You are analyzing Google Cloud Platform service costs from three separate projects. You want to use this information to create service cost estimates by service type, daily and monthly, for the next six months using standard query syntax. What should you do?
AExport your bill to a Cloud Storage bucket, and then import into Cloud Bigtable for analysis.
BExport your bill to a Cloud Storage bucket, and then import into Google Sheets for analysis.
CExport your transactions to a local file, and perform analysis with a desktop tool.
DExport your bill to a BigQuery dataset, and then write time window-based SQL queries for analysis.
You created an instance of SQL Server 2017 on Compute Engine to test features in the new version. You want to connect to this instance using the fewest number of steps. What should you do?
AInstall a RDP client on your desktop. Verify that a firewall rule for port 3389 exists.
BInstall a RDP client in your desktop. Set a Windows username and password in the GCP Console. Use the credentials to log in to the instance.
CSet a Windows password in the GCP Console. Verify that a firewall rule for port 22 exists. Click the RDP button in the GCP Console and supply the credentials to log in.
DSet a Windows username and password in the GCP Console. Verify that a firewall rule for port 3389 exists. Click the RDP button in the GCP Console, and supply the credentials to log in.
You need to create a custom VPC with a single subnet. The subnet's range must be as large as possible. Which range should you use?
A0.0.0.0/0
B10.0.0.0/8
C172.16.0.0/12
D192.168.0.0/16
You have a development project with appropriate IAM roles defined. You are creating a production project and want to have the same IAM roles on the new project, using the fewest possible steps. What should you do?
AUse gcloud iam roles copy and specify the production project as the destination project.
BUse gcloud iam roles copy and specify your organization as the destination organization.
CIn the Google Cloud Platform Console, use the 'create role from role' functionality.
DIn the Google Cloud Platform Console, use the 'create role' functionality and select all applicable permissions.
You have a single binary application that you want to run on Google Cloud Platform. You decided to automatically scale the application based on underlying infrastructure CPU usage. Your organizational policies require you to use virtual machines directly. You need to ensure that the application scaling is operationally efficient and completed as quickly as possible. What should you do?
ACreate a Google Kubernetes Engine cluster, and use horizontal pod autoscaling to scale the application.
BCreate an instance template, and use the template in a managed instance group with autoscaling configured.
CCreate an instance template, and use the template in a managed instance group that scales up and down based on the time of day.
DUse a set of third-party tools to build automation around scaling the application up and down, based on Stackdriver CPU usage monitoring.
You have one GCP account running in your default region and zone and another account running in a non-default region and zone. You want to start a new
Compute Engine instance in these two Google Cloud Platform accounts using the command line interface. What should you do?
ACreate two configurations using gcloud config configurations create [NAME]. Run gcloud config configurations activate [NAME] to switch between accounts when running the commands to start the Compute Engine instances.
BCreate two configurations using gcloud config configurations create [NAME]. Run gcloud configurations list to start the Compute Engine instances.
CActivate two configurations using gcloud configurations activate [NAME]. Run gcloud config list to start the Compute Engine instances.
DActivate two configurations using gcloud configurations activate [NAME]. Run gcloud configurations list to start the Compute Engine instances.
You have a project for your App Engine application that serves a development environment. The required testing has succeeded and you want to create a new project to serve as your production environment. What should you do?
AUse gcloud to create the new project, and then deploy your application to the new project.
BUse gcloud to create the new project and to copy the deployed application to the new project.
CCreate a Deployment Manager configuration file that copies the current App Engine deployment into a new project.
DDeploy your application again using gcloud and specify the project parameter with the new project name to create the new project.
You need to configure IAM access audit logging in BigQuery for external auditors. You want to follow Google-recommended practices. What should you do?
AAdd the auditors group to the 'logging.viewer' and 'bigQuery.dataViewer' predefined IAM roles.
BAdd the auditors group to two new custom IAM roles.
CAdd the auditor user accounts to the 'logging.viewer' and 'bigQuery.dataViewer' predefined IAM roles.
DAdd the auditor user accounts to two new custom IAM roles.
You need to set up permissions for a set of Compute Engine instances to enable them to write data into a particular Cloud Storage bucket. You want to follow
Google-recommended practices. What should you do?
ACreate a service account with an access scope. Use the access scope 'https://www.googleapis.com/auth/devstorage.write_only'.
BCreate a service account with an access scope. Use the access scope 'https://www.googleapis.com/auth/cloud-platform'.
CCreate a service account and add it to the IAM role 'storage.objectCreator' for that bucket.
DCreate a service account and add it to the IAM role 'storage.objectAdmin' for that bucket.
You have sensitive data stored in three Cloud Storage buckets and have enabled data access logging. You want to verify activities for a particular user for these buckets, using the fewest possible steps. You need to verify the addition of metadata labels and which files have been viewed from those buckets. What should you do?
AUsing the GCP Console, filter the Activity log to view the information.
BUsing the GCP Console, filter the Stackdriver log to view the information.
CView the bucket in the Storage section of the GCP Console.
DCreate a trace in Stackdriver to view the information.
You need to monitor resources that are distributed over different projects in Google Cloud Platform. You want to consolidate reporting under the same Stackdriver
Monitoring dashboard. What should you do?
AUse Shared VPC to connect all projects, and link Stackdriver to one of the projects.
BFor each project, create a Stackdriver account. In each project, create a service account for that project and grant it the role of Stackdriver Account Editor in all other projects.
CConfigure a single Stackdriver account, and link all projects to the same account.
DConfigure a single Stackdriver account for one of the projects. In Stackdriver, create a Group and add the other project names as criteria for that Group.
You want to verify the IAM users and roles assigned within a GCP project named my-project. What should you do?
ARun gcloud iam roles list. Review the output section.
BRun gcloud iam service-accounts list. Review the output section.
CNavigate to the project and then to the IAM section in the GCP Console. Review the members and roles.
DNavigate to the project and then to the Roles section in the GCP Console. Review the roles and status.
You need to create a new billing account and then link it with an existing Google Cloud Platform project. What should you do?
AVerify that you are Project Billing Manager for the GCP project. Update the existing project to link it to the existing billing account.
BVerify that you are Project Billing Manager for the GCP project. Create a new billing account and link the new billing account to the existing project.
CVerify that you are Billing Administrator for the billing account. Create a new project and link the new project to the existing billing account.
DVerify that you are Billing Administrator for the billing account. Update the existing project to link it to the existing billing account.
You recently deployed a new version of an application to App Engine and then discovered a bug in the release. You need to immediately revert to the prior version of the application. What should you do?
ARun gcloud app restore.
BOn the App Engine page of the GCP Console, select the application that needs to be reverted and click Revert.
COn the App Engine Versions page of the GCP Console, route 100% of the traffic to the previous version.
DDeploy the original version as a separate application. Then go to App Engine settings and split traffic between applications so that the original version serves 100% of the requests.
You deployed an App Engine application using gcloud app deploy, but it did not deploy to the intended project. You want to find out why this happened and where the application deployed. What should you do?
ACheck the app.yaml file for your application and check project settings.
BCheck the web-application.xml file for your application and check project settings.
CGo to Deployment Manager and review settings for deployment of applications.
DGo to Cloud Shell and run gcloud config list to review the Google Cloud configuration used for deployment.
You have a virtual machine that is currently configured with 2 vCPUs and 4 GB of memory. It is running out of memory. You want to upgrade the virtual machine to have 8 GB of memory. What should you do?
ARely on live migration to move the workload to a machine with more memory.
BUse gcloud to add metadata to the VM. Set the key to required-memory-size and the value to 8 GB.
CStop the VM, change the machine type to n1-standard-8, and start the VM.
DStop the VM, increase the memory to 8 GB, and start the VM.
You want to configure autohealing for network load balancing for a group of Compute Engine instances that run in multiple zones, using the fewest possible steps.
You need to configure re-creation of VMs if they are unresponsive after 3 attempts of 10 seconds each. What should you do?
ACreate an HTTP load balancer with a backend configuration that references an existing instance group. Set the health check to healthy (HTTP)
BCreate an HTTP load balancer with a backend configuration that references an existing instance group. Define a balancing mode and set the maximum RPS to 10.
CCreate a managed instance group. Set the Autohealing health check to healthy (HTTP)
DCreate a managed instance group. Verify that the autoscaling setting is on.
You are building an application that stores relational data from users. Users across the globe will use this application. Your CTO is concerned about the scaling requirements because the size of the user base is unknown. You need to implement a database solution that can scale with your user growth with minimum configuration changes. Which storage solution should you use?
ACloud SQL
BCloud Spanner
CCloud Firestore
DCloud Datastore
You have an instance group that you want to load balance. You want the load balancer to terminate the client SSL session. The instance group is used to serve a public web application over HTTPS. You want to follow Google-recommended practices. What should you do?
AConfigure an HTTP(S) load balancer.
BConfigure an internal TCP load balancer.
CConfigure an external SSL proxy load balancer.
DConfigure an external TCP proxy load balancer.
You need to create an autoscaling managed instance group for an HTTPS web application. You want to make sure that unhealthy VMs are recreated. What should you do?
ACreate a health check on port 443 and use that when creating the Managed Instance Group.
BSelect Multi-Zone instead of Single-Zone when creating the Managed Instance Group.
CIn the Instance Template, add the label 'health-check'.
DIn the Instance Template, add a startup script that sends a heartbeat to the metadata server.
You want to select and configure a cost-effective solution for relational data on Google Cloud Platform. You are working with a small set of operational data in one geographic location. You need to support point-in-time recovery. What should you do?
ASelect Cloud SQL (MySQL). Verify that the enable binary logging option is selected.
BSelect Cloud SQL (MySQL). Select the create failover replicas option.
CSelect Cloud Spanner. Set up your instance with 2 nodes.
DSelect Cloud Spanner. Set up your instance as multi-regional.
You created a Google Cloud Platform project with an App Engine application inside the project. You initially configured the application to be served from the us- central region. Now you want the application to be served from the asia-northeast1 region. What should you do?
AChange the default region property setting in the existing GCP project to asia-northeast1.
BChange the region property setting in the existing App Engine application from us-central to asia-northeast1.
CCreate a second App Engine application in the existing GCP project and specify asia-northeast1 as the region to serve your application.
DCreate a new GCP project and create an App Engine application inside this new project. Specify asia-northeast1 as the region to serve your application.
You are the organization and billing administrator for your company. The engineering team has the Project Creator role on the organization. You do not want the engineering team to be able to link projects to the billing account. Only the finance team should be able to link a project to a billing account, but they should not be able to make any other changes to projects. What should you do?
AAssign the finance team only the Billing Account User role on the billing account.
BAssign the engineering team only the Billing Account User role on the billing account.
CAssign the finance team the Billing Account User role on the billing account and the Project Billing Manager role on the organization.
DAssign the engineering team the Billing Account User role on the billing account and the Project Billing Manager role on the organization.
You need to grant access for three users so that they can view and edit table data on a Cloud Spanner instance. What should you do?
ARun gcloud iam roles describe roles/spanner.databaseUser. Add the users to the role.
BRun gcloud iam roles describe roles/spanner.databaseUser. Add the users to a new group. Add the group to the role.
CRun gcloud iam roles describe roles/spanner.viewer - -project my-project. Add the users to the role.
DRun gcloud iam roles describe roles/spanner.viewer - -project my-project. Add the users to a new group. Add the group to the role.
You have production and test workloads that you want to deploy on Compute Engine. Production VMs need to be in a different subnet than the test VMs. All the
VMs must be able to reach each other over Internal IP without creating additional routes. You need to set up VPC and the 2 subnets. Which configuration meets these requirements?
ACreate a single custom VPC with 2 subnets. Create each subnet in a different region and with a different CIDR range.
BCreate a single custom VPC with 2 subnets. Create each subnet in the same region and with the same CIDR range.
CCreate 2 custom VPCs, each with a single subnet. Create each subnet in a different region and with a different CIDR range.
DCreate 2 custom VPCs, each with a single subnet. Create each subnet in the same region and with the same CIDR range.
Preview
