Google Professional Cloud DevOps Engineer Google Cloud Certified – Professional Cloud DevOps Engineer Exam Online Training
Google Professional Cloud DevOps Engineer Online Training
The questions for Professional Cloud DevOps Engineer were last updated at Nov 19,2024.
- Exam Code: Professional Cloud DevOps Engineer
- Exam Name: Google Cloud Certified - Professional Cloud DevOps Engineer Exam
- Certification Provider: Google
- Latest update: Nov 19,2024
Your organization recently adopted a container-based workflow for application development. Your team develops numerous applications that are deployed continuously through an automated build pipeline to a Kubernetes cluster in the production environment. The security auditor is concerned that developers or operators could circumvent automated testing and push code changes to production without approval.
What should you do to enforce approvals?
- A . Configure the build system with protected branches that require pull request approval.
- B . Use an Admission Controller to verify that incoming requests originate from approved sources.
- C . Leverage Kubernetes Role-Based Access Control (RBAC) to restrict access to only approved users.
- D . Enable binary authorization inside the Kubernetes cluster and configure the build pipeline as an attestor.
You support an application running on App Engine. The application is used globally and accessed from various device types. You want to know the number of connections. You are using Stackdriver Monitoring for App Engine.
What metric should you use?
- A . flex/connections/current
- B . tcp_ssl_proxy/new_connections
- C . tcp_ssl_proxy/open_connections
- D . flex/instance/connections/current
You support a production service that runs on a single Compute Engine instance. You regularly need to spend time on recreating the service by deleting the crashing instance and creating a new instance based on the relevant image. You want to reduce the time spent performing manual operations while following Site Reliability Engineering principles.
What should you do?
- A . File a bug with the development team so they can find the root cause of the crashing instance.
- B . Create a Managed Instance Group with a single instance and use health checks to determine the system status.
- C . Add a Load Balancer in front of the Compute Engine instance and use health checks to determine the system status.
- D . Create a Stackdriver Monitoring dashboard with SMS alerts to be able to start recreating the crashed instance promptly after it has crashed.
You are managing the production deployment to a set of Google Kubernetes Engine (GKE) clusters. You want to make sure only images which are successfully built by your trusted CI/CD pipeline are deployed to production.
What should you do?
- A . Enable Cloud Security Scanner on the clusters.
- B . Enable Vulnerability Analysis on the Container Registry.
- C . Set up the Kubernetes Engine clusters as private clusters.
- D . Set up the Kubernetes Engine clusters with Binary Authorization.
You support a high-traffic web application with a microservice architecture. The home page of the application displays multiple widgets containing content such as the current weather, stock prices, and news headlines. The main serving thread makes a call to a dedicated microservice for each widget and then lays out the homepage for the user. The microservices occasionally fail; when that happens, the serving thread serves the homepage with some missing content. Users of the application are unhappy if this degraded mode occurs too frequently, but they would rather have some content served instead of no content at all. You want to set a Service Level Objective (SLO) to ensure that the user experience does not degrade too much.
What Service Level Indicator {SLI) should you use to measure this?
- A . A quality SLI: the ratio of non-degraded responses to total responses
- B . An availability SLI: the ratio of healthy microservices to the total number of microservices
- C . A freshness SLI: the proportion of widgets that have been updated within the last 10 minutes
- D . A latency SLI: the ratio of microservice calls that complete in under 100 ms to the total number of microservice calls
You are running an application on Compute Engine and collecting logs through Stackdriver. You discover that some personally identifiable information (Pll) is leaking into certain log entry fields. All Pll entries begin with the text userinfo. You want to capture these log entries in a secure location for later review and prevent them from leaking to Stackdriver Logging.
What should you do?
- A . Create a basic log filter matching userinfo, and then configure a log export in the Stackdriver console with Cloud Storage as a sink.
- B . Use a Fluentd filter plugin with the Stackdriver Agent to remove log entries containing userinfo, and then copy the entries to a Cloud Storage bucket.
- C . Create an advanced log filter matching userinfo, configure a log export in the Stackdriver console with Cloud Storage as a sink, and then configure a tog exclusion with userinfo as a filter.
- D . Use a Fluentd filter plugin with the Stackdriver Agent to remove log entries containing userinfo, create an advanced log filter matching userinfo, and then configure a log export in the Stackdriver console with Cloud Storage as a sink.
Your team uses Cloud Build for all CI/CO pipelines. You want to use the kubectl builder for Cloud Build to deploy new images to Google Kubernetes Engine (GKE). You need to authenticate to GKE while minimizing development effort.
What should you do?
- A . Assign the Container Developer role to the Cloud Build service account.
- B . Specify the Container Developer role for Cloud Build in the cloudbuild.yaml file.
- C . Create a new service account with the Container Developer role and use it to run Cloud Build.
- D . Create a separate step in Cloud Build to retrieve service account credentials and pass these to kubectl.
You need to reduce the cost of virtual machines (VM| for your organization. After reviewing different options, you decide to leverage preemptible VM instances.
Which application is suitable for preemptible VMs?
- A . A scalable in-memory caching system
- B . The organization’s public-facing website
- C . A distributed, eventually consistent NoSQL database cluster with sufficient quorum
- D . A GPU-accelerated video rendering platform that retrieves and stores videos in a storage bucket
You need to deploy a new service to production. The service needs to automatically scale using a Managed Instance Group (MIG) and should be deployed over multiple regions. The service needs a large number of resources for each instance and you need to plan for capacity.
What should you do?
- A . Use the n2-highcpu-96 machine type in the configuration of the MIG.
- B . Monitor results of Stackdriver Trace to determine the required amount of resources.
- C . Validate that the resource requirements are within the available quota limits of each region.
- D . Deploy the service in one region and use a global load balancer to route traffic to this region.
You support an e-commerce application that runs on a large Google Kubernetes Engine (GKE) cluster deployed on-premises and on Google Cloud Platform. The application consists of microservices that run in containers. You want to identify containers that are using the most CPU and memory.
What should you do?
- A . Use Stackdriver Kubernetes Engine Monitoring.
- B . Use Prometheus to collect and aggregate logs per container, and then analyze the results in Grafana.
- C . Use the Stackdriver Monitoring API to create custom metrics, and then organize your containers using groups.
- D . Use Stackdriver Logging to export application logs to BigOuery. aggregate logs per container, and then analyze CPU and memory consumption.
Latest Professional Cloud DevOps Engineer Dumps Valid Version with 52 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund
