Professional-Cloud-Developer Exam Dumps - Google Certified Professional - Cloud Developer

Set the Deployment strategy to RollingUpdate with maxSurge set to 0, maxUnavailable set to 1.

Set the Deployment strategy to RollingUpdate with maxSurge set to 1, maxUnavailable set to 0.

Set the Deployment strategy to Recreate with maxSurge set to 0, maxUnavailable set to 1.

Set the Deployment strategy to Recreate with maxSurge set to 1, maxUnavailable set to 0.

Use Zipkin collector to gather data.

Use Fluentd agent to gather data.

Use Stackdriver Trace to generate reports.

Use Stackdriver Debugger to generate report.

Use Stackdriver Profiler to generate report.

Create a Google service account with BigQuery access. Add the JSON key to Secret Manager, and use the Go client library to access the JSON key.

Create a Google service account with BigQuery access. Add the Google service account JSON key as a Kubernetes secret, and configure the application to use this secret.

Create a Google service account with BigQuery access. Add the Google service account JSON key to Secret Manager, and use an init container to access the secret for the application to use.

Create a Google service account and a Kubernetes service account. Configure Workload Identity on the GKE cluster, and reference the Kubernetes service account on the application Deployment.

Use Carrier Peering

Use VPC Network Peering

Use Shared VPC networks

Use Private Google Access

Rewrite the application using .NET Core, and deploy to Cloud Run. Use revisions to separate the environments.

Use Cloud Build to deploy the application as a new Compute Engine image for each build. Use this image in each environment.

Deploy the application using MS Web Deploy, and make sure to always use the latest, patched MS Windows Server base image in Compute Engine.

Use Cloud Build to package the application, and deploy to a Google Kubernetes Engine cluster. Use namespaces to separate the environments.

Download the file using scp, change the file, and then upload the modified version

Configure and log in to the Compute Engine instance through SSH, and change the file

Configure and log in to the Compute Engine instance through the serial port, and change the file

Configure and log in to the Compute Engine instance using a remote desktop client, and change the file

Enable Cloud Identity-Aware Proxy on the HTTP(s) load balancer and restrict access to a Google Group containing users in the finance department. Verify the provided JSON Web Token within the application.

Enable Cloud Identity-Aware Proxy on the HTTP(s) load balancer and restrict access to a Google Group containing users in the finance department. Issue client-side certificates to everybody in the finance team and verify the certificates in the application.

Configure Cloud Armor Security Policies to restrict access to only corporate IP address ranges. Verify the provided JSON Web Token within the application.

Configure Cloud Armor Security Policies to restrict access to only corporate IP address ranges. Issue client side certificates to everybody in the finance team and verify the certificates in the application.

Use Memorystore to cache frequently accessed PII data from the on-premises MySQL database

Use Istio to create a service mesh that includes the microservices on GKE and the on-premises services

Increase the number of Cloud VPN tunnels for the connection between Google Cloud and the on-premises services

Decrease the network layer packet size by decreasing the Maximum Transmission Unit (MTU) value from its default value on Cloud VPN

Configure a GKE Ingress resource.

Configure a GKE Service resource.

Configure a GKE Ingress resource with type: LoadBalancer.

Configure a GKE Service resource with type: LoadBalancer.

Create a Service Directory Namespace Use API calls to register the services during deployment, and query during runtime.

Configure your microservices to use the Cloud Run Admin and Cloud Functions APIs to query for deployed Cloud Run services and Cloud Functions in the Google Cloud project.

Deploy Hashicorp Consul on a single Compute Engine Instance Register the services with Consul during deployment and query during runtime

Rename the Cloud Functions and Cloud Run services endpoints using a well-documented naming

convention

Host the application on Compute Engine, and configure Cloud Endpoints for your application.

Host the application on Google Kubernetes Engine and use Identity-Aware Proxy (IAP) with Cloud Load Balancing and Google-managed certificates.

Host the application on Google Kubernetes Engine, and deploy an NGINX Ingress Controller to handle authentication.

Host the application on Google Kubernetes Engine, and deploy cert-manager to manage SSL certificates.

Use Network Policies to block traffic between applications.

Install Istio, enable proxy injection on your application namespace, and then enable mTLS.

Define Trusted Network ranges within the application, and configure the applications to allow traffic only from those networks.

Use an automated process to request SSL Certificates for your applications from Let’s Encrypt and add them to your applications.

Store each comment in a subcollection of the article.

Add each comment to an array property on the article.

Store each comment in a document, and add the comment’s key to an array property on the article.

Store each comment in a document, and add the comment’s key to an array property on the user profile.

Use Cloud Load Balancing to slowly ramp up traffic between versions. Use Cloud Monitoring to look for performance issues.

Deploy the application via a continuous delivery pipeline using canary deployments. Use Cloud Monitoring to look for performance issues. and ramp up traffic as the metrics support it.

Deploy the application via a continuous delivery pipeline using blue/green deployments. Use Cloud Monitoring to look for performance issues, and launch fully when the metrics support it.

Deploy the application using kubectl and set the spec.updateStrategv.type to RollingUpdate. Use Cloud Monitoring to look for performance issues, and run the kubectl rollback command if there are any issues.

Use Cloud Code to develop applications.

Use the Cloud Shell integrated Code Editor to edit code and configuration files.

Use a Cloud Notebook instance to ingest and process data and deploy models.

Use Cloud Shell to manage your infrastructure and applications from the command line.

Increase the size of the instance class.

Change the Persistent Disk type to SSD.

Change /product-details to perform the requests in parallel.

Store the /sku-details information in a database, and replace the webservice call with a database query.

Modify the _Default tog bucket sink rules to reroute the logs into the security team's log bucket.

Create user-defined log buckets in the security team's project. Configure a Cloud Logging sink to route your application s logs to log buckets in the security team's project.

Create a job that copies the System Event logs from the _Required log bucket into the security team's log bucket in their project.

Create a job that copies the togs from the _Required log bucket into the security team's log bucket in their project.

Add a cache-control header to the objects.

Request a quota increase from the GCP Console.

Retry the request with a truncated exponential backoff strategy.

Change the storage class of the Cloud Storage bucket to Multi-regional.

Use the service account attached to the GKE node.

Enable Workload Identity in the cluster via the gcloud command-line tool.

Access the Google service account keys from a secret management service.

Store the Google service account keys in a central secret management service.

Use gcloud to bind the Kubernetes service account and the Google service account using roles/iam.workloadIdentity.

Download the binary from the internet during the build process.

Build a custom cloud builder image and reference the image in your build steps.

Include the binary in your Cloud Source Repositories repository and reference it in your build scripts.

Ask to have the binary added to the Cloud Build environment by filing a feature request against the Cloud

Build public Issue Tracker.

Assign a Google service account to the GKE nodes.

Use a Google service account to run the Pod with Workload Identity.

Store the Google service account credentials as a Kubernetes Secret.

Use a Google service account with GKE role-based access control (RBAC).

Add the label “AUTOSCALE” to the instance group template.

Decrease the cool-down period for instances added to the group.

Increase the target CPU usage for the instance group autoscaler.

Decrease the target CPU usage for the instance group autoscaler.

Remove the health-check for individual VMs in the instance group.

Set a retention policy on the bucket with a period of 7 years.

Use IAM Conditions to provide access to objects 7 years after the object creation date.

Enable Object Versioning to prevent objects from being accidentally deleted for 7 years after object creation.

Create an object lifecycle policy on the bucket that moves objects from Standard Storage to Archive Storage after 3 years.

Implement a Cloud Function that checks the age of each object in the bucket and moves the objects older than 3 years to a second bucket with the Archive Storage class. Use Cloud Scheduler to trigger the Cloud Function on a daily schedule.

Each developer commits their code to the main branch before each product release, conducts testing, and rolls back if integration issues are detected.

Each group of developers copies the repository, commits their changes to their repository, and merges their code into the main repository before each product release.

Each developer creates a branch for their own work, commits their changes to their branch, and merges their code into the main branch daily.

Each group of developers creates a feature branch from the main branch for their work, commits their changes to their branch, and merges their code into the main branch after the change advisory board approves it.

Package each component in a separate container. Implement readiness and liveness probes.

Package the application in a single container. Use a process management tool to manage each component.

Package each component in a separate container. Use a script to orchestrate the launch of the components.

Package the application in a single container. Use a bash script as an entrypoint to the container, and then spawn each component as a background job.

Configure the application to check authentication credentials for each HTTP(S) request to the application.

Configure Identity-Aware Proxy to allow employees to access the application through its public IP address.

Configure a Compute Engine instance that requests users to log in to their corporate account. Change the web application DNS to point to the proxy Compute Engine instance. After authenticating, the Compute Engine instance forwards requests to and from the web application.

Configure a Compute Engine instance that requests users to log in to their corporate account. Change the web application DNS to point to the proxy Compute Engine instance. After authenticating, the Compute Engine issues an HTTP redirect to a public IP address hosting the web application.

kubectl logs [PARAM]

gcloud logging read [PARAM]

kubectl exec –it [PARAM] journalctl

gcloud compute ssh [PARAM] –-command= “sudo journalctl”

Migrate your data stored in Hadoop to BigQuery. Change your jobs to source their information from BigQuery instead of the on-premises Hadoop environment.

Create Compute Engine instances with HDD instead of SSD to save costs. Then perform a full migration of your existing environment into the new one in Compute Engine instances.

Create a Cloud Dataproc cluster on Google Cloud Platform, and then migrate your Hadoop environment to the new Cloud Dataproc cluster. Move your HDFS data into larger HDD disks to save on storage costs.

Create a Cloud Dataproc cluster on Google Cloud Platform, and then migrate your Hadoop code objects to the new cluster. Move your data to Cloud Storage and leverage the Cloud Dataproc connector to run jobs on that data.

Define a new Ingress resource with a host rule matching the new domain

Modify the existing Ingress resource with a host rule matching the new domain

Create a new Service of type LoadBalancer specifying the existing IP address as the loadBalancerIP

Generate a new Ingress resource and specify the existing IP address as the kubernetes.io/ingress.global-static-ip-name annotation value

Build a new Docker container that examines the files in /workspace and then checks and adds a copyright for each source file. Changed files are explicitly committed back to the source repository.

Build a new Docker container that examines the files in /workspace and then checks and adds a copyright for each source file. Changed files do not need to be committed back to the source repository.

Build a new Docker container that examines the files in a Cloud Storage bucket and then checks and adds a copyright for each source file. Changed files are written back to the Cloud Storage bucket.

Build a new Docker container that examines the files in a Cloud Storage bucket and then checks and adds a copyright for each source file. Changed files are explicitly committed back to the source repository.

Write an exponential backoff process around the client library call.

Write a one-second wait time backoff process around the client library call.

Design a retry button in the application and ask users to click if the error occurs.

Create a queue for the object and inform the users that the application will try again in 10 minutes.

Configure the application to send the file to the client as an email attachment.

Generate and assign a Cloud Storage-signed URL for the file. Make the URL available for the client to download.

Create a temporary Cloud Storage bucket with time expiration specified, and give download permissions to the bucket. Copy the file, and send it to the client.

Generate the HTTP cookies with time expiration specified. If the time is valid, copy the file from the Cloud Storage bucket, and make the file available for the client to download.

Write to Cloud Spanner using Cloud Client Libraries.

Write to Cloud Spanner using Google API Client Libraries

Write to Cloud Spanner using a custom gRPC client library.

Write to Cloud Spanner using a third-party HTTP client library.

Stackdriver Trace

Stackdriver Monitoring

Stackdriver Debug Snapshots

Stackdriver Debug Logpoints

Deploy a Fluent Bit daemonset on the GKE cluster to log data in Cloud Logging. Analyze the logs to get insights into your application code’s performance.

Create a custom dashboard in Cloud Monitoring to evaluate the CPU performance metrics of your application.

Connect to your GKE nodes using SSH. Run the top command on the shell to extract the CPU utilization of your application.

Modify your Go application to capture profiling data. Analyze the CPU metrics of your application in flame graphs in Profiler.

Create a Pub/Sub topic to be notified when code is pushed to the repository. Create a Pub/Sub trigger that runs the build file when an event is published to the topic.

Create a build trigger that runs the build file in response to a repository code being pushed to the development branch.

Create a webhook build trigger that runs the build file in response to HTTP POST calls to the webhook URL.

Create a Cron job that runs the following command every 24 hours: gcloud builds submit.

Deploy Zonal clusters

Deploy Regional clusters

Deploy Multi-Zone clusters

Deploy GKE on-premises clusters

Use Google Kubernetes Engine (GKE) to run the application as a microservice. Run the MySQL database on a dedicated GKE node.

Use multiple Compute Engine instances to run MySQL to store state information. Use a Google Cloud-managed load balancer to distribute the load between instances. Use managed instance groups for scaling.

Use Memorystore to store session information and CloudSQL to store state information. Use a Google Cloud-managed load balancer to distribute the load between instances. Use managed instance groups for scaling.

Use a Cloud Storage bucket to serve the application as a static website, and use another Cloud Storage bucket to store user state information.

Include unit tests in their code, and prevent deployments to QA until all tests have a passing status.

Include performance tests in their code, and prevent deployments to QA until all tests have a passing status.

Create health checks for the QA environment, and redeploy the APIs at a later time if the environment is unhealthy.

Redeploy the APIs to App Engine using Traffic Splitting. Do not move QA traffic to the new versions if errors are found.

Cloud Profiler

Cloud Monitoring

Cloud Trace

Cloud Logging

Create an API key. Use the API key to interact with Google Cloud.

Use the default compute service account to interact with Google Cloud.

Create a service account for the application. Export and deploy the private key for the application. Use the service account to interact with Google Cloud.

Create a service account for the application and for each Google Cloud API used by the application. Export and deploy the private keys used by the application. Use the service account with one Google Cloud API to interact with Google Cloud.

Block all traffic on port 443.

Allow all traffic into the network.

Allow traffic on port 443 for a specific tag.

Allow all traffic on port 443 into the network.

Use the current single instance MySQL on Compute Engine and several read-only MySQL servers on

Compute Engine.

Use the current single instance MySQL on Compute Engine, and replicate the data to Cloud SQL in an

external master configuration.

Replace the current single instance MySQL instance with Cloud SQL, and configure high availability.

Replace the current single instance MySQL instance with Cloud SQL, and Google provides redundancy

without further configuration.

Migrate the database to Bigtable and use it to serve all global user traffic.

Migrate the database to Cloud Spanner and use it to serve all global user traffic.

Migrate the database to Firestore in Datastore mode and use it to serve all global user traffic.

Migrate the services to Google Kubernetes Engine and use a load balancer service to better scale the application.

BigQuery

Cloud SQL

Cloud Spanner

Cloud Datastore

Cloud Armor

Cloud Functions

Cloud Endpoints

Shielded Virtual Machines

Use Google App Engine services.

Use serverless Google Cloud Functions.

Use Knative to build and deploy serverless applications.

Use Google Kubernetes Engine for automated deployments.

Use a large Google Compute Engine cluster for deployments.

Create new Cloud SQL instances in Europe and North America for testing and deployment. Provide developers with local MySQL instances to conduct testing on the application changes.

Migrate data to Bigtable. Instruct the development teams to use the Cloud SDK to emulate a local Bigtable development environment.

Move from Cloud SQL to MySQL hosted on Compute Engine. Replicate hosts across regions in the Americas and Europe. Provide developers with local MySQL instances to conduct testing on the application changes.

Migrate data to Firestore in Native mode and set up instan

Use the Cloud Data Loss Prevention API for redaction of the review dataset.

Use the Cloud Data Loss Prevention API for de-identification of the review dataset.

Use the Cloud Natural Language Processing API for redaction of the review dataset.

Use the Cloud Natural Language Processing API for de-identification of the review dataset.

Use local SSDs to store state.

Put a memcache layer in front of MySQL.

Move the state storage to Cloud Spanner.

Replace the MySQL instance with Cloud SQL.

Cloud VPN

Cloud Armor

Virtual Private Cloud

Cloud Identity-Aware Proxy

Cloud Spanner

Cloud Datastore

Cloud Memorystore as a cache

Separate Cloud SQL clusters for each region

Create manual subnets.

Create an auto mode subnet.

Create multiple peered VPCs.

Provision a single instance for NAT.

Create a service account and download its key. Use the key to authenticate to Cloud Key Management Service (KMS) to obtain the database credentials.

Create a service account and download its key. Use the key to authenticate to Cloud Key Management Service (KMS) to obtain a key used to decrypt the database credentials.

Create a service account and grant it the roles/iam.serviceAccountUser role. Impersonate as this account and authenticate using the Cloud SQL Proxy.

Grant the roles/secretmanager.secretAccessor role to the Compute Engine service account. Store and access the database credentials with the Secret Manager API.

Take frequent snapshots of all of the VMs.

Install the Stackdriver Logging agent on the VMs.

Install the Stackdriver Monitoring agent on the VMs.

Use Stackdriver Trace to look for performance bottlenecks.

Use App Engine for autoscaling.

Use Cloud Functions for autoscaling.

Use a Compute Engine cluster for the service.

Use a dedicated Compute Engine virtual machine instance for the service.