GOOGLE CLOUD QUESTIONS WITH
CORRECT ANSWERS
You work in an app development startup as a cloud engineer. Your company
extensively uses Kubernetes on GKE. Several applications are deployed on separate
VPC-native Google Kubernetes Engine clusters in the same subnet. There are no more
IPs available in the subnet. How can you ensure that the clusters can grow in nodes
when needed?
A. Create a new subnet in the same region as the subnet being used.
B. Add an alias IP range to the subnet used by the GKE clusters.
(Incorrect)
C. Create a new VPC, and set up VPC peering with the existing VPC.
D. Expand the CIDR range of the relevant subnet for the cluster. - ANSWER-D. Expand
the CIDR range of the relevant subnet for the cluster.
Every night at 1 AM, a batch job runs on your GCP project that uses a large number of
VMs. The batch job is fault-tolerant and it can still run properly if some of the VMs get
destroyed. Your goal is to reduce the cost of this job. What should you do?
A.
1. Run the batch job in a simulation of maintenance events.
2. If the test succeeds use preemptible N1 Standard VMs for future jobs.
B.
1. Run the batch job in a simulation of maintenance events.
2. If the test succeeds, use N1 Standard VMs for future jobs.
C.
1. Run the batch job in a managed instance group.
2. If the test succeeds, use N1 Standard VMs in the managed instance group for future
jobs.
D.
1. Run the batch job using N1 standard VMs instead of N2.
2. If the test succeeds, use N1 Standard VMs for future jobs. - ANSWER-A.
1. Run the batch job in a simulation of maintenance events.
2. If the test succeeds use preemptible N1 Standard VMs for future jobs.
You work as a site reliability engineer in a firm with multiple GCP projects. You are
building a customer-facing website on Compute Engine. Your GCP project is used by
other teams to host their apps as well. How can you prevent other teams from
accidentally causing downtime to your application?
A. Use a Shielded VM.
B. Use a Preemptible VM.
C. Use a sole-tenant node.
D. Enable deletion protection on the instance. - ANSWER-D. Enable deletion protection
on the instance.
, There are thousands of employees in your company working from all over the globe. All
users in your organization have an Active Directory account. Your organization wants to
control and manage all of the Google's and Google Cloud Platform accounts of
employees through Active Directory. What should you do?
A. Synchronize users into Cloud Identity using Google Cloud Directory Sync (GCDS).
B. Write a script using Cloud Identity APIs to synchronize users to Cloud Identity.
C. Upload a csv containing an export of all Active Directory users in Google Admin
Console.
D. Ask each employee to sign up for a Google account and require them to use their
company email address and password. - ANSWER-A. Synchronize users into Cloud
Identity using Google Cloud Directory Sync (GCDS).
You are part of the Data Engineering team at an e-commerce company. You are
managing the Big Query dataset that contains user activity data. Another team has
requested access to the Big Query Dataset but you need to make sure they do not
accidentally delete any datasets. What are some of the recommended best practices to
grant access?
A. Provide users with roles/big query user role only, instead of roles/big query data
Owner.
B. Provide users with roles/big query data Editor role only, instead of roles/big query
data Owner.
C.
1. Create a custom role by removing delete permissions
2. Add users to that role only.
D.
1. Create a custom role by removing delete permissions.
2. Add users to the group
3. Then, add the group to the custom role. - ANSWER-D.
1. Create a custom role by removing delete permissions.
2. Add users to the group
3. Then, add the group to the custom role.
You are using Ubuntu for developing HRMS software on GCP. You installed the Google
Cloud SDK using the Google Cloud Ubuntu package repository. Your application uses
Cloud Datastore as its database. How can you test this app locally without deploying it
to GCP?
A. Use g cloud datastore export to export Cloud Datastore data.
B. Use g cloud datastore indexes create to create a Cloud Datastore index.
C. Install the google-cloud-sdk-datastore-emulator component using the apt get install
command.
D. Install the cloud-datastore-emulator component using the g cloud components install
command. - ANSWER-C. Install the google-cloud-sdk-datastore-emulator component
using the apt get install command.
Your company extensively uses the Google Cloud Platform for all its government-
related projects. The projects are distributed in a complex hierarchical structure with
CORRECT ANSWERS
You work in an app development startup as a cloud engineer. Your company
extensively uses Kubernetes on GKE. Several applications are deployed on separate
VPC-native Google Kubernetes Engine clusters in the same subnet. There are no more
IPs available in the subnet. How can you ensure that the clusters can grow in nodes
when needed?
A. Create a new subnet in the same region as the subnet being used.
B. Add an alias IP range to the subnet used by the GKE clusters.
(Incorrect)
C. Create a new VPC, and set up VPC peering with the existing VPC.
D. Expand the CIDR range of the relevant subnet for the cluster. - ANSWER-D. Expand
the CIDR range of the relevant subnet for the cluster.
Every night at 1 AM, a batch job runs on your GCP project that uses a large number of
VMs. The batch job is fault-tolerant and it can still run properly if some of the VMs get
destroyed. Your goal is to reduce the cost of this job. What should you do?
A.
1. Run the batch job in a simulation of maintenance events.
2. If the test succeeds use preemptible N1 Standard VMs for future jobs.
B.
1. Run the batch job in a simulation of maintenance events.
2. If the test succeeds, use N1 Standard VMs for future jobs.
C.
1. Run the batch job in a managed instance group.
2. If the test succeeds, use N1 Standard VMs in the managed instance group for future
jobs.
D.
1. Run the batch job using N1 standard VMs instead of N2.
2. If the test succeeds, use N1 Standard VMs for future jobs. - ANSWER-A.
1. Run the batch job in a simulation of maintenance events.
2. If the test succeeds use preemptible N1 Standard VMs for future jobs.
You work as a site reliability engineer in a firm with multiple GCP projects. You are
building a customer-facing website on Compute Engine. Your GCP project is used by
other teams to host their apps as well. How can you prevent other teams from
accidentally causing downtime to your application?
A. Use a Shielded VM.
B. Use a Preemptible VM.
C. Use a sole-tenant node.
D. Enable deletion protection on the instance. - ANSWER-D. Enable deletion protection
on the instance.
, There are thousands of employees in your company working from all over the globe. All
users in your organization have an Active Directory account. Your organization wants to
control and manage all of the Google's and Google Cloud Platform accounts of
employees through Active Directory. What should you do?
A. Synchronize users into Cloud Identity using Google Cloud Directory Sync (GCDS).
B. Write a script using Cloud Identity APIs to synchronize users to Cloud Identity.
C. Upload a csv containing an export of all Active Directory users in Google Admin
Console.
D. Ask each employee to sign up for a Google account and require them to use their
company email address and password. - ANSWER-A. Synchronize users into Cloud
Identity using Google Cloud Directory Sync (GCDS).
You are part of the Data Engineering team at an e-commerce company. You are
managing the Big Query dataset that contains user activity data. Another team has
requested access to the Big Query Dataset but you need to make sure they do not
accidentally delete any datasets. What are some of the recommended best practices to
grant access?
A. Provide users with roles/big query user role only, instead of roles/big query data
Owner.
B. Provide users with roles/big query data Editor role only, instead of roles/big query
data Owner.
C.
1. Create a custom role by removing delete permissions
2. Add users to that role only.
D.
1. Create a custom role by removing delete permissions.
2. Add users to the group
3. Then, add the group to the custom role. - ANSWER-D.
1. Create a custom role by removing delete permissions.
2. Add users to the group
3. Then, add the group to the custom role.
You are using Ubuntu for developing HRMS software on GCP. You installed the Google
Cloud SDK using the Google Cloud Ubuntu package repository. Your application uses
Cloud Datastore as its database. How can you test this app locally without deploying it
to GCP?
A. Use g cloud datastore export to export Cloud Datastore data.
B. Use g cloud datastore indexes create to create a Cloud Datastore index.
C. Install the google-cloud-sdk-datastore-emulator component using the apt get install
command.
D. Install the cloud-datastore-emulator component using the g cloud components install
command. - ANSWER-C. Install the google-cloud-sdk-datastore-emulator component
using the apt get install command.
Your company extensively uses the Google Cloud Platform for all its government-
related projects. The projects are distributed in a complex hierarchical structure with
