Updated Oct-2023 Test Engine to Practice Professional-Cloud-Developer Dumps & Practice Exam [Q124-Q146]

Updated Oct-2023 Test Engine to Practice Professional-Cloud-Developer Dumps & Practice Exam

Dumps Collection Professional-Cloud-Developer Test Engine Dumps Training With 228 Questions

NEW QUESTION # 124
Your company has created an application that uploads a report to a Cloud Storage bucket. When the report is uploaded to the bucket, you want to publish a message to a Cloud Pub/Sub topic. You want to implement a solution that will take a small amount to effort to implement.
What should you do?

• A. Create a Cloud Function that is triggered by the Cloud Storage bucket. In the Cloud Function, publish a message to the Cloud Pub/Sub topic.
• B. Configure the Cloud Storage bucket to trigger Cloud Pub/Sub notifications when objects are modified.
• C. Create an App Engine application to receive the file; when it is received, publish a message to the Cloud Pub/Sub topic.
• D. Create an application deployed in a Google Kubernetes Engine cluster to receive the file; when it is received, publish a message to the Cloud Pub/Sub topic.

Answer: A

Explanation:
Explanation/Reference: https://cloud.google.com/storage/docs/pubsub-notifications

NEW QUESTION # 125
You need to copy directory local-scripts and all of its contents from your local workstation to a Compute Engine virtual machine instance.
Which command should you use?
gsutil cp --project "my-gcp-project" -r ~/local-scripts/ gcp-instance-name:~/

• A. instance-name:~/server-scripts/ --zone "us-east1-b"
  gcloud compute mv --project "my-gcp-project" --recurse ~/local-scripts/ gcp-
• B. server-scripts/ --zone "us-east1-b"
  gsutil cp --project "my-gcp-project" -R ~/local-scripts/ gcp-instance-name:~/
• C. server-scripts/ --zone "us-east1-b"
  gcloud compute scp --project "my-gcp-project" --recurse ~/local-scripts/ gcp-
• D. instance-name:~/server-scripts/ --zone "us-east1-b"

Answer: A

Explanation:
Explanation
Explanation/Reference: https://cloud.google.com/sdk/gcloud/reference/compute/copy-files

NEW QUESTION # 126
HipLocal's data science team wants to analyze user reviews.
How should they prepare the data?

• A. Use the Cloud Data Loss Prevention API for de-identification of the review dataset.
• B. Use the Cloud Natural Language Processing API for de-identification of the review dataset.
• C. Use the Cloud Data Loss Prevention API for redaction of the review dataset.
• D. Use the Cloud Natural Language Processing API for redaction of the review dataset.

Answer: A

Explanation:
Explanation
https://cloud.google.com/dlp/docs/deidentify-sensitive-data

NEW QUESTION # 127
Your application is deployed in a Google Kubernetes Engine (GKE) cluster. You want to expose this application publicly behind a Cloud Load Balancing HTTP(S) load balancer. What should you do?

• A. Configure a GKE Service resource.
• B. Configure a GKE Ingress resource.
• C. Configure a GKE Service resource with type: LoadBalancer.
• D. Configure a GKE Ingress resource with type: LoadBalancer.

Answer: B

Explanation:
Reference: https://cloud.google.com/kubernetes-engine/docs/concepts/ingress

NEW QUESTION # 128
You have containerized a legacy application that stores its configuration on an NFS share. You need to deploy this application to Google Kubernetes Engine (GKE) and do not want the application serving traffic until after the configuration has been retrieved. What should you do?

• A. Create a PersistentVolumeClaim on the GKE cluster. Access the configuration files from the volume, and start the service using an ENTRYPOINT script.
• B. Use the COPY statement in the Dockerfile to load the configuration into the container image. Verify that the configuration is available, and start the service using an ENTRYPOINT script.
• C. Add a startup script to the GKE instance group to mount the NFS share at node startup. Copy the configuration files into the container, and start the service using an ENTRYPOINT script.
• D. Use the gsutil utility to copy files from within the Docker container at startup, and start the service using an ENTRYPOINT script.

Answer: C

NEW QUESTION # 129
You are developing an application that reads credit card data from a Pub/Sub subscription. You have written code and completed unit testing. You need to test the Pub/Sub integration before deploying to Google Cloud. What should you do?

• A. Create a service to publish messages to your application. Collect the messages from Pub/Sub in production, and replay them through the publishing service.
• B. Create a service to publish messages, and deploy the Pub/Sub emulator. Collect the messages from Pub/Sub in production, and publish them to the emulator.
• C. Create a service to publish messages, and deploy the Pub/Sub emulator. Generate random content in the publishing service, and publish to the emulator.
• D. Create a service to publish messages, and deploy the Pub/Sub emulator. Publish a standard set of testing messages from the publishing service to the emulator.

Answer: D

NEW QUESTION # 130
Your analytics system executes queries against a BigQuery dataset. The SQL query is executed in batch and passes the contents of a SQL file to the BigQuery CLI. Then it redirects the BigQuery CLI output to another process. However, you are getting a permission error from the BigQuery CLI when the queries are executed.
You want to resolve the issue. What should you do?

• A. Grant the service account BigQuery Data Viewer and BigQuery Job User roles.
• B. Create a new dataset in BigQuery, and copy the source table to the new dataset Query the new dataset and table from the CLI.
• C. Grant the service account BigQuery Data Editor and BigQuery Data Viewer roles.
• D. Create a view in BigQuery from the SQL query and SELECT*from the view in the CLI.

Answer: C

NEW QUESTION # 131
Your application performs well when tested locally, but it runs significantly slower when you deploy it to App Engine standard environment. You want to diagnose the problem. What should you do?

• A. Use Stackdriver Trace to determine which functions within the application have higher latency.
• B. Add logging commands to the application and use Stackdriver Logging to check where the latency problem occurs.
• C. File a ticket with Cloud Support indicating that the application performs faster locally.
• D. Use Stackdriver Debugger Snapshots to look at a point-in-time execution of the application.

Answer: B

Explanation:
Topic 1, HipLocal Case Study
Company Overview
HipLocal is a community application designed to facilitate communication between people in close proximity. It is used for event planning and organizing sporting events, and for businesses to connect with their local communities. HipLocal launched recently in a few neighborhoods in Dallas and is rapidly growing into a global phenomenon. Its unique style of hyper-local community communication and business outreach is in demand around the world.
Executive statement
We are the number one local community app; it's time to take our local community services global. Our venture capital investors want to see rapid growth and the same great experience for new local and virtual communities that come online, whether their members are 10 or 10,000 miles away from each other.
Solution concept
HipLocal wants to expand their existing service, with updated functionality, in new regions to better serve their global customers. They want to hire and train a new team to support these regions in their time zones. They will need to ensure that the application scales smoothly and provides clear uptime data.
Existing technical environment
HipLocal's environment is a mix of on-premises hardware and infrastructure running in Google Cloud Platform. The HipLocal team understands their application well but has limited experience in global scale applications. Their existing technical environment is as follows:
* Existing APIs run on Compute Engine virtual machine instances hosted in GCP
* State is stored in a single instance MySQL database in GCP
* Data is exported to an on-premises Teradata/Vertica data warehouse
* Data analytics is performed in an on-premises Hadoop environment
* The application has no logging
* There are basic indicators of uptime; alerts are frequently fired when the APIs are unresponsive Business Requirements HipLocal's investors want to expand their footprint and support the increase in demand they are seeing. Their requirements are:
* Expand availability of the application to new regions
* Increase the number of concurrent users that can be supported
* Ensure a consistent experience for users when they travel to different regions
* Obtain user activity metrics to better understand how to monetize their product
* Ensure compliance with regulations in the new regions (for example, GDPR)
* Reduce infrastructure management time and cost
* Adopt the Google-recommended practices for cloud computing
Technical Requirements
* The application and backend must provide usage metrics and monitoring
* APIs require strong authentication and authorization
* Logging must be increased, and data should be stored in a cloud analytics platform
* Move to serverless architecture to facilitate elastic scaling
* Provide authorized access to internal apps in a secure manner

NEW QUESTION # 132
Your company's development teams want to use Cloud Build in their projects to build and push Docker images to Container Registry. The operations team requires all Docker images to be published to a centralized, securely managed Docker registry that the operations team manages.
What should you do?

• A. Create a separate project for the operations team that has Container Registry configured. Create a Service Account for each development team and assign the appropriate permissions to allow it access to the operations team's registry. Store the service account key file in the source code repository and use it to authenticate against the operations team's registry.
• B. Create a separate project for the operations team that has Container Registry configured. Assign appropriate permissions to the Cloud Build service account in each developer team's project to allow access to the operation team's registry.
• C. Create a separate project for the operations team that has the open source Docker Registry deployed on a Compute Engine virtual machine instance. Create a username and password for each development team.
  Store the username and password in the source code repository and use it to authenticate against the operations team's Docker registry.
• D. Use Container Registry to create a registry in each development team's project. Configure the Cloud Build build to push the Docker image to the project's registry. Grant the operations team access to each development team's registry.

Answer: D

Explanation:
Reference:
https://cloud.google.com/container-registry/

NEW QUESTION # 133
You are a developer working with the CI/CD team to troubleshoot a new feature that your team introduced.
The CI/CD team used HashiCorp Packer to create a new Compute Engine image from your development branch. The image was successfully built, but is not booting up. You need to investigate the issue with the CI/CD team. What should you do?

• A. Shut down the deployed virtual machine, export the disk, and then mount the disk locally to access the boot logs.
• B. Create a new feature branch, and ask the build team to rebuild the image.
• C. Install Packer locally, build the Compute Engine image locally, and then run it in your personal Google Cloud project.
• D. Check Compute Engine OS logs using the serial port, and check the Cloud Logging logs to confirm access to the serial port.

Answer: D

Explanation:
Explanation
https://cloud.google.com/compute/docs/troubleshooting/troubleshooting-using-serial-console

NEW QUESTION # 134
Your data is stored in Cloud Storage buckets. Fellow developers have reported that data downloaded from Cloud Storage is resulting in slow API performance. You want to research the issue to provide details to the GCP support team. Which command should you run?

• A. gcloud services test -o output.json gs://my-bucket
• B. gcloud compute scp example-instance:~/test-data -o output.json gs://my-bucket
• C. gsutil test -o output.json gs://my-bucket
• D. gsutil perfdiag -o output.json gs://my-bucket

Answer: D

NEW QUESTION # 135
Which service should HipLocal use to enable access to internal apps?

• A. Cloud Identity-Aware Proxy
• B. Virtual Private Cloud
• C. Cloud VPN
• D. Cloud Armor

Answer: A

Explanation:
Reference: https://cloud.google.com/iap/docs/cloud-iap-for-on-prem-apps-overview

NEW QUESTION # 136
Your API backend is running on multiple cloud providers. You want to generate reports for the network latency of your API.
Which two steps should you take? (Choose two.)

• A. Use Stackdriver Debugger to generate report.
• B. Use Fluentd agent to gather data.
• C. Use Zipkin collector to gather data.
• D. Use Stackdriver Trace to generate reports.
• E. Use Stackdriver Profiler to generate report.

Answer: D,E

NEW QUESTION # 137
Your application takes an input from a user and publishes it to the user's contacts. This input is stored in a table in Cloud Spanner. Your application is more sensitive to latency and less sensitive to consistency.
How should you perform reads from Cloud Spanner for this application?

• A. Perform Read-Only transactions.
• B. Perform strong reads using single-read methods.
• C. Perform stale reads using single-read methods.
• D. Perform stale reads using read-write transactions.

Answer: D

NEW QUESTION # 138
Your team develops services that run on Google Cloud. You need to build a data processing service and will use Cloud Functions. The data to be processed by the function is sensitive. You need to ensure that invocations can only happen from authorized services and follow Google-recommended best practices for securing functions. What should you do?

• A. Create a service account with the Cloud Functions Invoker role. Use that service account to invoke the function.
• B. Enable Identity-Aware Proxy in your project. Secure function access using its permissions.
• C. Create a service account with the Cloud Functions Viewer role. Use that service account to invoke the function.
• D. Create an OAuth 2.0 client ID for your calling service in the same project as the function you want to secure. Use those credentials to invoke the function.

Answer: A

Explanation:
Reference:
https://medium.com/google-cloud/how-to-securely-invoke-a-cloud-function-from-google-kubernetes-engine-run

NEW QUESTION # 139
You need to copy directory local-scripts and all of its contents from your local workstation to a Compute Engine virtual machine instance.
Which command should you use?

• A. gcloud compute scp --project "my-gcp-project" --recurse ~/local-scripts/ gcpinstance- name:~/server-scripts/ --zone "us-east1-b"
• B. gcloud compute mv --project "my-gcp-project" --recurse ~/local-scripts/ gcpinstance- name:~/server-scripts/ --zone "us-east1-b"
• C. gsutil cp --project "my-gcp-project" -r ~/local-scripts/ gcp-instance-name:~/ server-scripts/ --zone "us-east1-b"
• D. gsutil cp --project "my-gcp-project" -R ~/local-scripts/ gcp-instance-name:~/ server-scripts/ --zone "us-east1-b"

Answer: A

NEW QUESTION # 140
Which of the following types of data are backed up to iCloud? (Choose two.)

• A. Touch ID Settings
• B. Messages
• C. iCloud Music Library
• D. Apple Pay information and settings
• E. Device Settings

Answer: B,E

NEW QUESTION # 141
In the systematic troubleshooting approach, which of the following statements is true about isolating an issue?

• A. If an issue cannot be reproduced, it is likely a hardware issue.
• B. Replacing an internal component will determine if the issue is related to environment.
• C. Basing a conclusion on past experience with similar issues is a proven troubleshooting method.
• D. Asking the customer to reproduce an issue can help determine if the issue is with the device.

Answer: D

NEW QUESTION # 142
You recently developed a new service on Cloud Run. The new service authenticates using a custom service and then writes transactional information to a Cloud Spanner database. You need to verify that your application can support up to 5,000 read and 1,000 write transactions per second while identifying any bottlenecks that occur. Your test infrastructure must be able to autoscale. What should you do?

• A. Create a Google Kubernetes Engine cluster running the Locust or JMeter images to dynamically generate load tests. Analyze the results using Cloud Trace.
• B. Create a Compute Engine instance that uses a LAMP stack image from the Marketplace, and use Apache Bench to generate load tests against the service. Analyze the results using Cloud Trace.
• C. Create a Cloud Task to generate a test load. Use Cloud Scheduler to run 60,000 Cloud Task transactions per minute for 10 minutes. Analyze the results using Cloud Monitoring.
• D. Build a test harness to generate requests and deploy it to Cloud Run. Analyze the VPC Flow Logs using Cloud Logging.

Answer: A

Explanation:
Explanation
https://cloud.google.com/architecture/distributed-load-testing-using-gke

NEW QUESTION # 143
Which service should HipLocal use to enable access to internal apps?

• A. Cloud Identity-Aware Proxy
• B. Virtual Private Cloud
• C. Cloud VPN
• D. Cloud Armor

Answer: A

NEW QUESTION # 144
For this question, refer to the HipLocal case study.
A recent security audit discovers that HipLocal's database credentials for their Compute Engine-hosted MySQL databases are stored in plain text on persistent disks. HipLocal needs to reduce the risk of these credentials being stolen. What should they do?

• A. Create a service account and download its key. Use the key to authenticate to Cloud Key Management Service (KMS) to obtain the database credentials.
• B. Create a service account and grant it the roles/iam.serviceAccountUser role. Impersonate as this account and authenticate using the Cloud SQL Proxy.
• C. Grant the roles/secretmanager.secretAccessor role to the Compute Engine service account. Store and access the database credentials with the Secret Manager API.
• D. Create a service account and download its key. Use the key to authenticate to Cloud Key Management Service (KMS) to obtain a key used to decrypt the database credentials.

Answer: C

Explanation:
Explanation
https://cloud.google.com/secret-manager/docs/overview

NEW QUESTION # 145
You are developing a Java Web Server that needs to interact with Google Cloud services via the Google Cloud API on the user's behalf. Users should be able to authenticate to the Google Cloud API using their Google Cloud identities. Which workflow should you implement in your web application?

• A. 1) When a user arrives at your application, prompt them for their Google username and password.
  2) Store an SHA password hash in your application's database along with the user's username.
  3) The application authenticates to the Google Cloud API using HTTPs requests with the user's username and password hash in the Authorization request header.
• B. 1) When a user arrives at your application, route them to a Google Cloud consent screen with a list of requested permissions that prompts the user to sign in with SSO to their Google Account.
  2) After the user signs in and provides consent, your application receives an authorization code from a Google server.
  3) The application requests a Google Server to exchange the authorization code with an access token.
  4) The Google server responds with the access token that is used by the application to call the Google Cloud API.
• C. 1) When a user arrives at your application, route them to a Google Cloud consent screen with a list of requested permissions that prompts the user to sign in with SSO to their Google Account.
  2) After the user signs in and provides consent, your application receives an authorization code from a Google server.
  3) The Google server returns the authorization code to the user, which is stored in the browser's cookies.
  4) The user authenticates to the Google Cloud API using the authorization code in the cookie.
• D. 1) When a user arrives at your application, prompt them for their Google username and password.
  2) Forward the user's username and password in an HTTPS request to the Google Cloud authorization server, and request an access token.
  3) The Google server validates the user's credentials and returns an access token to the application.
  4) The application uses the access token to call the Google Cloud API.

Answer: B

Explanation:
Explanation
https://developers.google.com/identity/protocols/oauth2#webserver
The Google OAuth 2.0 endpoint supports web server applications that use languages and frameworks such as PHP, Java, Python, Ruby, and ASP.NET. The authorization sequence begins when your application redirects a browser to a Google URL; the URL includes query parameters that indicate the type of access being requested.
Google handles the user authentication, session selection, and user consent. The result is an authorization code, which the application can exchange for an access token and a refresh token.

NEW QUESTION # 146
......

Google Professional-Cloud-Developer Dumps Cover Real Exam Questions: https://www.realexamfree.com/Professional-Cloud-Developer-real-exam-dumps.html

Real Professional-Cloud-Developer dumps - Real Google dumps PDF: https://drive.google.com/open?id=1tUKaeUaSxfW-GaiROc484BhJLMZ4Ir04