Google Professional-Cloud-DevOps-Engineer Exam Questions (Updated 2023) 100% Real Question Answers [Q77-Q97]

Google Professional-Cloud-DevOps-Engineer Exam Questions (Updated 2023) 100% Real Question Answers

Pass Google Professional-Cloud-DevOps-Engineer Exam Quickly With DumpsTests

The Google Cloud Certified - Professional Cloud DevOps Engineer Exam certification is ideal for individuals with a strong background in IT operations, software development, and automation, who are looking to specialize in cloud-based DevOps engineering. Google Cloud Certified - Professional Cloud DevOps Engineer Exam certification exam covers a wide range of topics, including cloud architecture, CI/CD, containerization, security, and monitoring, among others.

 

NEW QUESTION # 77
You support a high-traffic web application and want to ensure that the home page loads in a timely manner. As a first step, you decide to implement a Service Level Indicator (SLI) to represent home page request latency with an acceptable page load time set to 100 ms. What is the Google-recommended way of calculating this SLI?

• A. Buckelize Ihe request latencies into ranges, and then compute the percentile at 100 ms.
• B. Count the number of home page requests that load in under 100 ms, and then divide by the total number of home page requests.
• C. Count the number of home page requests that load in under 100 ms. and then divide by the total number of all web application requests.
• D. Bucketize the request latencies into ranges, and then compute the median and 90th percentiles.

Answer: B

NEW QUESTION # 78
You support a stateless web-based API that is deployed on a single Compute Engine instance in the europe-west2-a zone . The Service Level Indicator (SLI) for service availability is below the specified Service Level Objective (SLO). A postmortem has revealed that requests to the API regularly time out. The time outs are due to the API having a high number of requests and running out memory. You want to improve service availability. What should you do?

• A. Move the service to higher-specification compute instances with more memory.
• B. Set up additional service instances in other zones and use them as a failover in case the primary instance is unavailable.
• C. Change the specified SLO to match the measured SLI.
• D. Set up additional service instances in other zones and load balance the traffic between all instances.

Answer: D

NEW QUESTION # 79
You support an application running on App Engine. The application is used globally and accessed from various device types. You want to know the number of connections. You are using Stackdriver Monitoring for App Engine. What metric should you use?

• A. tcp_ssl_proxy/new_connections
• B. flex/instance/connections/current
• C. tcp_ssl_proxy/open_connections
• D. flex/connections/current

Answer: D

Explanation:
Explanation
https://cloud.google.com/monitoring/api/metrics_gcp#gcp-appengine

NEW QUESTION # 80
You deployed an application into a large Standard Google Kubernetes Engine (GKE) cluster. The application is stateless and multiple pods run at the same time. Your application receives inconsistent traffic. You need to ensure that the user experience remains consistent regardless of changes in traffic. and that the resource usage of the cluster is optimized.
What should you do?

• A. Configure a cron job to scale the deployment on a schedule.
• B. Configure a Vertical Pod Autoscaler.
• C. Configure a Horizontal Pod Autoscaler.
• D. Configure cluster autoscaling on the node pool.

Answer: C

NEW QUESTION # 81
Your team is designing a new application for deployment both inside and outside Google Cloud Platform (GCP). You need to collect detailed metrics such as system resource utilization. You want to use centralized GCP services while minimizing the amount of work required to set up this collection system. What should you do?

• A. Instrument the code using a timing library, and publish the metrics via a health check endpoint that is scraped by Stackdriver.
• B. Install an Application Performance Monitoring (APM) tool in both locations, and configure an export to a central data storage location for analysis.
• C. Import the Stackdriver Debugger package, and configure the application to emit debug messages with timing information.
• D. Import the Stackdriver Profiler package, and configure it to relay function timing data to Stackdriver for further analysis.

Answer: D

Explanation:
Explanation
The easiest way to collect detailed metrics such as system resource utilization is to import the Stackdriver Profiler package, and configure it to relay function timing data to Stackdriver for further analysis. This way, you can use centralized GCP services without modifying your code or setting up additional tools.

NEW QUESTION # 82
Your team deploys applications to three Google Kubernetes Engine (GKE) environments development staging and production You use GitHub reposrtones as your source of truth You need to ensure that the three environments are consistent You want to follow Google-recommended practices to enforce and install network policies and a logging DaemonSet on all the GKE clusters in those environments What should you do?

• A. Use Cloud Build to render and deploy the network policies and the DaemonSet Set up Config Sync to sync the configurations for the three environments
• B. Use Google Cloud Deploy to deploy the DaemonSet and use Policy Controller to configure the network policies Use Cloud Monitoring to detect drifts from the source in the repository and Cloud Functions to correct the drifts
• C. Use Google Cloud Deploy to deploy the network policies and the DaemonSet Use Cloud Monitoring to trigger an alert if the network policies and DaemonSet drift from your source in the repository.
• D. Use Cloud Build to render and deploy the network policies and the DaemonSet Set up a Policy Controller to enforce the configurations for the three environments

Answer: A

Explanation:
Explanation
The best option for ensuring that the three environments are consistent and following Google-recommended practices is to use Cloud Build to render and deploy the network policies and the DaemonSet, and set up Config Sync to sync the configurations for the three environments. Cloud Build is a service that executes your builds on Google Cloud infrastructure. You can use Cloud Build to render and deploy your network policies and DaemonSet as code using tools like Kustomize, Helm, or kpt. Config Sync is a feature that enables you to manage the configurations of your GKE clusters from a single source of truth, such as a Git repository. You can use Config Sync to sync the configurations for your development, staging, and production environments and ensure that they are consistent.

NEW QUESTION # 83
Your development team has created a new version of their service's API. You need to deploy the new versions of the API with the least disruption to third-party developers and end users of third-party installed applications. What should you do?

• A. Announce deprecation of the old version of the API.
  Introduce the new version of the API.
  Contact remaining users on the old API.
  Deprecate the old version of the API.
  Turn down the old version of the API.
  Provide best effort support to users of the old API.
• B. Introduce the new version of the API.
  Announce deprecation of the old version of the API.
  Deprecate the old version of the API.
  Contact remaining users of the old API.
  Provide best effort support to users of the old API.
  Turn down the old version of the API.
• C. Introduce the new version of the API.
  Contact remaining users of the old API.
  Announce deprecation of the old version of the API.
  Deprecate the old version of the API.
  Turn down the old version of the API.
  Provide best effort support to users of the old API.
• D. Announce deprecation of the old version of the API.
  Contact remaining users on the old API.
  Introduce the new version of the API.
  Deprecate the old version of the API.
  Provide best effort support to users of the old API.
  Turn down the old version of the API.

Answer: B

NEW QUESTION # 84
Your organization is starting to containerize with Google Cloud. You need a fully managed storage solution for container images and Helm charts. You need to identify a storage solution that has native integration into existing Google Cloud services, including Google Kubernetes Engine (GKE), Cloud Run, VPC Service Controls, and Identity and Access Management (IAM). What should you do?

• A. Use Docker to configure a Cloud Storage driver pointed at the bucket owned by your organization.
• B. Configure Artifact Registry as an OCI-based container registry for both Helm charts and container images.
• C. Configure Container Registry as an OCI-based container registry for container images.
• D. Configure an open source container registry server to run in GKE with a restrictive role-based access control (RBAC) configuration.

Answer: B

NEW QUESTION # 85
Your organization wants to implement Site Reliability Engineering (SRE) culture and principles. Recently, a service that you support had a limited outage. A manager on another team asks you to provide a formal explanation of what happened so they can action remediations. What should you do?

• A. Develop a postmortem that includes the root causes, resolution, lessons learned, and a prioritized list of action items. Share it on the engineering organization's document portal.
• B. Develop a postmortem that includes the root causes, resolution, lessons learned, and a prioritized list of action items. Share it with the manager only.
• C. Develop a postmortem that includes the root causes, resolution, lessons learned, the list of people responsible, and a list of action items for each person. Share it with the manager only.
• D. Develop a postmortem that includes the root causes, resolution, lessons learned, the list of people responsible, and a list of action items for each person. Share it on the engineering organization's document portal.

Answer: A

NEW QUESTION # 86
You need to run a business-critical workload on a fixed set of Compute Engine instances for several months.
The workload is stable with the exact amount of resources allocated to it. You want to lower the costs for this workload without any performance implications. What should you do?

• A. Convert the instances to preemptible virtual machines.
• B. Migrate the instances to a Managed Instance Group.
• C. Create an Unmanaged Instance Group for the instances used to run the workload.
• D. Purchase Committed Use Discounts.

Answer: D

NEW QUESTION # 87
Your company has a Google Cloud resource hierarchy with folders for production test and development Your cyber security team needs to review your company's Google Cloud security posture to accelerate security issue identification and resolution You need to centralize the logs generated by Google Cloud services from all projects only inside your production folder to allow for alerting and near-real time analysis. What should you do?

• A. Create an aggregated log sink associated with the production folder that uses a Cloud Logging bucket as the destination
• B. Create an aggregated log sink associated with the production folder that uses a Pub Sub topic as the destination
• C. Create a central Cloud Monitoring workspace and attach all related projects
• D. Enable the Workflows API and route all the logs to Cloud Logging

Answer: A

Explanation:
Explanation
The best option for centralizing the logs generated by Google Cloud services from all projects only inside your production folder is to create an aggregated log sink associated with the production folder that uses a Cloud Logging bucket as the destination. An aggregated log sink is a log sink that collects logs from multiple sources, such as projects, folders, or organizations. A Cloud Logging bucket is a storage location for logs that can be used as a destination for log sinks. By creating an aggregated log sink with a Cloud Logging bucket, you can collect and store all the logs from the production folder in one place and allow for alerting and near-real time analysis using Cloud Monitoring and Cloud Operations.

NEW QUESTION # 88
Some of your production services are running in Google Kubernetes Engine (GKE) in the eu-west-1 region. Your build system runs in the us-west-1 region. You want to push the container images from your build system to a scalable registry to maximize the bandwidth for transferring the images to the cluster. What should you do?

• A. Push the images to Google Container Registry (GCR) using the gcr.io hostname.
• B. Push the images to Google Container Registry (GCR) using the us.gcr.io hostname.
• C. Push the images to Google Container Registry (GCR) using the eu.gcr.io hostname.
• D. Push the images to a private image registry running on a Compute Engine instance in the eu-west-1 region.

Answer: C

Explanation:
Hostname Storage location gcr.io Stores images in data centers in the United States asia.gcr.io Stores images in data centers in Asia eu.gcr.io Stores images in data centers within member states of the European Union us.gcr.io Stores images in data centers in the United States

NEW QUESTION # 89
You need to build a CI/CD pipeline for a containerized application in Google Cloud Your development team uses a central Git repository for trunk-based development You want to run all your tests in the pipeline for any new versions of the application to improve the quality What should you do?

• A. 1. Trigger Cloud Build to build the application container and run unit tests with the container
  2. If unit tests are successful, deploy the application container to a testing environment, and run integration tests
  3. If the integration tests are successful the pipeline deploys the application container to the production environment After that, run acceptance tests
• B. 1. Trigger Cloud Build to run unit tests when the code is pushed If all unit tests are successful, build and push the application container to a central registry.
  2. Trigger Cloud Build to deploy the container to a testing environment, and run integration tests and acceptance tests
  3. If all tests are successful the pipeline deploys the application to the production environment and runs smoke tests
• C. 1. Install a Git hook to require developers to run unit tests before pushing the code to a central repository If all tests are successful build a container
  2. Trigger Cloud Build to deploy the application container to a testing environment, and run integration tests and acceptance tests
  3. If all tests are successful tag the code as production ready Trigger Cloud Build to build and deploy the application container to the production environment
• D. 1. Install a Git hook to require developers to run unit tests before pushing the code to a central repository
  2. Trigger Cloud Build to build the application container Deploy the application container to a testing environment, and run integration tests
  3. If the integration tests are successful deploy the application container to your production environment.
  and run acceptance tests

Answer: B

Explanation:
Explanation
The best option for building a CI/CD pipeline for a containerized application in Google Cloud is to trigger Cloud Build to run unit tests when the code is pushed, if all unit tests are successful, build and push the application container to a central registry, trigger Cloud Build to deploy the container to a testing environment, and run integration tests and acceptance tests, and if all tests are successful, the pipeline deploys the application to the production environment and runs smoke tests. This option follows the best practices for CI/CD pipelines, such as running tests at different stages of the pipeline, using a central registry for storing and managing containers, deploying to different environments, and using Cloud Build as a unified tool for building, testing, and deploying.

NEW QUESTION # 90
Your team is designing a new application for deployment both inside and outside Google Cloud Platform (GCP). You need to collect detailed metrics such as system resource utilization. You want to use centralized GCP services while minimizing the amount of work required to set up this collection system. What should you do?

• A. Instrument the code using a timing library, and publish the metrics via a health check endpoint that is scraped by Stackdriver.
• B. Install an Application Performance Monitoring (APM) tool in both locations, and configure an export to a central data storage location for analysis.
• C. Import the Stackdriver Debugger package, and configure the application to emit debug messages with timing information.
• D. Import the Stackdriver Profiler package, and configure it to relay function timing data to Stackdriver for further analysis.

Answer: D

NEW QUESTION # 91
Your team has recently deployed an NGINX-based application into Google Kubernetes Engine (GKE) and has exposed it to the public via an HTTP Google Cloud Load Balancer (GCLB) ingress. You want to scale the deployment of the application's frontend using an appropriate Service Level Indicator (SLI). What should you do?

• A. Expose the NGINX stats endpoint and configure the horizontal pod autoscaler to use the request metrics exposed by the NGINX deployment.
• B. Configure the horizontal pod autoscaler to use the average response time from the Liveness and Readiness probes.
• C. Configure the vertical pod autoscaler in GKE and enable the cluster autoscaler to scale the cluster as pods expand.
• D. Install the Stackdriver custom metrics adapter and configure a horizontal pod autoscaler to use the number of requests provided by the GCLB.

Answer: D

Explanation:
Explanation
https://cloud.google.com/kubernetes-engine/docs/tutorials/autoscaling-metrics The Google Cloud HTTP Load Balancer (GCLB) provides metrics on the number of requests and the response latency for each backend service. These metrics can be used as custom metrics for the horizontal pod autoscaler (HPA) to scale the deployment based on the load. This is the correct solution to use an appropriate SLI for scaling.

NEW QUESTION # 92
You are part of an organization that follows SRE practices and principles. You are taking over the management of a new service from the Development Team, and you conduct a Production Readiness Review (PRR). After the PRR analysis phase, you determine that the service cannot currently meet its Service Level Objectives (SLOs). You want to ensure that the service can meet its SLOs in production. What should you do next?

• A. Identify recommended reliability improvements to the service to be completed before handover.
• B. djust the SLO targets to be achievable by the service so you can bring it into production.
• C. Bring the service into production with no SLOs and build them when you have collected operational data.
• D. Notify the development team that they will have to provide production support for the service.

Answer: A

NEW QUESTION # 93
You support a web application that runs on App Engine and uses CloudSQL and Cloud Storage for data storage. After a short spike in website traffic, you notice a big increase in latency for all user requests, increase in CPU use, and the number of processes running the application. Initial troubleshooting reveals:
After the initial spike in traffic, load levels returned to normal but users still experience high latency.
Requests for content from the CloudSQL database and images from Cloud Storage show the same high latency.
No changes were made to the website around the time the latency increased.
There is no increase in the number of errors to the users.
You expect another spike in website traffic in the coming days and want to make sure users don't experience latency. What should you do?

• A. Modify the App Engine configuration to have additional idle instances.
• B. Move the application from App Engine to Compute Engine.
• C. Enable high availability on the CloudSQL instances.
• D. Upgrade the GCS buckets to Multi-Regional.

Answer: A

Explanation:
Explanation
Scaling App Engine scales the number of instances automatically in response to processing volume. This scaling factors in the automatic_scaling settings that are provided on a per-version basis in the configuration file. A service with basic scaling is configured by setting the maximum number of instances in the max_instances parameter of the basic_scaling setting. The number of live instances scales with the processing volume. You configure the number of instances of each version in that service's configuration file. The number of instances usually corresponds to the size of a dataset being held in memory or the desired throughput for offline work. You can adjust the number of instances of a manually-scaled version very quickly, without stopping instances that are currently running, using the Modules API set_num_instances function.
https://cloud.google.com/appengine/docs/standard/python/how-instances-are-managed
https://cloud.google.com/appengine/docs/standard/python/config/appref
max_idle_instances Optional. The maximum number of idle instances that App Engine should maintain for this version. Specify a value from 1 to 1000. If not specified, the default value is automatic, which means App Engine will manage the number of idle instances. Keep the following in mind: A high maximum reduces the number of idle instances more gradually when load levels return to normal after a spike. This helps your application maintain steady performance through fluctuations in request load, but also raises the number of idle instances (and consequent running costs) during such periods of heavy load.

NEW QUESTION # 94
You are building the Cl/CD pipeline for an application deployed to Google Kubernetes Engine (GKE) The application is deployed by using a Kubernetes Deployment, Service, and Ingress The application team asked you to deploy the application by using the blue'green deployment methodology You need to implement the rollback actions What should you do?

• A. Run the kubectl rollout undo command
• B. Delete the new container image, and delete the running Pods
• C. Scale the new Kubernetes Deployment to zero
• D. Update the Kubernetes Service to point to the previous Kubernetes Deployment

Answer: D

Explanation:
Explanation
The best option for implementing the rollback actions is to update the Kubernetes Service to point to the previous Kubernetes Deployment. A Kubernetes Service is a resource that defines how to access a set of Pods.
A Kubernetes Deployment is a resource that manages the creation and update of Pods. By using the blue/green deployment methodology, you can create two Deployments, one for the current version (blue) and one for the new version (green), and use a Service to switch traffic between them. If you need to rollback, you can update the Service to point to the previous Deployment (blue) and stop sending traffic to the new Deployment (green).

NEW QUESTION # 95
You recently deployed your application in Google Kubernetes Engine (GKE) and now need to release a new version of the application You need the ability to instantly roll back to the previous version of the application in case there are issues with the new version Which deployment model should you use?

• A. Perform a rolling deployment and test your new application after the deployment is complete
• B. Perform a canary deployment, and test your new application periodically after the new version is deployed
• C. Perform A. B testing, and test your application periodically after the deployment is complete
• D. Perform a blue/green deployment and test your new application after the deployment is complete

Answer: D

Explanation:
Explanation
The best deployment model for releasing a new version of your application in GKE with the ability to instantly roll back to the previous version is to perform a blue/green deployment and test your new application after the deployment is complete. A blue/green deployment is a deployment strategy that involves creating two identical environments, one running the current version of the application (blue) and one running the new version of the application (green). The traffic is switched from blue to green after testing the new version, and if any issues are discovered, the traffic can be switched back to blue instantly. This way, you can minimize downtime and risk during deployment.

NEW QUESTION # 96
You are running an application on Compute Engine and collecting logs through Stackdriver. You discover that some personally identifiable information (Pll) is leaking into certain log entry fields. All Pll entries begin with the text userinfo. You want to capture these log entries in a secure location for later review and prevent them from leaking to Stackdriver Logging. What should you do?

• A. Use a Fluentd filter plugin with the Stackdriver Agent to remove log entries containing userinfo, and then copy the entries to a Cloud Storage bucket.
• B. Create a basic log filter matching userinfo, and then configure a log export in the Stackdriver console with Cloud Storage as a sink.
• C. Create an advanced log filter matching userinfo, configure a log export in the Stackdriver console with Cloud Storage as a sink, and then configure a tog exclusion with userinfo as a filter.
• D. Use a Fluentd filter plugin with the Stackdriver Agent to remove log entries containing userinfo, create an advanced log filter matching userinfo, and then configure a log export in the Stackdriver console with Cloud Storage as a sink.

Answer: A

Explanation:
Explanation
https://medium.com/google-cloud/fluentd-filter-plugin-for-google-cloud-data-loss-prevention-api-42bbb1308e76

NEW QUESTION # 97
......

Real Google Professional-Cloud-DevOps-Engineer Exam Questions [Updated 2023]: https://prep4sure.dumpstests.com/Professional-Cloud-DevOps-Engineer-latest-test-dumps.html