Professional-Cloud-Developer Google Certified Professional - Cloud Developer Questions and Answers

Create one Cloud Function as a backend service exposed using an HTTPS load balancer.

Create three Cloud Functions exposed directly.

Create one Cloud Function exposed directly.

Create three Cloud Functions as three backend services exposed using an HTTPS load balancer.

Develop the microservice code in the same programming language used by the microservice caller.

Create an API contract agreement between the microservice implementation and microservice caller.

Require asynchronous communications between all microservice implementations and microservice callers.

Ensure that sufficient instances of the microservice are running to accommodate the performance requirements.

Implement a versioning scheme to permit future changes that could be incompatible with the current interface.

Add a public IP address to your instance, and restrict access to the instance using firewall rules. Allow your company’s proxy as the only source IP address.

Add an HTTP(S) load balancer in front of the instance, and set up Identity-Aware Proxy (IAP). Configure the IAP settings to allow your company domain to access the website.

Set up a VPN tunnel between your company network and your instance’s VPC location on Google Cloud. Configure the required firewall rules and routing information to both the on-premises and Google Cloud networks.

Add a public IP address to your instance, and allow traffic from the internet. Generate a random hash, and create a subdomain that includes this hash and points to your instance. Distribute this DNS address to your company’s employees.

1 Configure your Cl/CD pipeline to update the Deployment manifest file by replacing the container version with the latest version.

2 Recreate the Pods in your cluster by applying the Deployment manifest file.

3 Validate the application's performance by comparing its functionality with the previous release version and roll back if an issue arises.

1 install the Anthos Service Mesh on your GKE cluster.

2 Create two Deployments on the GKE cluster and label them with different version names.

3 Create a VirtualService with a routing rule to send a small percentage of traffic to the Deployment that references the new version of the application.

1 Create a second namespace on GKE for the new release version.

2 Create a Deployment configuration for the second namespace with the desired number of Pods.

3 Deploy new container versions in the second namespace.

4 Update the ingress configuration to route traffic to the namespace with the new container versions.

1. Implement a rolling update pattern by replacing the Pods gradually with the new release versify.

2 Validate the application's performance for the new subset of users during the rollout and roll back if an issue arises.

Configure the appropriate service accounts, and use Workload Identity to run the pods.

Store the application credentials as Kubernetes Secrets, and expose them as environment variables.

Configure the appropriate routing rules, and use a VPC-native cluster to directly connect to the database.

Store the application credentials using Cloud Key Management Service, and retrieve them whenever a database connection is made.

Option A

Option B

Option C

Option D

Use Network Policies to block traffic between applications.

Install Istio, enable proxy injection on your application namespace, and then enable mTLS.

Define Trusted Network ranges within the application, and configure the applications to allow traffic only from those networks.

Use an automated process to request SSL Certificates for your applications from Let’s Encrypt and add them to your applications.

Use an Ingress that uses the API's URL to route requests to the appropriate backend.

Leverage a Service Discovery system, and connect to the backend specified by the request.

Use multiple clusters, and use DNS entries to route requests to separate versioned backends.

Combine multiple versions in the same service, and then specify the API version in the POST request.

Configure Cloud SQL to host the database, and import the schema into Cloud SQL.

Deploy MySQL from the Google Cloud Marketplace to the database using a client, and import the schema.

Configure Bigtable to host the database, and import the data into Bigtable.

Configure Cloud Spanner to host the database, and import the schema into Cloud Spanner.

Configure Firestore to host the database, and import the data into Firestore.

Provision Cloud KMS in its own project.

Do not assign an owner to the Cloud KMS project.

Provision Cloud KMS in the project where the keys are being used.

Grant the roles/cloudkms.admin role to the owner of the project where the keys from Cloud KMS are being used.

Grant an owner role for the Cloud KMS project to a different user than the owner of the project where the keys from Cloud KMS are being used.

Change the application to accept images directly and store them in the database that stores other user information.

Change the application to create signed URLs for Cloud Storage. Transfer these signed URLs to the client application to upload images to Cloud Storage.

Set up a web server on GCP to accept user images and create a file store to keep uploaded files. Change the application to retrieve images from the file store.

Create a separate bucket for each user in Cloud Storage. Assign a separate service account to allow write access on each bucket. Transfer service account credentials to the client application based on user information. The application uses this service account to upload images to Cloud Storage.

Deploy the application to Compute Engine and turn on autoscaling.

Replace the application's features with appropriate microservices in phases.

Refactor the monolithic application with appropriate microservices in a single effort and deploy it.

Build a new application with the appropriate microservices separate from the monolith and replace it when

it is complete.

Create a pull subscription with both ordering and exactly-once delivery turned off

Create a pull subscription with exactly-once delivery enabled

Create a push subscription with exactly-once delivery enabled

Create a push subscription with both ordering and exactly-once delivery turned off

Store each comment in a subcollection of the article.

Add each comment to an array property on the article.

Store each comment in a document, and add the comment’s key to an array property on the article.

Store each comment in a document, and add the comment’s key to an array property on the user profile.

Set the Deployment strategy to RollingUpdate with maxSurge set to 0, maxUnavailable set to 1.

Set the Deployment strategy to RollingUpdate with maxSurge set to 1, maxUnavailable set to 0.

Set the Deployment strategy to Recreate with maxSurge set to 0, maxUnavailable set to 1.

Set the Deployment strategy to Recreate with maxSurge set to 1, maxUnavailable set to 0.

Cloud Armor

Cloud Functions

Cloud Endpoints

Shielded Virtual Machines

Deployment

StatefulSet

ReplicaSet

ReplicaController

Cloud Spanner

Cloud Datastore

Cloud Memorystore as a cache

Separate Cloud SQL clusters for each region

Create an API key. Use the API key to interact with Google Cloud.

Use the default compute service account to interact with Google Cloud.

Create a service account for the application. Export and deploy the private key for the application. Use the service account to interact with Google Cloud.

Create a service account for the application and for each Google Cloud API used by the application. Export and deploy the private keys used by the application. Use the service account with one Google Cloud API to interact with Google Cloud.

Cloud VPN

Cloud Armor

Virtual Private Cloud

Cloud Identity-Aware Proxy

Create new Cloud SQL instances in Europe and North America for testing and deployment. Provide developers with local MySQL instances to conduct testing on the application changes.

Migrate data to Bigtable. Instruct the development teams to use the Cloud SDK to emulate a local Bigtable development environment.

Move from Cloud SQL to MySQL hosted on Compute Engine. Replicate hosts across regions in the Americas and Europe. Provide developers with local MySQL instances to conduct testing on the application changes.

Migrate data to Firestore in Native mode and set up instan

Use the Cloud Data Loss Prevention API for redaction of the review dataset.

Use the Cloud Data Loss Prevention API for de-identification of the review dataset.

Use the Cloud Natural Language Processing API for redaction of the review dataset.

Use the Cloud Natural Language Processing API for de-identification of the review dataset.

Cloud Profiler

Cloud Monitoring

Cloud Trace

Cloud Logging

Block all traffic on port 443.

Allow all traffic into the network.

Allow traffic on port 443 for a specific tag.

Allow all traffic on port 443 into the network.

BigQuery

Cloud SQL

Cloud Spanner

Cloud Datastore

Create a service account and download its key. Use the key to authenticate to Cloud Key Management Service (KMS) to obtain the database credentials.

Create a service account and download its key. Use the key to authenticate to Cloud Key Management Service (KMS) to obtain a key used to decrypt the database credentials.

Create a service account and grant it the roles/iam.serviceAccountUser role. Impersonate as this account and authenticate using the Cloud SQL Proxy.

Grant the roles/secretmanager.secretAccessor role to the Compute Engine service account. Store and access the database credentials with the Secret Manager API.

Create manual subnets.

Create an auto mode subnet.

Create multiple peered VPCs.

Provision a single instance for NAT.

Use Google App Engine services.

Use serverless Google Cloud Functions.

Use Knative to build and deploy serverless applications.

Use Google Kubernetes Engine for automated deployments.

Use a large Google Compute Engine cluster for deployments.

Migrate the database to Bigtable and use it to serve all global user traffic.

Migrate the database to Cloud Spanner and use it to serve all global user traffic.

Migrate the database to Firestore in Datastore mode and use it to serve all global user traffic.

Migrate the services to Google Kubernetes Engine and use a load balancer service to better scale the application.

Use App Engine for autoscaling.

Use Cloud Functions for autoscaling.

Use a Compute Engine cluster for the service.

Use a dedicated Compute Engine virtual machine instance for the service.

Take frequent snapshots of all of the VMs.

Install the Stackdriver Logging agent on the VMs.

Install the Stackdriver Monitoring agent on the VMs.

Use Stackdriver Trace to look for performance bottlenecks.

Include unit tests in their code, and prevent deployments to QA until all tests have a passing status.

Include performance tests in their code, and prevent deployments to QA until all tests have a passing status.

Create health checks for the QA environment, and redeploy the APIs at a later time if the environment is unhealthy.

Redeploy the APIs to App Engine using Traffic Splitting. Do not move QA traffic to the new versions if errors are found.

Use local SSDs to store state.

Put a memcache layer in front of MySQL.

Move the state storage to Cloud Spanner.

Replace the MySQL instance with Cloud SQL.

Use the current single instance MySQL on Compute Engine and several read-only MySQL servers on

Compute Engine.

Use the current single instance MySQL on Compute Engine, and replicate the data to Cloud SQL in an

external master configuration.

Replace the current single instance MySQL instance with Cloud SQL, and configure high availability.

Replace the current single instance MySQL instance with Cloud SQL, and Google provides redundancy

without further configuration.

Use Google Kubernetes Engine (GKE) to run the application as a microservice. Run the MySQL database on a dedicated GKE node.

Use multiple Compute Engine instances to run MySQL to store state information. Use a Google Cloud-managed load balancer to distribute the load between instances. Use managed instance groups for scaling.

Use Memorystore to store session information and CloudSQL to store state information. Use a Google Cloud-managed load balancer to distribute the load between instances. Use managed instance groups for scaling.

Use a Cloud Storage bucket to serve the application as a static website, and use another Cloud Storage bucket to store user state information.

Stackdriver Trace

Stackdriver Monitoring

Stackdriver Debug Snapshots

Stackdriver Debug Logpoints

Add a startup probe.

Increase the initial delay for the liveness probe.

Increase the CPU limit for the container.

Add a readiness probe.