
[Dec 26, 2021] ActualCollection Professional-Cloud-DevOps-Engineer Exam Practice Test Questions (Updated 83 Questions)
Pass Google Professional-Cloud-DevOps-Engineer Exam Info and Free Practice Test
NEW QUESTION 46
You support an application running on GCP and want to configure SMS notifications to your team for the most critical alerts in Stackdriver Monitoring. You have already identified the alerting policies you want to configure this for. What should you do?
- A. Download and configure a third-party integration between Stackdriver Monitoring and an SMS gateway.
Ensure that your team members add their SMS/phone numbers to the external tool. - B. Configure a Slack notification for each alerting policy. Set up a Slack-to-SMS integration to send SMS messages when Slack messages are received. Ensure that your team members add their SMS/phone numbers to the external integration.
- C. Ensure that your team members set their SMS/phone numbers in their Stackdriver Profile. Select the SMS notification option for each alerting policy and then select the appropriate SMS/phone numbers from the list.
- D. Select the Webhook notifications option for each alerting policy, and configure it to use a third-party integration tool. Ensure that your team members add their SMS/phone numbers to the external tool.
Answer: B
NEW QUESTION 47
You created a Stackdriver chart for CPU utilization in a dashboard within your workspace project. You want to share the chart with your Site Reliability Engineering (SRE) team only. You want to ensure you follow the principle of least privilege. What should you do?
- A. Click "Share chart by URL" and provide the URL to the SRE team. Assign the SRE team the Dashboard Viewer IAM role in the workspace project.
- B. Share the workspace Project ID with the SRE team. Assign the SRE team the Monitoring Viewer IAM role in the workspace project.
- C. Click "Share chart by URL" and provide the URL to the SRE team. Assign the SRE team the Monitoring Viewer IAM role in the workspace project.
- D. Share the workspace Project ID with the SRE team. Assign the SRE team the Dashboard Viewer IAM role in the workspace project.
Answer: C
Explanation:
https://cloud.google.com/monitoring/access-control
NEW QUESTION 48
Your application images are built using Cloud Build and pushed to Google Container Registry (GCR). You want to be able to specify a particular version of your application for deployment based on the release version tagged in source control. What should you do when you push the image?
- A. Use GCR digest versioning to match the image to the tag in source control.
- B. Supply the source control tag as a parameter within the image name.
- C. Reference the image digest in the source control tag.
- D. Use Cloud Build to include the release version tag in the application image.
Answer: B
NEW QUESTION 49
You support a high-traffic web application with a microservice architecture. The home page of the application displays multiple widgets containing content such as the current weather, stock prices, and news headlines. The main serving thread makes a call to a dedicated microservice for each widget and then lays out the homepage for the user. The microservices occasionally fail; when that happens, the serving thread serves the homepage with some missing content. Users of the application are unhappy if this degraded mode occurs too frequently, but they would rather have some content served instead of no content at all. You want to set a Service Level Objective (SLO) to ensure that the user experience does not degrade too much. What Service Level Indicator {SLI) should you use to measure this?
- A. A quality SLI: the ratio of non-degraded responses to total responses
- B. A freshness SLI: the proportion of widgets that have been updated within the last 10 minutes
- C. A latency SLI: the ratio of microservice calls that complete in under 100 ms to the total number of microservice calls
- D. An availability SLI: the ratio of healthy microservices to the total number of microservices
Answer: D
NEW QUESTION 50
You use Cloud Build to build your application. You want to reduce the build time while minimizing cost and development effort. What should you do?
- A. Run multiple Jenkins agents to parallelize the build.
- B. Use Cloud Storage to cache intermediate artifacts.
- C. Use larger Cloud Build virtual machines (VMs) by using the machine-type option.
- D. Use multiple smaller build steps to minimize execution time.
Answer: D
NEW QUESTION 51
You are responsible for the reliability of a high-volume enterprise application. A large number of users report that an important subset of the application's functionality - a data intensive reporting feature - is consistently failing with an HTTP 500 error. When you investigate your application's dashboards, you notice a strong correlation between the failures and a metric that represents the size of an internal queue used for generating reports. You trace the failures to a reporting backend that is experiencing high I/O wait times. You quickly fix the issue by resizing the backend's persistent disk (PD). How you need to create an availability Service Level Indicator (SLI) for the report generation feature. How would you define it?
- A. As the I/O wait times aggregated across all report generation backends
- B. As the reporting backend PD throughout capacity compared to a known-good threshold
- C. As the proportion of report generation requests that result in a successful response
- D. As the application's report generation queue size compared to a known-good threshold
Answer: D
NEW QUESTION 52
You use Spinnaker to deploy your application and have created a canary deployment stage in the pipeline. Your application has an in-memory cache that loads objects at start time. You want to automate the comparison of the canary version against the production version. How should you configure the canary analysis?
- A. Compare the canary with the average performance of a sliding window of previous production versions.
- B. Compare the canary with a new deployment of the current production version.
- C. Compare the canary with a new deployment of the previous production version.
- D. Compare the canary with the existing deployment of the current production version.
Answer: B
Explanation:
https://cloud.google.com/architecture/automated-canary-analysis-kubernetes-engine-spinnaker
https://spinnaker.io/guides/user/canary/best-practices/#compare-canary-against-baseline-not-against-production
NEW QUESTION 53
Your organization recently adopted a container-based workflow for application development. Your team develops numerous applications that are deployed continuously through an automated build pipeline to a Kubernetes cluster in the production environment. The security auditor is concerned that developers or operators could circumvent automated testing and push code changes to production without approval. What should you do to enforce approvals?
- A. Configure the build system with protected branches that require pull request approval.
- B. Use an Admission Controller to verify that incoming requests originate from approved sources.
- C. Leverage Kubernetes Role-Based Access Control (RBAC) to restrict access to only approved users.
- D. Enable binary authorization inside the Kubernetes cluster and configure the build pipeline as an attestor.
Answer: A
NEW QUESTION 54
Your application services run in Google Kubernetes Engine (GKE). You want to make sure that only images from your centrally-managed Google Container Registry (GCR) image registry in the altostrat-images project can be deployed to the cluster while minimizing development time. What should you do?
- A. Add a tag to each image in gcr.io/altostrat-images and check that this tag is present when the image is deployed.
- B. Create a custom builder for Cloud Build that will only push images to gcr.io/altostrat-images.
- C. Add logic to the deployment pipeline to check that all manifests contain only images from gcr.io/altostrat-images.
- D. Use a Binary Authorization policy that includes the whitelist name pattern gcr.io/attostrat-images/.
Answer: A
NEW QUESTION 55
Your application images are built using Cloud Build and pushed to Google Container Registry (GCR). You want to be able to specify a particular version of your application for deployment based on the release version tagged in source control. What should you do when you push the image?
- A. Use GCR digest versioning to match the image to the tag in source control.
- B. Use Cloud Build to include the release version tag in the application image.
- C. Reference the image digest in the source control tag.
- D. Supply the source control tag as a parameter within the image name.
Answer: B
NEW QUESTION 56
You support a trading application written in Python and hosted on App Engine flexible environment. You want to customize the error information being sent to Stackdriver Error Reporting. What should you do?
- A. Install the Stackdriver Error Reporting library for Python, and then run your code on App Engine flexible environment.
- B. Use the Stackdriver Error Reporting API to write errors from your application to ReportedErrorEvent, and then generate log entries with properly formatted error messages in Stackdriver Logging.
- C. Install the Stackdriver Error Reporting library for Python, and then run your code on a Compute Engine VM.
- D. Install the Stackdriver Error Reporting library for Python, and then run your code on Google Kubernetes Engine.
Answer: A
NEW QUESTION 57
You support a high-traffic web application that runs on Google Cloud Platform (GCP). You need to measure application reliability from a user perspective without making any engineering changes to it. What should you do?
Choose 2 answers
- A. Modify the code to capture additional information for user interaction.
- B. Use current and historic Request Logs to trace customer interaction with the application.
- C. Create new synthetic clients to simulate a user journey using the application.
- D. Analyze the web proxy logs only and capture response time of each request.
- E. Review current application metrics and add new ones as needed.
Answer: B,D
Explanation:
https://cloud.google.com/architecture/adopting-slos?hl=en
NEW QUESTION 58
Your team is designing a new application for deployment into Google Kubernetes Engine (GKE). You need to set up monitoring to collect and aggregate various application-level metrics in a centralized location. You want to use Google Cloud Platform services while minimizing the amount of work required to set up monitoring.
What should you do?
- A. Install the Cloud Pub/Sub client libraries, push various metrics from the application to various topics, and then observe the aggregated metrics in Stackdriver.
- B. Install the OpenTelemetry client libraries in the application, configure Stackdriver as the export destination for the metrics, and then observe the application's metrics in Stackdriver.
- C. Publish various metrics from the application directly to the Stackdriver Monitoring API, and then observe these custom metrics in Stackdriver.
- D. Emit all metrics in the form of application-specific log messages, pass these messages from the containers to the Stackdriver logging collector, and then observe metrics in Stackdriver.
Answer: B
NEW QUESTION 59
You are managing the production deployment to a set of Google Kubernetes Engine (GKE) clusters. You want to make sure only images which are successfully built by your trusted CI/CD pipeline are deployed to production. What should you do?
- A. Set up the Kubernetes Engine clusters as private clusters.
- B. Set up the Kubernetes Engine clusters with Binary Authorization.
- C. Enable Vulnerability Analysis on the Container Registry.
- D. Enable Cloud Security Scanner on the clusters.
Answer: A
NEW QUESTION 60
Your organization recently adopted a container-based workflow for application development. Your team develops numerous applications that are deployed continuously through an automated build pipeline to a Kubernetes cluster in the production environment. The security auditor is concerned that developers or operators could circumvent automated testing and push code changes to production without approval. What should you do to enforce approvals?
- A. Enable binary authorization inside the Kubernetes cluster and configure the build pipeline as an attestor.
- B. Use an Admission Controller to verify that incoming requests originate from approved sources.
- C. Leverage Kubernetes Role-Based Access Control (RBAC) to restrict access to only approved users.
- D. Configure the build system with protected branches that require pull request approval.
Answer: A
Explanation:
The keywords here is "developers or operators". Option A the operators could push images to production without approval (operators could touch the cluster directly and the cluster cannot do any action against them). Rest same as francisco_guerra.
NEW QUESTION 61
You need to run a business-critical workload on a fixed set of Compute Engine instances for several months.
The workload is stable with the exact amount of resources allocated to it. You want to lower the costs for this workload without any performance implications. What should you do?
- A. Purchase Committed Use Discounts.
- B. Convert the instances to preemptible virtual machines.
- C. Create an Unmanaged Instance Group for the instances used to run the workload.
- D. Migrate the instances to a Managed Instance Group.
Answer: B
Explanation:
Explanation/Reference: https://cloud.google.com/compute/docs/faq
NEW QUESTION 62
You use Spinnaker to deploy your application and have created a canary deployment stage in the pipeline. Your application has an in-memory cache that loads objects at start time. You want to automate the comparison of the canary version against the production version. How should you configure the canary analysis?
- A. Compare the canary with a new deployment of the previous production version.
- B. Compare the canary with a new deployment of the current production version.
- C. Compare the canary with the average performance of a sliding window of previous production versions.
- D. Compare the canary with the existing deployment of the current production version.
Answer: C
NEW QUESTION 63
You support the backend of a mobile phone game that runs on a Google Kubernetes Engine (GKE) cluster. The application is serving HTTP requests from users. You need to implement a solution that will reduce the network cost. What should you do?
- A. Configure a Google Cloud HTTP Load Balancer as Ingress.
- B. Configure your Kubernetes cluster as a Private Cluster.
- C. Configure the VPC as a Shared VPC Host project.
- D. Configure your network services on the Standard Tier.
Answer: C
NEW QUESTION 64
You support a web application that is hosted on Compute Engine. The application provides a booking service for thousands of users. Shortly after the release of a new feature, your monitoring dashboard shows that all users are experiencing latency at login. You want to mitigate the impact of the incident on the users of your service. What should you do first?
- A. Deploy a new release to see whether it fixes the problem.
- B. Review the Stackdriver monitoring.
- C. Roll back the recent release.
- D. Upsize the virtual machines running the login services.
Answer: D
NEW QUESTION 65
You are running a real-time gaming application on Compute Engine that has a production and testing environment. Each environment has their own Virtual Private Cloud (VPC) network. The application frontend and backend servers are located on different subnets in the environment's VPC. You suspect there is a malicious process communicating intermittently in your production frontend servers. You want to ensure that network traffic is captured for analysis. What should you do?
- A. Enable VPC Flow Logs on the production VPC network frontend and backend subnets only with a sample volume scale of 0.5.
- B. Enable VPC Flow Logs on the testing and production VPC network frontend and backend subnets with a volume scale of 1.0. Apply changes in testing before production.
- C. Enable VPC Flow Logs on the production VPC network frontend and backend subnets only with a sample volume scale of 1.0.
- D. Enable VPC Flow Logs on the testing and production VPC network frontend and backend subnets with a volume scale of 0.5. Apply changes in testing before production.
Answer: B
NEW QUESTION 66
You use a multiple step Cloud Build pipeline to build and deploy your application to Google Kubernetes Engine (GKE). You want to integrate with a third-party monitoring platform by performing a HTTP POST of the build information to a webhook. You want to minimize the development effort. What should you do?
- A. Create a Cloud Pub/Sub push subscription to the Cloud Build cloud-builds PubSub topic to HTTP POST the build information to a webhook.
- B. Use Stackdriver Logging to create a logs-based metric from the Cloud Buitd logs. Create an Alert with a Webhook notification type.
- C. Add a new step at the end of the pipeline in Cloud Build to HTTP POST the build information to a webhook.
- D. Add logic to each Cloud Build step to HTTP POST the build information to a webhook.
Answer: C
NEW QUESTION 67
You have a set of applications running on a Google Kubernetes Engine (GKE) cluster, and you are using Stackdriver Kubernetes Engine Monitoring. You are bringing a new containerized application required by your company into production. This application is written by a third party and cannot be modified or reconfigured. The application writes its log information to /var/log/app_messages.log, and you want to send these log entries to Stackdriver Logging. What should you do?
- A. Install Kubernetes on Google Compute Engine (GCE> and redeploy your applications. Then customize the built-in Stackdriver Logging configuration to tail the log file in the application's pods and write to Stackdriver Logging.
- B. Deploy a Fluentd daemonset to GKE. Then create a customized input and output configuration to tail the log file in the application's pods and write to Slackdriver Logging.
- C. Use the default Stackdriver Kubernetes Engine Monitoring agent configuration.
- D. Write a script to tail the log file within the pod and write entries to standard output. Run the script as a sidecar container with the application's pod. Configure a shared volume between the containers to allow the script to have read access to /var/log in the application container.
Answer: B
Explanation:
https://cloud.google.com/architecture/customizing-stackdriver-logs-fluentd Besides the list of default logs that the Logging agent streams by default, you can customize the Logging agent to send additional logs to Logging or to adjust agent settings by adding input configurations. The configuration definitions in these sections apply to the fluent-plugin-google-cloud output plugin only and specify how logs are transformed and ingested into Cloud Logging. https://cloud.google.com/logging/docs/agent/logging/configuration#configure
NEW QUESTION 68
You need to deploy a new service to production. The service needs to automatically scale using a Managed Instance Group (MIG) and should be deployed over multiple regions. The service needs a large number of resources for each instance and you need to plan for capacity. What should you do?
- A. Monitor results of Stackdriver Trace to determine the required amount of resources.
- B. Deploy the service in one region and use a global load balancer to route traffic to this region.
- C. Use the n1-highcpu-96 machine type in the configuration of the MIG.
- D. Validate that the resource requirements are within the available quota limits of each region.
Answer: D
Explanation:
https://cloud.google.com/compute/quotas#understanding_quotas
https://cloud.google.com/compute/quotas
NEW QUESTION 69
......
How to study the Google Professional Cloud DevOps Engineer Exam
Preparation of certification exams could be covered with two resource types. The first one is the study guides, reference books, and study forums that are elaborated and appropriate for building information from the ground up. Apart from the video tutorials and lectures are a good option to ease the pain of through study and are relatively make the study process more interesting nonetheless these demand time and concentration from the learner. Smart candidates who wish to create a solid foundation altogether examination topics and connected technologies typically mix video lectures with study guides to reap the advantages of each but practice exams or practice exam engines is one important study tool which goes typically unnoted by most candidates.
Professional Cloud DevOps Engineer practice test is designed by our experts to make exam prospects test their knowledge on skills attained in the course, as well as prospects become comfortable and familiar with the real exam environment. Statistics have indicated exam anxiety plays a much bigger role in students' failure in the exam than the fear of the unknown. ActualCollection expert team recommends preparing some notes on these topics along with it don’t forget to practice Professional Cloud DevOps Engineer exam dumps which had been written by our expert team, each of these can assist you loads to clear this exam with excellent marks.
Conclusion
Passing the Google Professional Cloud DevOps Engineer evaluation is not impossible as long as you combine different learning solutions. While the vendor offers different preparation resources for the exam-takers who want to get the passing score without stress, you shouldn’t stop here. You can also go as far as to explore the guides available on Amazon and enhance your skills for becoming a certified Cloud DevOps Engineer.
What is the duration, language, and format of Google Professional Cloud DevOps Engineer Exam
- Language: English
- Passing score: 80%
- Length of Examination: 120 minutes
- Format: Multiple choices, multiple select
- Number of Questions: 50-60
Pass Your Google Exam with Professional-Cloud-DevOps-Engineer Exam Dumps: https://www.actualcollection.com/Professional-Cloud-DevOps-Engineer-exam-questions.html
Professional-Cloud-DevOps-Engineer Exam Dumps PDF Updated Dump from ActualCollection Guaranteed Success: https://drive.google.com/open?id=1ro33XXFKIy87bIVob7G4KtHIFtaWLVQN