• Home
  • Articles
  • Updated Jan-2022 100% Cover Real Associate-Cloud-Engineer Exam Questions - 100% Pass Guarantee [Q108-Q127]

Updated Jan-2022 100% Cover Real Associate-Cloud-Engineer Exam Questions - 100% Pass Guarantee [Q108-Q127]

Share

Updated Jan-2022 100% Cover Real Associate-Cloud-Engineer Exam Questions - 100% Pass Guarantee

Use Real Google Dumps - 100% Free Associate-Cloud-Engineer Exam Dumps

NEW QUESTION 108
You have an application running in Google Kubernetes Engine (GKE) with cluster autoscaling enabled. The application exposes a TCP endpoint. There are several replicas of this application. You have a Compute Engine instance in the same region, but in another Virtual Private Cloud (VPC), called gce-network, that has no overlapping IP ranges with the first VPC. This instance needs to connect to the application on GKE. You want to minimize effort. What should you do?

  • A. 1. In GKE, create a Service of type NodePortthat uses the application's Pods as backend.
    2. Create a Compute Engine instance called proxy with 2 network interfaces, one in each VPC.
    3. Use iptables on this instance to forward traffic from gce-network to the GKE nodes.
    4. Configure the Compute Engine instance to use the address of proxyin gce-networkas endpoint.
  • B. 1. In GKE, create a Serviceof type LoadBalancerthat uses the application's Pods as backend.
    2. Add a Cloud Armor Security Policy to the load balancer that whitelists the internal IPs of the MIG's instances.
    3. Configure the Compute Engine instance to use the address of the load balancer that has been created.
  • C. 1. In GKE, create a Serviceof type LoadBalancerthat uses the application's Pods as backend.
    2. Add an annotation to this service: cloud.google.com/load-balancer-type: Internal
    3. Peer the two VPCs together.
    4. Configure the Compute Engine instance to use the address of the load balancer that has been created.
  • D. 1. In GKE, create a Serviceof type LoadBalancer that uses the application's Pods as backend.
    2. Set the service's externalTrafficPolicyto Cluster.
    3. Configure the Compute Engine instance to use the address of the load balancer that has been created.

Answer: D

Explanation:
Explanation/Reference:

 

NEW QUESTION 109
You are building an application that stores relational data from users. Users across the globe will use this application. Your CTO is concerned about the scaling requirements because the size of the user base is unknown. You need to implement a database solution that can scale with your user growth with minimum configuration changes. Which storage solution should you use?

  • A. Cloud Spanner
  • B. Cloud Datastore
  • C. Cloud Firestore
  • D. Cloud SQL

Answer: B

 

NEW QUESTION 110
Your organization has user identities in Active Directory. Your organization wants to use Active Directory as their source of truth for identities. Your organization wants to have full control over the Google accounts used by employees for all Google services, including your Google Cloud Platform (GCP) organization. What should you do?

  • A. Ask each employee to create a Google account using self signup. Require that each employee use their company email address and password.
  • B. Use the cloud Identity APIs and write a script to synchronize users to Cloud Identity.
  • C. Export users from Active Directory as a CSV and import them to Cloud Identity via the Admin Console.
  • D. Use Google Cloud Directory Sync (GCDS) to synchronize users into Cloud Identity.

Answer: D

 

NEW QUESTION 111
You are using Deployment Manager to create a Google Kubernetes Engine cluster. Using the same Deployment Manager deployment, you also want to create a DaemonSet in the kube-system namespace of the cluster. You want a solution that uses the fewest possible services. What should you do?

  • A. In the cluster's definition in Deployment Manager, add a metadata that has kube-system as key and the DaemonSet manifest as value.
  • B. Add the cluster's API as a new Type Provider in Deployment Manager, and use the new type to create the DaemonSet.
  • C. With Deployment Manager, create a Compute Engine instance with a startup script that uses kubectl to create the DaemonSet.
  • D. Use the Deployment Manager Runtime Configurator to create a new Config resource that contains the DaemonSet definition.

Answer: C

 

NEW QUESTION 112
You have a website hosted on App Engine standard environment. You want 1% of your users to see a new test version of the website. You want to minimize complexity. What should you do?

  • A. Create a new App Engine application in the same project. Deploy the new version in that application.
    Configure your network load balancer to send 1% of the traffic to that new application.
  • B. Deploy the new version in the same application and use the --splitsoption to give a weight of 99 to the current version and a weight of 1 to the new version.
  • C. Deploy the new version in the same application and use the --migrateoption.
  • D. Create a new App Engine application in the same project. Deploy the new version in that application. Use the App Engine library to proxy 1% of the requests to the new version.

Answer: D

Explanation:
Explanation

 

NEW QUESTION 113
Your organization has a dedicated person who creates and manages all service accounts for Google Cloud projects. You need to assign this person the minimum role for projects. What should you do?

  • A. Add the user to roles/iam.roleAdmin role.
  • B. Add the user to roles/iam.serviceAccountUser role.
  • C. Add the user to roles/iam.serviceAccountAdmin role.
  • D. Add the user to roles/iam.securityAdmin role.

Answer: B

Explanation:
Explanation/Reference: https://cloud.google.com/iam/docs/creating-managing-service-accounts

 

NEW QUESTION 114
You are migrating a production-critical on-premises application that requires 96 vCPUs to perform its task. You want to make sure the application runs in a similar environment on GCP. What should you do?

  • A. When creating the VM, use machine type n1-standard-96.
  • B. When creating the VM, use Intel Skylake as the CPU platform.
  • C. Create the VM using Compute Engine default settings. Use gcloud to modify the running instance to have 96 vCPUs.
  • D. Start the VM using Compute Engine default settings, and adjust as you go based on Rightsizing Recommendations.

Answer: C

 

NEW QUESTION 115
You've found that your Linux server keeps running low on memory. It's currently using 8 Gigs of memory, and you want to increase it to 16. What is the simplest way to do that?

  • A. Create a new instance with the correct amount of memory.
  • B. Use the Linux memincr command to increase the memory.
  • C. Use the gcloud compute add-memory command to increase the memory.
  • D. Stop the instance and change the machine type.

Answer: B,D

 

NEW QUESTION 116
Your company uses Cloud Storage to store application backup files for disaster recovery purposes. You want to follow Google's recommended practices. Which storage option should you use?

  • A. Regional Storage
  • B. Nearline Storage
  • C. Coldline Storage
  • D. Multi-Regional Storage

Answer: C

 

NEW QUESTION 117
You have a project for your App Engine application that serves a development environment. The required testing has succeeded and you want to create a new project to serve as your production environment.
What should you do?

  • A. Deploy your application again using gcloud and specify the project parameter with the new project name to create the new project.
  • B. Use gcloud to create the new project and to copy the deployed application to the new project.
  • C. Create a Deployment Manager configuration file that copies the current App Engine deployment into a new project.
  • D. Use gcloud to create the new project, and then deploy your application to the new project.

Answer: D

Explanation:
gcloud can be used to create a new project and the gcloud app deploy can point to the new project.

 

NEW QUESTION 118
Every employee of your company has a Google account. Your operational team needs to manage a large number of instances on Compute Engine. Each member of this team needs only administrative access to the servers. Your security team wants to ensure that the deployment of credentials is operationally efficient and must be able to determine who accessed a given instance. What should you do?

  • A. Ask each member of the team to generate a new SSH key pair and to add the public key to their Google account. Grant the "compute.osAdminLogin" role to the Google group corresponding to this team.
  • B. Generate a new SSH key pair. Give the private key to each member of your team. Configure the public key in the metadata of each instance.
  • C. Generate a new SSH key pair. Give the private key to each member of your team. Configure the public key as a project-wide public SSH key in your Cloud Platform project and allow project-wide public SSH keys on each instance.
  • D. Ask each member of the team to generate a new SSH key pair and to send you their public key. Use a configuration management tool to deploy those keys on each instance.

Answer: A

Explanation:
Explanation
https://cloud.google.com/compute/docs/instances/managing-instance-access

 

NEW QUESTION 119
The development team needs a regional MySQL database with point-in-time recovery for a new proof- of-concept application. What's the most inexpensive way to enable point-in-time recovery?

  • A. Create a read replica in the same region.
  • B. Replicate to a Cloud Spanner database.
  • C. Enable binary logging.
  • D. Create hourly back-ups.

Answer: C

 

NEW QUESTION 120
Your VMs are running in a subnet that has a subnet mask of 255.255.255.240. The current subnet has no more free IP addresses and you require an additional 10 IP addresses for new VMs. The existing and new VMs should all be able to reach each other without additional routes.
What should you do?

  • A. Create a new project. Use Shared VPC to share the current network with the new project.
  • B. Create a new subnet with the same starting IP but a wider range to overwrite the current subnet.
  • C. Delete the subnet, and recreate it using a wider range of IP addresses.
  • D. Use gcloud to expand the IP range of the current subnet.

Answer: D

Explanation:
https://cloud.google.com/sdk/gcloud/reference/compute/networks/subnets/expand-ip-range

 

NEW QUESTION 121
You have a single binary application that you want to run on Google Cloud Platform. You decided to automatically scale the application based on underlying infrastructure CPU usage. Your organizational policies require you to use virtual machines directly. You need to ensure that the application scaling is operationally efficient and completed as quickly as possible. What should you do?

  • A. Create an instance template, and use the template in a managed instance group that scales up and down based on the time of day.
  • B. Create an instance template, and use the template in a managed instance group with autoscaling configured.
  • C. Create a Google Kubernetes Engine cluster, and use horizontal pod autoscaling to scale the application.
  • D. Use a set of third-party tools to build automation around scaling the application up and down, based on Stackdriver CPU usage monitoring.

Answer: B

Explanation:
A managed instance group can help use virtual machines directly and with autoscaling can scaling as per the demand.Refer GCP documentation. Managed Instance Groups AutoScaling Managed instance groups offer autoscaling capabilities that allow you to automatically add or delete instances from a managed instance group based on increases or decreases in load.

 

NEW QUESTION 122
You have an object in a Cloud Storage bucket that you want to share with an external company.
The object contains sensitive data. You want access to the content to be removed after four hours. The external company does not have a Google account to which you can grant specific user-based access privileges. You want to use the most secure method that requires the fewest steps. What should you do?

  • A. Set object access to `public' and use object lifecycle management to remove the object after four hours.
  • B. Create a signed URL with a four-hour expiration and share the URL with the company.
  • C. Configure the storage bucket as a static website and furnish the object's URL to the company.
    Delete the object from the storage bucket after four hours.
  • D. Create a new Cloud Storage bucket specifically for the external company to access.
    Copy the object to that bucket. Delete the bucket after four hours have passed.

Answer: B

 

NEW QUESTION 123
You are deploying a production application on Compute Engine. You want to prevent anyone from accidentally destroying the instance by clicking the wrong button. What should you do?

  • A. Enable delete protection on the instance.
  • B. Disable Automatic restart on the instance.
  • C. Enable Preemptibility on the instance.
  • D. Disable the flag "Delete boot disk when instance is deleted."

Answer: D

 

NEW QUESTION 124
You are building an archival solution for your data warehouse and have selected Cloud Storage to archive your data. Your users need to be able to access this archived data once a quarter for some regulatory requirements. You want to select a cost-efficient option. Which storage option should you use?

  • A. Regional Storage
  • B. Cold Storage
  • C. Nearline Storage
  • D. Multi-Regional Storage

Answer: C

Explanation:
Nearline, Coldline, and Archive offer ultra low-cost, highly-durable, highly available archival storage. For data accessed less than once a year, Archive is a cost-effective storage option for long-term preservation of data. Coldline is also ideal for cold storage--data your business expects to touch less than once a quarter. For warmer storage, choose Nearline: data you expect to access less than once a month, but possibly multiple times throughout the year. All storage classes are available across all GCP regions and provide unparalleled sub-second access speeds with a consistent API.
https://cloud.google.com/storage/archival

 

NEW QUESTION 125
You created an update for your application on App Engine. You want to deploy the update without impacting your users. You want to be able to roll back as quickly as possible if it fails. What should you do?

  • A. Deploy the update as a new version. Migrate traffic from the current version to the new version.
  • B. Delete the current version of your application. Deploy the update using the same version identifier as the deleted version.
  • C. Deploy the update as the same version that is currently running.
  • D. Notify your users of an upcoming maintenance window. Deploy the update in that maintenance window.

Answer: A

Explanation:
A and B are not correct because this will make the application temporarily unavailable to users.
C is not correct because to roll back, you'll need to redeploy the previous deployment because the app was overwritten with the same version number. Therefore this takes longer than a rollback using method D.
D is correct because this makes sure there is no downtime and you can roll back the fastest.
https://cloud.google.com/appengine/docs/admin-api/migrating-splitting-traffic

 

NEW QUESTION 126
You have an autoscaled managed instance group that is set to scale based on CPU utilization of 60%. There are currently 3 instances in the instance group. You're connected to one of the instances and notice that the CPU usage is a 70%. However, the instance group isn't starting up another instance. What's the most likely reason?

  • A. The load balancer doesn't recognize the instance as healthy.
  • B. The average CPU for the entire instance group is below 60%.
  • C. The autoscaler takes 60 seconds before creating a new instance.
  • D. The autoscaler is disabled.

Answer: B

 

NEW QUESTION 127
......


Below are the requirements of Associate Cloud Engineer Exam

There is no prerequisite for Oracle Associate Cloud Engineer certification.


Career prospects

The professionals with the Google Associate Cloud Engineer certification can explore different job roles. Some of these include a Cloud Operations Engineer, a Cloud Services Engineer, a Cloud Solutions Systems Engineer, a Cloud Network Engineer, and a Software Engineer. The average salary for these certified specialists is $74,000 per year. The actual salary depends on your position and level of experience.

 

Associate-Cloud-Engineer Dumps PDF - Associate-Cloud-Engineer Real Exam Questions Answers: https://www.testkingpass.com/Associate-Cloud-Engineer-testking-dumps.html

Realistic Associate-Cloud-Engineer Dumps Latest Practice Tests Dumps: https://drive.google.com/open?id=1SXrt4mHedpBpqWAVRqtj_6Oi1vxGpmq8 

Related Articles

more
Google Associate-Cloud-Engineer Certification Practice Exam