|
Google Professional Cloud Architect Exam Page 5(Dumps)
Question No:-41
|
Your customer support tool logs all email and chat conversations to Cloud Bigtable for retention and analysis. What is the recommended approach for sanitizing this data of personally identifiable information or payment card information before initial storage?
1. Hash all data using SHA256
2. Encrypt all data using elliptic curve cryptography
3. De-identify the data with the Cloud Data Loss Prevention API
4. Use regular expressions to find and redact phone numbers, email addresses, and credit card numbers
|
Question No:-42
|
You are using Cloud Shell and need to install a custom utility for use in a few weeks. Where can you store the file so it is in the default execution path and persists across sessions?
1. ~/bin
2. Cloud Storage
3. /google/scripts
4. /usr/local/bin
|
Question No:-43
|
You want to create a private connection between your instances on Compute Engine and your on-premises data center. You require a connection of at least 20 Gbps. You want to follow Google-recommended practices. How should you set up the connection?
1. Create a VPC and connect it to your on-premises data center using Dedicated Interconnect.
2. Create a VPC and connect it to your on-premises data center using a single Cloud VPN.
3. Create a Cloud Content Delivery Network (Cloud CDN) and connect it to your on-premises data center using Dedicated Interconnect.
4. Create a Cloud Content Delivery Network (Cloud CDN) and connect it to your on-premises datacenter using a single Cloud VPN.
|
Answer:-1. Create a VPC and connect it to your on-premises data center using Dedicated Interconnect.
|
|
Question No:-44
|
You are analyzing and defining business processes to support your startup's trial usage of GCP, and you don't yet know what consumer demand for your product will be. Your manager requires you to minimize GCP service costs and adhere to Google best practices. What should you do?
1. Utilize free tier and sustained use discounts. Provision a staff position for service cost management.
2. Utilize free tier and sustained use discounts. Provide training to the team about service cost management.
3. Utilize free tier and committed use discounts. Provision a staff position for service cost management.
4. Utilize free tier and committed use discounts. Provide training to the team about service cost management.
|
Answer:-2. Utilize free tier and sustained use discounts. Provide training to the team about service cost management.
|
|
Question No:-45
|
You are building a continuous deployment pipeline for a project stored in a Git source repository and want to ensure that code changes can be verified before deploying to production.
What should you do?
1. Use Spinnaker to deploy builds to production using the red/black deployment strategy so that changes can easily be rolled back.
2. Use Spinnaker to deploy builds to production and run tests on production deployments.
3. Use Jenkins to build the staging branches and the master branch. Build and deploy changes to production for 10% of users before doing a complete rollout.
4. Use Jenkins to monitor tags in the repository. Deploy staging tags to a staging environment for testing. After testing, tag the repository for production and deploy that to the production environment.
|
Question No:-46
|
You have an outage in your Compute Engine managed instance group: all instances keep restarting after 5 seconds. You have a health check configured, but autoscaling is disabled. Your colleague, who is a Linux expert, offered to look into the issue. You need to make sure that he can access the VMs. What should you do?
1. Grant your colleague the IAM role of project Viewer
2. Perform a rolling restart on the instance group
3. Disable the health check for the instance group. Add his SSH key to the project-wide SSH Keys
4. Disable autoscaling for the instance group. Add his SSH key to the project-wide SSH Keys
|
Answer:-3. Disable the health check for the instance group. Add his SSH key to the project-wide SSH Keys
|
|
Question No:-47
|
Your company is migrating its on-premises data center into the cloud. As part of the migration, you want to integrate Google Kubernetes Engine (GKE) for workload orchestration. Parts of your architecture must also be PCI DSS-compliant. Which of the following is most accurate?
1. App Engine is the only compute platform on GCP that is certified for PCI DSS hosting.
2. GKE cannot be used under PCI DSS because it is considered shared hosting.
3. GKE and GCP provide the tools you need to build a PCI DSS-compliant environment.
4. All Google Cloud services are usable because Google Cloud Platform is certified PCI-compliant.
|
Answer:-3. GKE and GCP provide the tools you need to build a PCI DSS-compliant environment.
|
|
Question No:-48
|
Your company has multiple on-premises systems that serve as sources for reporting. The data has not been maintained well and has become degraded over time.
You want to use Google-recommended practices to detect anomalies in your company data. What should you do?
1. Upload your files into Cloud Storage. Use Cloud Datalab to explore and clean your data.
2. Upload your files into Cloud Storage. Use Cloud Dataprep to explore and clean your data.
3. Connect Cloud Datalab to your on-premises systems. Use Cloud Datalab to explore and clean your data.
4. Connect Cloud Dataprep to your on-premises systems. Use Cloud Dataprep to explore and clean your data.
|
Answer:-2. Upload your files into Cloud Storage. Use Cloud Dataprep to explore and clean your data.
|
|
Question No:-49
|
Google Cloud Platform resources are managed hierarchically using organization, folders, and projects. When Cloud Identity and Access Management (IAM) policies exist at these different levels, what is the effective policy at a particular node of the hierarchy?
1. The effective policy is determined only by the policy set at the node
2. The effective policy is the policy set at the node and restricted by the policies of its ancestors
3. The effective policy is the union of the policy set at the node and policies inherited from its ancestors
4. The effective policy is the intersection of the policy set at the node and policies inherited from its ancestors
|
3. The effective policy is the union of the policy set at the node and policies inherited from its ancestors
|
|
Question No:-50
|
You are migrating your on-premises solution to Google Cloud in several phases. You will use Cloud VPN to maintain a connection between your on-premises systems and Google Cloud until the migration is completed. You want to make sure all your on-premise systems remain reachable during this period. How should you organize your networking in Google Cloud?
1. Use the same IP range on Google Cloud as you use on-premises
2. Use the same IP range on Google Cloud as you use on-premises for your primary IP range and use a secondary range that does not overlap with the range you use on-premises
3. Use an IP range on Google Cloud that does not overlap with the range you use on-premises
4. Use an IP range on Google Cloud that does not overlap with the range you use on-premises for your primary IP range and use a secondary range with the same IP range as you use on-premises
|
Answer:-3. Use an IP range on Google Cloud that does not overlap with the range you use on-premises
|
|
|