Google Associate Cloud Engineer: Implementing Google Kubernetes Engine

 

Question:

By default, all Pods running within the same cluster can communicate freely. However, you can limit connectivity between pods by implementing which of the options below?

• Network policy

Question

:

Which of the options is the recommended way to access Google Cloud resources from within a GKE cluster?

• Workload identity

Question

:

With GKE, you can create a cluster tailored to the availability requirements of your workload and your budget. Which types of clusters are available when users create their GKE deployment?

• Single zone

• Multi-zonal

• Regional

Question

:

Which Kubernetes mode is necessary when the user wants to have more control over the underlying hardware that runs the clusters?

• Standard mode

Question

:

When creating a GKE cluster, you can choose a release version to get automatic GKE upgrades when they become available. If you know what specific version of GKE you need, which option can you choose?

• Static version

Question

:

What are the two types of storage abstractions that Kubernetes uses to provide filesystem and block-based storage to your pods?

• Persistent volumes

• Volumes

Question

:

Which Kubernetes mode provides an optimized cluster with pre-configured workload settings thus offering the user a nodeless experience with GKE?

• Autopilot mode

Question

:

When viewing the GKE cluster workloads in the GKE console, what is the namespace that is used by all system workloads?

• kube-system

Question

:

Which of the options are metrics for GKE containers in the GKE metrics explorer?

• CPU usage

• Disk usage

• Disk capacity

Question

:

Which of the options below determines how each pod should run, which containers should be run within the pods, and which volume the pods should mount?

• Pod template

Question

:

To deploy the official NGINX image, what do you have to specify for the image path?

• nginx:latest

Question

:

What are the two concepts of identity in GKE?

• System accounts

• User accounts

Question

:

If you know the level of stability you need for your specific cluster, you can enroll in a release channel. What are the three channels available when choosing a release channel?

• Rapid

• Stable

• Regular

Read More

Google Associate Cloud Engineer: Managing Google Compute Engine

 

Question:

When creating a VM image, GCP offers three different encryption options. What are they?

• Customer-Managed Encryption Key

• Customer-Supplied Encryption Key

• Google-Managed Encryption Key

Question

:

Which of these statements are true with regards to connecting to your VM instances?

• Linux VMs connect using SSH options

• Windows VMs use the RDP protocol to connect to the instance

Question

:

Which API must be enabled to use VM Manager to manage your operating systems?

• OS Config API

Question

:

When creating an instance group, which two different types must you choose from?

• Managed Groups

• Unmanaged Groups

Question

:

Which statements are true when stopping or suspending a VM?

• Temporary external IPs are released

• No cost associated with stopping or suspending

Question

:

Which machine type families are available for use when deploying a VM with an attached GPU?

• A2

• N1

Question

:

When creating an auto-scaled managed instance group, which compute metric is used by default to set up the auto-scaling policy?

• CPU Utilization

Question

:

When viewing quota metric details, which options are displayed for the user to get a quick look at what is and has been deployed?

• Current Usage

• 7-day peak Usage

Question

:

When exporting a VM configuration using gcloud, which command will export the “mywebapp” VM from the us-central1-a zone and save it to the “appconfig” folder in the user's home folder?

• gcloud compute instances export mywebapp --zone us-central1-a --destination /home/user/appconfig/config

Question

:

GCP offers which option to allow users to automatically and effectively back up their data?

• Snapshot Schedules

Question

:

When retrieving metadata from the metadata server, which statement must be included in the header?

• Metadata-Flavor: Google

Question

:

When running OS inventory commands for the first time, you will be prompted to install an additional command group. Which component is then installed on your machine?

• Alpha

Read More

Google Associate Cloud Engineer: Implementing Google Compute Engine

 

Question:

Which types of Managed Instance Groups (MIG) are available to use in the Google Cloud Platform?

• Unmanaged

• Managed

Question

:

Which statements are true when stopping or suspending a VM?

• No cost associated with stopping or suspending

• Temporary external IPs are released

Question

:

Which of these options are valid use cases for using instance templates?

• Use instance templates any time you wish to create an instance group

• Use instance templates any time you want to quickly create VM instances based off a preexisting configuration

Question

:

Which options are available to you when connecting to a Linux VM via SSH?

• SSH session on a custom port in a new browser window

• Use of gcloud to connect to the instance via Cloud Shell

• SSH session in a new browser window

Question

:

How long will a preemptible instance run in your GCP environment?

• 24 hours or sooner if compute demands increase

Question

:

Which statements are true with regards to deploying your VMs on sole-tenant nodes?

• Sole-tenancy provides dedicated hosting only for the project’s VM and provides added layer of hardware isolation

• Sole-tenant nodes ensure that the VMs do not share host hardware with VMs from other projects

Question

:

One critical part of a managed instance group is to ensure that the application on the instances is running and operating as expected. Which function of managed instance groups are used to perform this task?

• Health Checks

Question

An administrator ran the following command to create an SSH key:

ssh-keygen -t rsa -f ~/.ssh/devteamkey -devuser

What does devteamkey refer to in this scenario?

• It is the name that will be used for the public and private keys

Question:

Which Microsoft Windows offerings are available to deploy in the Google Cloud Platform?

• Windows Server

Question

Which of the options are machine type families in Google Cloud?

• E2
• N2
• N2D

Question

When creating a VM in the GCP console, which configurable setting determines the operating system that you will be deploying to the VM?

• Boot Disk

Question

To create a virtual machine named instance-1 with all the default settings and in the us-central1-c zone, which command is the most appropriate?

• gcloud compute instances create instance-1 --zone us-central1-c

Read More

Google Associate Cloud Engineer: Google Cloud Load Balancing

Question:

You need to choose a load balancer for your configuration. You do not need to offload SSL, use IPv6, or serve global traffic but you must preserve client IPs. Which load balancing option would work for you?

Network TCP/UDP Load Balancing

Question

:

Which represents collections of IP address and port combinations for GCP resources within a single subnet?

Network Endpoint Group

Question

:

When creating a frontend for your external TCP proxy load balancer, which are the two types of external IPs that you can avail of?

Ephemeral IP

Custom Static IP

Question

:

When scaling your services behind an internal IP address, this component must be created to create a collection of virtual machine (VM) instances that you can manage as a single entity?

Instance Groups

Question

:

Which load balancing component contains a set of values, such as the protocol used to connect to backends, various distribution and session settings, health checks, and timeouts?

Back-end services

Question

:

When creating a network load balancer, what can you configure that will allow you to apply firewall rules and routes to a specific instance or set of instances?

Network Tags

Question

:

When creating your load balancer, which option do you need to configure so the load balancer can check the instances to see if they are still healthy and available to receive traffic?

Health Check

Question

:

To enable predicative auto-scaling, how long must your auto-scaling configuration be running?

3 days

Question

:

When creating an SSL load balancer, you can optionally configure which options to easily identify the port you plan to map to an incoming port number?

Port name mapping

Question

:

Which roles are NOT roles that must be assigned to a user so they can administer all load balancing activities?

VPC Admin

Compute NEG Admin

Question

:

Which type of load balancer should be used when serving content to users all over the world?

Global

 

Read More

Google Associate Cloud Engineer: Google Cloud Resource Manager

 

Question:

When viewing folder permissions, which setting can you toggle to view permissions that were assigned from the root folder?

• Show Inherited Permissions

Question

:

When moving a project to another folder within your organization, which of these statements are true?

• The project will be granted new permissions based on the new folder

• The project will inherit permissions from the parent folder

Question

:

When moving projects between organizations it is imperative that the project has no parent organization. How can this be accomplished? 

• Contact Support with a list of projects to be moved and support will move them out of the original organization and into the top level

Question

:

When using multiple organizations, which role should you apply to the user who will be responsible for managing all your organizations in GCP?

• Organizational Administrator

Question

:

Your project wants to run multiple compute instances to act as a frontend web server. Which GCP API must you enable in this project?

• Compute Engine API

Question

:

When creating a project in the Google Cloud Platform, what are the three settings that you must configure to properly set up the project into the organizational hierarchy?

• Project Name

• Location

• Organization

Question

:

Which feature of the Google Cloud Platform is used to hierarchically manage resources by project, folder, and organization?

• Resource Manager

Question

:

When you decide to delete your GCP project, how long does Google retain the project and make it available for restoration?

• 30 Days

Question

:

When adding users via the bulk upload method, which file type must you use?

• .csv

Question

:

A project in GCP consists of which components?

• A set of users

• A set of APIs

• API billing, authentication, and monitoring

Question

:

Which statements are true with regards to labels and tags

• Tags are a way of grouping resources together to have a network policy attached to them

• Labels are a way of group resources together for billing and searching purposes

Question

:

When setting up an organization using Cloud Identity, what must the organizational administrator provide and verify?

• Company domain name

Question

:

When assigning permissions for your various Google Cloud Folders, it is considered best practice to set permissions at which level?

• Group level

Question

:

Which are provided to administrators and teams when using folder resources in Google Cloud Platform?

• Additional grouping mechanism

• Isolation boundaries

Question

:

Which type of audit log is turned on by default and cannot be turned off?

• Admin Write

Read More