Ultimate Guide to the Professional-Cloud-Developer - Latest Oct 03, 2022 Edition Available Now [Q69-Q89]

Ultimate Guide to the Professional-Cloud-Developer - Latest Oct 03, 2022 Edition Available Now

2022 Updated Verified Pass Professional-Cloud-Developer Exam - Real Questions and Answers

Google Professional Cloud Developer Certification Path

The Google Professional Cloud Developer Certification is the highest level of certification mainly focussing to the Google Professional Cloud Developer. There is no prerequisite for this exam but still it would be best to follow some sequence in order to prove immense knowledge as a Google Professional Cloud Developer. You can complete Google Associate Certifications then approach for the professional certification. For more information related to Google cloud certification track Google-certification-path

 

NEW QUESTION 69
Case Study
Company Overview
HipLocal is a community application designed to facilitate communication between people in close proximity. It is used for event planning and organizing sporting events, and for businesses to connect with their local communities. HipLocal launched recently in a few neighborhoods in Dallas and is rapidly growing into a global phenomenon. Its unique style of hyper-local community communication and business outreach is in demand around the world.
Executive Statement
We are the number one local community app; it's time to take our local community services global. Our venture capital investors want to see rapid growth and the same great experience for new local and virtual communities that come online, whether their members are 10 or 10000 miles away from each other.
Solution Concept
HipLocal wants to expand their existing service, with updated functionality, in new regions to better serve their global customers. They want to hire and train a new team to support these regions in their time zones. They will need to ensure that the application scales smoothly and provides clear uptime data.
Existing Technical Environment
HipLocal's environment is a mix of on-premises hardware and infrastructure running in Google Cloud Platform.
The HipLocal team understands their application well, but has limited experience in global scale applications.
Their existing technical environment is as follows:
* Existing APIs run on Compute Engine virtual machine instances hosted in GCP.
* State is stored in a single instance MySQL database in GCP.
* Data is exported to an on-premises Teradata/Vertica data warehouse.
* Data analytics is performed in an on-premises Hadoop environment.
* The application has no logging.
* There are basic indicators of uptime; alerts are frequently fired when the APIs are unresponsive.
Business Requirements
HipLocal's investors want to expand their footprint and support the increase in demand they are seeing. Their requirements are:
* Expand availability of the application to new regions.
* Increase the number of concurrent users that can be supported.
* Ensure a consistent experience for users when they travel to different regions.
* Obtain user activity metrics to better understand how to monetize their product.
* Ensure compliance with regulations in the new regions (for example, GDPR).
* Reduce infrastructure management time and cost.
* Adopt the Google-recommended practices for cloud computing.
Technical Requirements
* The application and backend must provide usage metrics and monitoring.
* APIs require strong authentication and authorization.
* Logging must be increased, and data should be stored in a cloud analytics platform.
* Move to serverless architecture to facilitate elastic scaling.
* Provide authorized access to internal apps in a secure manner.
HipLocal's APIs are showing occasional failures, but they cannot find a pattern. They want to collect some metrics to help them troubleshoot.
What should they do?

• A. Install the Stackdriver Monitoring agent on the VMs.
• B. Take frequent snapshots of all of the VMs.
• C. Use Stackdriver Trace to look for performance bottlenecks.
• D. Install the Stackdriver Logging agent on the VMs.

Answer: A

 

NEW QUESTION 70
Your website is deployed on Compute Engine. Your marketing team wants to test conversion rates between 3 different website designs.
Which approach should you use?

• A. Deploy the website on App Engine as three separate services.
• B. Deploy the website on Cloud Functions and use traffic splitting.
• C. Deploy the website on App Engine and use traffic splitting.
• D. Deploy the website on Cloud Functions as three separate functions.

Answer: C

Explanation:
Explanation/Reference: https://cloud.google.com/appengine/docs/standard/python/splitting-traffic

 

NEW QUESTION 71
You are developing an internal application that will allow employees to organize community events within your company. You deployed your application on a single Compute Engine instance. Your company uses Google Workspace (formerly G Suite), and you need to ensure that the company employees can authenticate to the application from anywhere. What should you do?

• A. Set up a VPN tunnel between your company network and your instance's VPC location on Google Cloud. Configure the required firewall rules and routing information to both the on-premises and Google Cloud networks.
• B. Add a public IP address to your instance, and restrict access to the instance using firewall rules. Allow your company's proxy as the only source IP address.
• C. Add a public IP address to your instance, and allow traffic from the internet. Generate a random hash, and create a subdomain that includes this hash and points to your instance. Distribute this DNS address to your company's employees.
• D. Add an HTTP(S) load balancer in front of the instance, and set up Identity-Aware Proxy (IAP). Configure the IAP settings to allow your company domain to access the website.

Answer: D

Explanation:
https://cloud.google.com/blog/topics/developers-practitioners/control-access-your-web-sites-identity-aware-proxy

 

NEW QUESTION 72
You are creating an App Engine application that writes a file to any user's Google Drive.
How should the application authenticate to the Google Drive API?

• A. With an OAuth Client ID with delegated domain-wide authority.
• B. With the App Engine service account and https://www.googleapis.com/auth/drive.filescope that generates a signed JWT.
• C. With the App Engine service account with delegated domain-wide authority.
• D. With an OAuth Client ID that uses the https://www.googleapis.com/auth/drive.filescope to obtain an access token for each user.

Answer: A

Explanation:
Explanation/Reference: https://developers.google.com/drive/api/v3/about-auth

 

NEW QUESTION 73
Your application performs well when tested locally, but it runs significantly slower when you deploy it to App Engine standard environment. You want to diagnose the problem.
What should you do?

• A. Use Stackdriver Trace to determine which functions within the application have higher latency.
• B. Use Stackdriver Debugger Snapshots to look at a point-in-time execution of the application.
• C. File a ticket with Cloud Support indicating that the application performs faster locally.
• D. Add logging commands to the application and use Stackdriver Logging to check where the latency problem occurs.

Answer: D

Explanation:
Explanation

 

NEW QUESTION 74
Your application is deployed in a Google Kubernetes Engine (GKE) cluster. When a new version of your application is released, your CI/CD tool updates the spec.template.spec.containers[0].image value to reference the Docker image of your new application version. When the Deployment object applies the change, you want to deploy at least 1 replica of the new version and maintain the previous replicas until the new replica is healthy.
Which change should you make to the GKE Deployment object shown below?

• A. Set the Deployment strategy to Recreate with maxSurge set to 0, maxUnavailable set to 1.
• B. Set the Deployment strategy to Recreate with maxSurge set to 1, maxUnavailable set to 0.
• C. Set the Deployment strategy to RollingUpdate with maxSurge set to 1, maxUnavailable set to 0.
• D. Set the Deployment strategy to RollingUpdate with maxSurge set to 0, maxUnavailable set to 1.

Answer: B

 

NEW QUESTION 75
You are planning to deploy your application in a Google Kubernetes Engine (GKE) cluster. The application exposes an HTTP-based health check at /healthz. You want to use this health check endpoint to determine whether traffic should be routed to the pod by the load balancer.
Which code snippet should you include in your Podconfiguration?

• A.
• B.
• C.
• D.

Answer: D

Explanation:
For the GKE ingress controller to use your readinessProbes as health checks, the Pods for an Ingress must exist at the time of Ingress creation. If your replicas are scaled to 0, the default health check will apply.

 

NEW QUESTION 76
You are developing an application that will be launched on Compute Engine instances into multiple distinct projects, each corresponding to the environments in your software development process (development, QA, staging, and production). The instances in each project have the same application code but a different configuration. During deployment, each instance should receive the application's configuration based on the environment it serves. You want to minimize the number of steps to configure this flow.
What should you do?

• A. When creating your instances, configure a startup script using the gcloud command to determine the project name that indicates the correct environment.
• B. Deploy your chosen deployment tool on an instance in each project. Use a deployment job to retrieve the appropriate configuration file from your version control system, and apply the configuration when deploying the application on each instance.
• C. In each project, configure a metadata key "environment" whose value is the environment it serves. Use your deployment tool to query the instance metadata and configure the application based on the "environment" value.
• D. During each instance launch, configure an instance custom-metadata key named "environment" whose value is the environment the instance serves. Use your deployment tool to query the instance metadata, and configure the application based on the "environment" value.

Answer: C

 

NEW QUESTION 77
You want to re-architect a monolithic application so that it follows a microservices model. You want to accomplish this efficiently while minimizing the impact of this change to the business.
Which approach should you take?

• A. Build a new application with the appropriate microservices separate from the monolith and replace it when it is complete.
• B. Deploy the application to Compute Engine and turn on autoscaling.
• C. Refactor the monolithic application with appropriate microservices in a single effort and deploy it.
• D. Replace the application's features with appropriate microservices in phases.

Answer: C

Explanation:
Reference:
https://cloud.google.com/solutions/migrating-a-monolithic-app-to-microservices-gke

 

NEW QUESTION 78
Your company has created an application that uploads a report to a Cloud Storage bucket. When the report is uploaded to the bucket, you want to publish a message to a Cloud Pub/Sub topic. You want to implement a solution that will take a small amount to effort to implement.
What should you do?

• A. Create an App Engine application to receive the file; when it is received, publish a message to the Cloud Pub/Sub topic.
• B. Create a Cloud Function that is triggered by the Cloud Storage bucket. In the Cloud Function, publish a message to the Cloud Pub/Sub topic.
• C. Create an application deployed in a Google Kubernetes Engine cluster to receive the file; when it is received, publish a message to the Cloud Pub/Sub topic.
• D. Configure the Cloud Storage bucket to trigger Cloud Pub/Sub notifications when objects are modified.

Answer: B

Explanation:
Explanation/Reference: https://cloud.google.com/storage/docs/pubsub-notifications

 

NEW QUESTION 79
You are developing a marquee stateless web application that will run on Google Cloud. The rate of the incoming user traffic is expected to be unpredictable, with no traffic on some days and large spikes on other days. You need the application to automatically scale up and down, and you need to minimize the cost associated with running the application. What should you do?

• A. Build the application in Python with Firestore as the database. Deploy the application to Cloud Run.
• B. Build the application in Python with CloudSQL as the database. Deploy the application to App Engine standard environment.
• C. Build the application in C# with Firestore as the database. Deploy the application to App Engine flexible environment.
• D. Build the application in Python with Firestore as the database. Deploy the application to a Compute Engine managed instance group with autoscaling.

Answer: B

 

NEW QUESTION 80
You are using Cloud Build build to promote a Docker image to Development, Test, and Production environments. You need to ensure that the same Docker image is deployed to each of these environments. How should you identify the Docker image in your build?

• A. Use the digest of the Docker image.
• B. Use a semantic version Docker image tag.
• C. Use the latest Docker image tag.
• D. Use a unique Docker image name.

Answer: B

 

NEW QUESTION 81
Your code is running on Cloud Functions in project A.
It is supposed to write an object in a Cloud Storage bucket owned by project B.
However, the write call is failing with the error "403 Forbidden".
What should you do to correct the problem?

• A. Grant your user account the roles/iam.serviceAccountUser role for the service-PROJECTA@gcf-adminrobot.
  iam.gserviceaccount.com service account.
• B. Grant the [email protected] service account the roles/ storage.objectCreator role for the Cloud Storage bucket.
• C. Grant your user account the roles/storage.objectCreator role for the Cloud Storage bucket.
• D. Enable the Cloud Storage API in project B.

Answer: A

 

NEW QUESTION 82
Your web application is deployed to the corporate intranet. You need to migrate the web application to Google Cloud. The web application must be available only to company employees and accessible to employees as they travel. You need to ensure the security and accessibility of the web application while minimizing application changes. What should you do?

• A. Configure a Compute Engine instance that requests users to log in to their corporate account. Change the web application DNS to point to the proxy Compute Engine instance. After authenticating, the Compute Engine instance forwards requests to and from the web application.
• B. Configure a Compute Engine instance that requests users to log in to their corporate account. Change the web application DNS to point to the proxy Compute Engine instance. After authenticating, the Compute Engine issues an HTTP redirect to a public IP address hosting the web application.
• C. Configure Identity-Aware Proxy to allow employees to access the application through its public IP address.
• D. Configure the application to check authentication credentials for each HTTP(S) request to the application.

Answer: C

 

NEW QUESTION 83
You need to migrate an internal file upload API with an enforced 500-MB file size limit to App Engine.
What should you do?

• A. Use FTP to upload files.
• B. Use signed URLs to upload files.
• C. Change the API to be a multipart file upload API.
• D. Use CPanel to upload files.

Answer: B

Explanation:
Explanation/Reference: https://wiki.christophchamp.com/index.php?title=Google_Cloud_Platform

 

NEW QUESTION 84
You are developing a JPEG image-resizing API hosted on Google Kubernetes Engine (GKE). Callers of the service will exist within the same GKE cluster. You want clients to be able to get the IP address of the service.
What should you do?

• A. Define a GKE Service. Clients should use the name of the A record in Cloud DNS to find the service's cluster IP address.
• B. Define a GKE Endpoint. Clients should get the endpoint name from Cloud DNS.
• C. Define a GKE Service. Clients should use the service name in the URL to connect to the service.
• D. Define a GKE Endpoint. Clients should get the endpoint name from the appropriate environment variable in the client container.

Answer: D

 

NEW QUESTION 85
Please refer to the following information to answer the questions on the right.
Debra has brought her iPad Pro to you for troubleshooting. She has been experiencing very slow charging of the battery and says the only way she can get a full charge is to leave the iPad alone for more than 12 hours.
She brought in an Apple Power adapter and Lightning to USB cable. When you examine the power adapter, you notice that it is an iPhone power adapter not an iPad power adapter. You also noticed she was using an iPhone 6s while waiting to see you. Debra thinks her iPad is defective because her iPhone has no issue charging with this power adapter and cable.
Based on the information Debra provided, which of the following resources can you share with her that explains the cause of the issue?

• A. Apple Service Guide
• B. GSX Troubleshooting articles
• C. Apple VMI Guide
• D. Apple Support articles

Answer: A

Explanation:
Explanation/Reference:

 

NEW QUESTION 86
Your code is running on Cloud Functions in projectA . It is supposed to write an object in a Cloud Storage bucket owned by project B.
However, the write call is failing with the error "403 Forbidden".
What should you do to correct the problem?

• A. Grant your user account the roles/iam.serviceAccountUser role for the service-PROJECTA@gcf-adminrobot.
  iam.gserviceaccount.com service account.
• B. Grant the [email protected] service account the roles/ storage.objectCreator role for the Cloud Storage bucket.
• C. Grant your user account the roles/storage.objectCreator role for the Cloud Storage bucket.
• D. Enable the Cloud Storage API in project B.

Answer: A

 

NEW QUESTION 87
You are developing a JPEG image-resizing API hosted on Google Kubernetes Engine (GKE). Callers of the service will exist within the same GKE cluster. You want clients to be able to get the IP address of the service.
What should you do?

• A. Define a GKE Service. Clients should use the name of the A record in Cloud DNS to find the service's cluster IP address.
• B. Define a GKE Endpoint. Clients should get the endpoint name from Cloud DNS.
• C. Define a GKE Service. Clients should use the service name in the URL to connect to the service.
• D. Define a GKE Endpoint. Clients should get the endpoint name from the appropriate environment variable in the client container.

Answer: D

Explanation:
Explanation

 

NEW QUESTION 88
You are developing a corporate tool on Compute Engine for the finance department, which needs to authenticate users and verify that they are in the finance department. All company employees use G Suite.
What should you do?

• A. Configure Cloud Armor Security Policies to restrict access to only corporate IP address ranges. Issue client side certificates to everybody in the finance team and verify the certificates in the application.
• B. Configure Cloud Armor Security Policies to restrict access to only corporate IP address ranges. Verify the provided JSON Web Token within the application.
• C. Enable Cloud Identity-Aware Proxy on the HTTP(s) load balancer and restrict access to a Google Group containing users in the finance department. Issue client-side certificates to everybody in the finance team and verify the certificates in the application.
• D. Enable Cloud Identity-Aware Proxy on the HTTP(s) load balancer and restrict access to a Google Group containing users in the finance department. Verify the provided JSON Web Token within the application.

Answer: D

Explanation:
https://cloud.google.com/iap/docs/signed-headers-howto#securing_iap_headers (https://cloud.google.com/endpoints/docs/openapi/authenticating-users-google-id).
https://cloud.google.com/armor/docs/security-policy-overview#:~:text=Google%20Cloud%20Armor%20security%20policies%20enable%20you%20to%20allow%20or,Private%20Cloud%20(VPC)%20networks
"Google Cloud Armor security policies protect your application by providing Layer 7 filtering and by scrubbing incoming requests for common web attacks or other Layer 7 attributes to potentially block traffic before it reaches your load balanced backend services or backend buckets"

 

NEW QUESTION 89
......

Dumps Moneyack Guarantee - Professional-Cloud-Developer Dumps Approved Dumps: https://actualtests.latestcram.com/Professional-Cloud-Developer-exam-cram-questions.html