Google Associate-Cloud-Engineer Exam Actual Questions

Name: Google Associate Cloud Engineer
Brand: QA4Exam
SKU: Associate-Cloud-Engineer
Price: 30 USD
Availability: InStock
Rating: 4.9 (400 reviews)

The questions for Associate-Cloud-Engineer were last updated on Oct 2, 2024.

Viewing page 1 out of 57 pages.
Viewing questions 1-5 out of 283 questions

Unlock Access to All 283 Questions & Answers

Question No. 1

During a recent audit of your existing Google Cloud resources, you discovered several users with email addresses outside of your Google Workspace domain.

You want to ensure that your resources are only shared with users whose email addresses match your domain. You need to remove any mismatched users, and you want to avoid having to audit your resources to identify mismatched users. What should you do?

ACreate a Cloud Scheduler task to regularly scan your projects and delete mismatched users.

BCreate a Cloud Scheduler task to regularly scan your resources and delete mismatched users.

CSet an organizational policy constraint to limit identities by domain to automatically remove mismatched users.

DSet an organizational policy constraint to limit identities by domain, and then retroactively remove the existing mismatched users.

Show Answer

Correct Answer: D

https://cloud.google.com/resource-manager/docs/organization-policy/org-policy-constraints This list constraint defines the set of domains that email addresses added to Essential Contacts can have. By default, email addresses with any domain can be added to Essential Contacts. The allowed/denied list must specify one or more domains of the form @example.com. If this constraint is active and configured with allowed values, only email addresses with a suffix matching one of the entries from the list of allowed domains can be added in Essential Contacts. This constraint has no effect on updating or removing existing contacts. constraints/essentialcontacts.allowedContactDomains

Question No. 2

You are responsible for a web application on Compute Engine. You want your support team to be notified automatically if users experience high latency for at least 5 minutes. You need a Google-recommended solution with no development cost. What should you do?

ACreate an alert policy to send a notification when the HTTP response latency exceeds the specified threshold.

BImplement an App Engine service which invokes the Cloud Monitoring API and sends a notification in case of anomalies.

CUse the Cloud Monitoring dashboard to observe latency and take the necessary actions when the response latency exceeds the specified threshold.

DExport Cloud Monitoring metrics to BigQuery and use a Looker Studio dashboard to monitor your web applications latency.

Show Answer

Correct Answer: A

https://cloud.google.com/monitoring/alerts#alerting-example

Question No. 3

Your team is building a website that handles votes from a large user population. The incoming votes will arrive at various rates. You want to optimize the storage and processing of the votes. What should you do?

ASave the incoming votes to Firestore. Use Cloud Scheduler to trigger a Cloud Functions instance to periodically process the votes.

BUse a dedicated instance to process the incoming votes. Send the votes directly to this instance.

CSave the incoming votes to a JSON file on Cloud Storage. Process the votes in a batch at the end of the day.

DSave the incoming votes to Pub/Sub. Use the Pub/Sub topic to trigger a Cloud Functions instance to process the votes.

Show Answer

Correct Answer: D

Pub/Sub is a scalable and reliable messaging service that can handle large volumes of data from different sources at different rates. It allows you to decouple the producers and consumers of the data, and provides a durable and persistent storage for the messages until they are delivered. Cloud Functions is a serverless platform that can execute code in response to events, such as messages published to a Pub/Sub topic. It can scale automatically based on the load, and you only pay for the resources you use. By using Pub/Sub and Cloud Functions, you can optimize the storage and processing of the votes, as you can handle the variable rates of incoming votes, process them in real time or near real time, and avoid managing servers or VMs.Reference:

Pub/Sub documentation

Cloud Functions documentation

Choosing a messaging service for Google Cloud

Question No. 4

Your team has developed a stateless application which requires it to be run directly on virtual machines. The application is expected to receive a fluctuating amount of traffic and needs to scale automatically. You need to deploy the application. What should you do?

ADeploy the application on a managed instance group and configure autoscaling.

BDeploy the application on a Kubernetes Engine cluster and configure node pool autoscaling.

CDeploy the application on Cloud Functions and configure the maximum number instances.

DDeploy the application on Cloud Run and configure autoscaling.

Show Answer

Correct Answer: A

A managed instance group (MIG) is a group of identical virtual machines (VMs) that you can manage as a single entity. You can use a MIG to deploy and maintain a stateless application that runs directly on VMs. A MIG can automatically scale the number of VMs based on the load or a schedule. A MIG can also automatically heal the VMs if they become unhealthy or unavailable. A MIG is suitable for applications that need to run on VMs rather than containers or serverless platforms.

B is incorrect because Kubernetes Engine is a managed service for running containerized applications on a cluster of nodes. It is not necessary to use Kubernetes Engine if the application does not use containers and can run directly on VMs.

C is incorrect because Cloud Functions is a serverless platform for running event-driven code in response to triggers. It is not suitable for applications that need to run continuously and handle HTTP requests.

D is incorrect because Cloud Run is a serverless platform for running stateless containerized applications. It is not suitable for applications that do not use containers and can run directly on VMs.

Managed instance groups documentation

Choosing a compute option for Google Cloud

Question No. 5

A colleague handed over a Google Cloud project for you to maintain. As part of a security checkup, you want to review who has been granted the Project Owner role. What should you do?

AIn the Google Cloud console, validate which SSH keys have been stored as project-wide keys.

BNavigate to Identity-Aware Proxy and check the permissions for these resources.

CEnable Audit logs on the 1AM & admin page for all resources, and validate the results.

DUse the gcloud projects get-iam-policy command to view the current role assignments.

Show Answer

Correct Answer: D

The gcloud projects get-iam-policy command displays the IAM policy for a project, which includes the roles and members assigned to those roles. The Project Owner role grants full access to all resources and actions in the project. By using this command, you can review who has been granted this role and make any necessary changes.Reference:

1: Associate Cloud Engineer Certification Exam Guide | Learn - Google Cloud

2: gcloud projects get-iam-policy | Cloud SDK Documentation | Google Cloud

3: Understanding roles | Cloud IAM Documentation | Google Cloud

Unlock All Questions for Google Associate-Cloud-Engineer Exam

Full Exam Access, Actual Exam Questions, Validated Answers, Anytime Anywhere, No Download Limits, No Practice Limits

Get All 283 Questions & Answers