practices. What should you do?
A. 1) Download the service account's key file in JSON format, and store it locally on your laptop. 2) Set the GOOGLE_APPLICATION_CREDENTIALS environment variable to the path of your downloaded key file.
B. 1) Run the following command from a command line: gcloud config set auth/impersonate_service_account service-account- [email protected]. 2) Set the GOOGLE_OAUTH_ACCESS_TOKEN environment variable to the value that is returned by the gcloud auth print-access-token command.
C. 1) Run the following command from a command line: gcloud auth application-default login. 2) In the browser window that opens, authenticate using your personal credentials.
D. 1) Store the service account's key file in JSON format in Hashicorp Vault. 2) Integrate Terraform with Vault to retrieve the key file dynamically, and authenticate to Vault using a short-lived access token.
You are developing an HTTP API hosted on a Compute Engine virtual machine instance that needs to be
invoked by multiple clients within the same Virtual Private Cloud (VPC). You want clients to be able to get the
IP address of the service. What should you do?
A. Reserve a static external IP address and assign it to an HTTP(S) load balancing service's forwarding rule. Clients should use this IP address to connect to the service.
B. Reserve a static external IP address and assign it to an HTTP(S) load balancing service's forwarding rule. Then, define an A record in Cloud DNS. Clients should use the name of the A record to connect to the service.
C. Ensure that clients use Compute Engine internal DNS by connecting to the instance name with the url https://[INSTANCE_NAME].[ZONE].c.[PROJECT_ID].internal/.
D. Ensure that clients use Compute Engine internal DNS by connecting to the instance name with the url https://[API_NAME]/[API_VERSION]/.
You have an application running on Google Kubernetes Engine (GKE). The application is currently using a logging library and is outputting to standard output You need to export the logs to Cloud Logging, and you need the logs to include metadata about each request. You want to use the simplest method to accomplish this. What should you do?
A. Change your application s logging library to the Cloud Logging library and configure your application to export logs to Cloud Logging
B. Update your application to output logs in CSV format, and add the necessary metadata to the CSV.
C. Install the Fluent Bit agent on each of your GKE nodes, and have the agent export all logs from /var/ log.
D. Update your application to output logs in JSON format, and add the necessary metadata to the JSON
Your team is developing a new application using a PostgreSQL database and Cloud Run. You are responsible for ensuring that all traffic is kept private on Google Cloud. You want to use managed services and follow Google-recommended best practices. What should you do?
A. 1. Enable Cloud SQL and Cloud Run in the same project.
2.
Configure a private IP address for Cloud SQL. Enable private services access.
3.
Create a Serverless VPC Access connector.
4.
Configure Cloud Run to use the connector to connect to Cloud SQL.
B. 1. Install PostgreSQL on a Compute Engine virtual machine (VM), and enable Cloud Run in the same project.
2.
Configure a private IP address for the VM. Enable private services access.
3.
Create a Serverless VPC Access connector.
4.
Configure Cloud Run to use the connector to connect to the VM hosting PostgreSQL.
C. 1. Use Cloud SQL and Cloud Run in different projects.
2.
Configure a private IP address for Cloud SQL. Enable private services access.
3.
Create a Serverless VPC Access connector.
4.
Set up a VPN connection between the two projects. Configure Cloud Run to use the connector to connect to Cloud SQL.
D. 1. Install PostgreSQL on a Compute Engine VM, and enable Cloud Run in different projects.
2.
Configure a private IP address for the VM. Enable private services access.
3.
Create a Serverless VPC Access connector.
4.
Set up a VPN connection between the two projects. Configure Cloud Run to use the connector to access the VM hosting PostgreSQL
You need to configure a Deployment on Google Kubernetes Engine (GKE). You want to include a check that verifies that the containers can connect to the database. If the Pod is failing to connect, you want a script on the container to run to complete a graceful shutdown. How should you configure the Deployment?
A. Create two jobs: one that checks whether the container can connect to the database, and another that runs the shutdown script if the Pod is failing.
B. Create the Deployment with a livenessProbe for the container that will fail if the container can't connect to the database. Configure a Prestop lifecycle handler that runs the shutdown script if the container is failing.
C. Create the Deployment with a PostStart lifecycle handler that checks the service availability. Configure a PreStop lifecycle handler that runs the shutdown script if the container is failing.
D. Create the Deployment with an initContainer that checks the service availability. Configure a Prestop lifecycle handler that runs the shutdown script if the Pod is failing.
You have deployed a Java application to Cloud Run. Your application requires access to a database hosted on Cloud SQL Due to regulatory requirements: your connection to the Cloud SQL instance must use its internal IP address. How should you configure the connectivity while following Google-recommended best practices'?
A. Configure your Cloud Run service with a Cloud SQL connection.
B. Configure your Cloud Run service to use a Serverless VPC Access connector
C. Configure your application to use the Cloud SQL Java connector
D. Configure your application to connect to an instance of the Cloud SQL Auth proxy
You have a container deployed on Google Kubernetes Engine. The container can sometimes be slow to launch, so you have implemented a liveness probe. You notice that the liveness probe occasionally fails on launch. What should you do?
A. Add a startup probe.
B. Increase the initial delay for the liveness probe.
C. Increase the CPU limit for the container.
D. Add a readiness probe.
You are a developer working with the CI/CD team to troubleshoot a new feature that your team introduced. The CI/CD team used HashiCorp Packer to create a new Compute Engine image from your development branch. The image was successfully built, but is not booting up. You need to investigate the issue with the CI/CD team. What should you do?
A. Create a new feature branch, and ask the build team to rebuild the image.
B. Shut down the deployed virtual machine, export the disk, and then mount the disk locally to access the boot logs.
C. Install Packer locally, build the Compute Engine image locally, and then run it in your personal Google Cloud project.
D. Check Compute Engine OS logs using the serial port, and check the Cloud Logging logs to confirm access to the serial port.
You have been tasked with planning the migration of your company's application from on- premises to Google Cloud. Your company's monolithic application is an ecommerce website. The application will be migrated to microservices deployed on Google Cloud in stages. The majority of your company's revenue is generated through online sales, so it is important to minimize risk during the migration. You need to prioritize features and select the first functionality to migrate. What should you do?
A. Migrate the Product catalog, which has integrations to the frontend and product database.
B. Migrate Payment processing, which has integrations to the frontend, order database, and third-party payment vendor.
C. Migrate Order fulfillment, which has integrations to the order database, inventory system, and third-party shipping vendor.
D. Migrate the Shopping cart, which has integrations to the frontend, cart database, inventory system, and payment processing system.
You are using Cloud Run to host a global ecommerce web application. Your company's design team is creating a new color scheme for the web app. You have been tasked with determining whether the new color scheme will increase sales You want to conduct testing on live production traffic How should you design the study?
A. Use an external HTTP(S) load balancer to route a predetermined percentage of traffic to two different color schemes of your application Analyze the results to determine whether there is a statistically significant difference in sales.
B. Use an external HTTP(S) load balancer to route traffic to the original color scheme while the new deployment is created and tested After testing is complete reroute all traffic to the new color scheme Analyze the results to determine whether there is a statistically significant difference in sales.
C. Enable a feature flag that displays the new color scheme to half of all users. Monitor sales to see whether they increase for this group of users.
D. Use an external HTTP(S) load balancer to mirror traffic to the new version of your application Analyze the results to determine whether there is a statistically significant difference in sales.
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Google exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your PROFESSIONAL-CLOUD-DEVELOPER exam preparations and Google certification application, do not hesitate to visit our Vcedump.com to find your solutions here.