Quizlet GCP

Google Cloud Platform Fundamentals: Core Infrastructure
Study online at quizlet.com/_657dh9
1. True or False: Google Cloud Load Balancing allows you to balance HTTP-based traffic across multiple Compute Engine True
regions.
2. Which statement is true about Google VPC networks and subnets? 2
1. Networks and subnets are global

2. Networks are global; subnets are regional
3. Networks are global; subnets are zonal
4. Networks are regional; subnets are zonal
3. An application running in a Compute Engine virtual machine needs high-performance scratch space. Which type of 4
storage meets this need?
1. Local standard
2. Standard persistent
3. SSD persistent
4. Local SSD
4. Choose an application that would be suitable for running in a Preemptible VM. 4
1. A batch job that cannot be checkpointed and restarted

2. An online relational database
3. An interactive website
4. A batch job that can be checkpointed and restarted
5. How do Compute Engine customers choose between big VMs and many VMs? 2
1. Use big VMs for fault tolerance and elasticity; use many VMs for in-memory databases and CPU-intensive analytics
2. Use big VMs for in-memory databases and CPU-intensive analytics; use many VMs for fault tolerance and elasticity
6. How do VPC routers and firewalls work? 2
1. Customers provision virtual machines and run their routers and firewalls in them.
2. They are managed by Google as a built-in feature.
3. They are managed by Google in virtual machines, which customers may never modify.
4. They are managed by Google in virtual machines, which customers may tune or turn off.
7. A GCP customer wants to load-balance traffic among the back-end VMs that form part of a multi-tier application. Which 3
load-balancing option should this customer choose?
1. The regional load balancer

2. The global HTTP(S) load balancer
3. The regional internal load balancer
4. The global TCP proxy
5. The global SSL proxy
8. For which of these interconnect options is a Service Level Agreement available? 1
1. Dedicated Interconnect
2. Direct Peering
3. Carrier Peering
4. VPNs with Cloud Router
9. Choose fundamental characteristics of cloud computing. Mark all that are correct (4 correct responses). 3, 5,
6, 7
1. Customers are required to commit to multi-year contracts
2. Providers always dedicate physical resources to each customer
3. Resources are available from anywhere over the network
4. All resources are open-source-based
5. Computing resources available on-demand and self-service
6. Customers can scale their resource use up and down
7. Customers pay only for what they use or reserve
10. Choose a fundamental characteristic of devices in a virtualized data center. 1
1. They are manageable separately from the underlying hardware.

2. They are more secure.
3. They are available from anywhere on the Internet.
4. They use less resources than devices in a physical data center.
11. What type of cloud computing service lets you bind your application code to libraries that give access to the 1
infrastructure your application needs?
1. Platform as a Service
2. Infrastructure as a Service
3. Software as a Service
4. Hybrid cloud
5. Virtualized data centers
12. What type of cloud computing service provides raw compute, storage, and network, organized in ways that are familiar 4
from physical data centers?
1. Platform as a Service
2. Software as a Service
3. Database as a Service
4. Infrastructure as a Service
13. Which statement is true about the zones within a region? 2
1. The zones within a region are never closer to each other than 160 km.
2. The zones within a region have fast network connectivity among them.
3. Each zone corresponds to a single physical data center.
4. Customers must choose exactly one zone in each region in which to run their resources.
14. What kind of customer benefits most from billing by the second for cloud resources such as virtual machines? 1
1. Customers who create and run many virtual machines

2. Customers who create many virtual machines and leave them running for months
3. Customers who create too few virtual machines to get discounts
4. Customers who create virtual machines running commercially licensed operating systems
15. True or False: In Google Cloud IAM: if a policy applied at the project level gives you Owner permissions, your access to False
an individual resource in that project might be restricted to View permission if someone applies a more restrictive policy
directly to that resource.
16. True or False: All Google Cloud Platform resources are associated with a project. True
17. Service accounts are used to provide which of the following? (Choose all that are correct. Choose 3 responses.) 1, 2,
4
1. A way to restrict the actions a resource (such as a VM) can perform
2. Authentication between Google Cloud Platform services
3. A set of predefined permissions
4. A way to allow users to act with service account permissions
18. How do GCP customers and Google Cloud Platform divide responsibility for security? 2
1. Google takes care of the higher parts of the stack, and customers are responsible for the lower parts.
2. Google takes care of the lower parts of the stack, and customers are responsible for the higher parts.
3. All aspects of security are the customer's responsibility.
4. All aspects of security are Google's responsibility.
19. Which of these values is globally unique, permanent, and unchangeable, but chosen by the customer? 4
1. The project number

2. The project name
3. The project's billing credit-card number
4. The project ID
20. Consider a single hierarchy of GCP resources. Which of these situations is possible? (Choose all that are correct. Choose 2, 3,
3 responses.) 4
1. There are two or more organization nodes

2. There is no organization node, and there are no folders.
3. There is an organization node, and there are no folders.
4. There is an organization node, and there is at least one folder.
5. There is no organization node, but there is at least one folder.
21. What is the difference between IAM primitive roles and IAM predefined roles? 1
1. Primitive roles affect all resources in a GCP project. Predefined roles apply to a particular service in a project.
2. Primitive roles only apply to the owner of the GCP project. Predefined roles can be associated with any user.
3. Primitive roles are changeable once assigned. Predefined roles can never be changed.
4. Primitive roles only allow viewing, creating, and deleting resources. Predefined roles allow any modification.
5. Primitive roles can only be granted to single users. Predefined roles can be associated with a group.
22. Which statement is true about billing for solutions deployed using Cloud Marketplace (formerly known as Cloud 1
Launcher)?
1. You pay only for the underlying GCP resources you use, with the possible addition of extra fees for commercially
licensed software.
2. You pay only for the underlying GCP resources you use; Google pays the license fees for commercially licensed
software.
3. Cloud Marketplace solutions are always free.
4. After a trial period, each Cloud Marketplace solution assesses a fixed recurring monthly fee.
23. You are developing an application that transcodes large video files. Which storage option is the best choice for your 4
application?
1. Cloud Datastore
2. Google Drive
3. Cloud Spanner
4. Cloud Storage
24. You manufacture devices with sensors and need to stream huge amounts of data from these devices to a storage option in 3
the cloud. Which Google Cloud Platform storage option is the best choice for your application?
1. Cloud Datastore
2. BigQuery
3. Cloud Bigtable
4. Cloud Spanner
25. Which statement is true about objects in Cloud Storage? 1
1. They are immutable, and new versions overwrite old unless you turn on versioning.
2. They can be edited in place.
3. They are immutable, and versioned by default.
4. They are immutable unless you turn on versioning.
26. You are building a small application. If possible, you'd like this application's data storage to be at no additional charge. Which 2
service has a free daily quota, separate from any free trials?
1. Cloud Spanner
2. Cloud Datastore
3. Bigtable
4. Cloud SQL
27. How do the Nearline and Coldline storage classes differ from Multi-regional and Regional? Choose all that are correct (2 1,
responses). 3
1. Nearline and Coldline assess additional retrieval fees.

2. Nearline and Coldline use a differently-architected API.
3. Nearline and Coldline assess lower storage fees.
4. Nearline and Coldline have lower durability.
5. Data in Nearline and Coldline is not retrievable immediately.
28. Your application needs a relational database, and it expects to talk to MySQL. Which storage option is the best choice for 1
your application?
1. Cloud SQL
2. Bigtable
3. Cloud Storage
4. Cloud Spanner
29. Your application needs to store data with strong transactional consistency, and you want seamless scaling up. Which 3
storage option is the best choice for your application?
1. Cloud SQL
2. Cloud Storage
3. Cloud Spanner
4. Cloud Datastore
30. Which GCP storage service is often the ingestion point for data being moved into the cloud, and is frequently the long- 4
term storage location for data?
1. Cloud Spanner
2. Cloud Datastore
3. Local SSD
4. Cloud Storage
31. Identify two reasons for deploying applications using containers. (Choose 2 responses.) 2, 4
1. Tight coupling between applications and operating systems

2. Simpler to migrate workloads
3. No need to allocate resources in which to run containers
4. Consistency across development, testing, production environments
32. True or False: Kubernetes allows you to manage container clusters in multiple cloud providers. True
33. True or False: Google Cloud Platform provides a secure, high-speed container image storage service for use with True
Kubernetes Engine.
34. In Kubernetes, what does "pod" refer to? 4
1. A popular management subsystem

2. A popular logging subsystem
3. A group of clusters that work together
4. A group of containers that work together
35. Does Google Cloud Platform offer its own tool for building containers (other than the ordinary docker command)? 3
1. Yes. Kubernetes Engine customers must use the GCP-provided tool.

2. No; all customers use the ordinary docker command.
3. Yes; the GCP-provided tool is an option, but customers may choose not use it.
36. Where do your Kubernetes Engine workloads run? 2
1. In clusters that are built into GCP, not separately manageable

2. In clusters built from Compute Engine virtual machines
3. In clusters implemented using Cloud Functions
4. In clusters implemented using App Engine
37. Which statements are true about App Engine? Choose all that are true (2 correct answers). 4, 5
1. App Engine charges you based on the resources you pre-allocate rather than based on the resources you use.
2. App Engine requires you to supply or code your own application load balancing and logging services.
3. Developers who write for App Engine do not need to code their applications in any particular way to use the service.
4. App Engine manages the hardware and networking infrastructure required to run your code.
5. It is possible for an App Engine application's daily billing to drop to zero.
38. Name 3 advantages of using the App Engine Flexible Environment over App Engine Standard. Choose all that are true (3 1, 2,
correct answers). 5
1. Your application can write to local disk

2. You can install third-party binaries
3. Your application can execute code in background threads
4. Google provides automatic in-place security patches
5. You can SSH in to your application
39. Name 3 advantages of using the App Engine Standard Environment over App Engine Flexible. Choose all that are true (3 1, 4,
correct answers). 5
1. Billing can drop to zero if your application is idle

2. You can install third-party binaries
3. You can choose any programming language
4. Google provides and maintains runtime binaries
5. Scaling is finer-grained
40. You want to do business analytics and billing on a customer-facing API. Which GCP service should you choose? 1
1. Apigee Edge
2. Cloud Endpoints
41. You want to support developers who are building services in GCP through API logging and monitoring. Which GCP service 2
should you choose?
1. Apigee Edge
2. Cloud Endpoints
42. You want to gradually decompose a pre-existing monolithic application, not implemented in GCP, into microservices. Which 1
GCP service should you choose?
1. Apigee Edge
2. Cloud Endpoints
43. Why might a GCP customer choose to use Cloud Source Repositories? 2
1. They don't want to host their own git instance, and they don't want to integrate with IAM permissions.
2. They don't want to host their own git instance, and they want to integrate with IAM permissions.
3. They want to host and manage their own git instance, and they don't want to integrate with IAM permissions.
4. They want to host and manage their own git instance, and they want to integrate with IAM permissions.
44. Why might a GCP customer choose to use Cloud Functions? 3
1. Cloud Functions is a free service for hosting compute operations.

2. Cloud Functions is the primary way to run Node.js applications in GCP.
3. Their application contains event-driven code that they don't want to have to provision compute resources for.
4. Their application has a legacy monolithic structure that they want to break apart into microservices with little developer
effort.
45. Why might a GCP customer choose to use Deployment Manager? 1
1. Deployment Manager is an infrastructure management system for GCP resources.

2. Deployment Manager is an infrastructure management system for Kubernetes pods.
3. Deployment Manager enforces maximum resource utilization and spending limits on your GCP resources.
4. Deployment Manager is a version control system for your GCP infrastructure layout.
46. You want to define alerts on your GCP resources, such as when health checks fail. Which is the best GCP product to use? 4
1. Deployment Manager
2. Stackdriver Trace
3. Stackdriver Debugger
4. Stackdriver Monitoring
5. Cloud Functions
47. Which statements are true about Stackdriver Logging? Choose all that are true (2 statements) 4,
5
1. Stackdriver Logging lets you define uptime checks.
2. Stackdriver Logging requires that you store your logs in BigQuery or Cloud Storage.
3. Stackdriver Logging requires the use of a third-party monitoring agent.
4. Stackdriver Logging lets you define metrics based on your logs.
5. Stackdriver Logging lets you view logs from your applications, and filter and search on them.
48. Name two use cases for Google Cloud Dataproc (Select 2 answers). 1, 2
1. Data mining and analysis in datasets of known size

2. Migrate on-premises Hadoop jobs to the cloud
3. Manage data that arrives in realtime
4. Manage datasets of unpredictable size
49. Name two use cases for Google Cloud Dataflow (Select 2 answers). 2, 4
1. Manual resource management

2. Extract, Transform, and Load (ETL)
3. Reserved compute instances
4. Orchestration
50. Name three use cases for the Google Cloud Machine Learning Platform (Select 3 answers). 1, 3, 4
1. Content personalization
2. Query architecture
3. Sentiment analysis
4. Fraud detection
5. Data preparation
51. Which statements are true about BigQuery? Choose all that are true (2 statements). 2, 5
1. Once in BigQuery, data is not accessible from other GCP services.

2. BigQuery is a good choice for data analytics warehousing.
3. BigQuery is a good choice for online transaction processing.
4. BigQuery requires that you provision database instances ahead of use.
5. BigQuery lets you run fast SQL queries against large databases.
52. Name three use cases for Cloud Pub/Sub (Select 3 answers). 1, 3, 5
1. Analyzing streaming data

2. Executing ad-hoc SQL queries
3. Internet of Things applications
4. Storage of binary web content
5. Decoupling systems
53. What is TensorFlow? 4
1. A managed service for building machine learning models

2. A hardware device designed to accelerate machine learning workloads
3. A managed service for building data pipelines
4. An open-source software library that's useful for building machine learning applications
54. What does the Cloud Natural Language API do? 1
1. It analyzes text to reveal its structure and meaning.

2. It translates arbitrary strings into any supported language.
3. It performs sentiment analysis on audio and video content.
4. It extracts text in various languages from images.
55. Which compute service lets customers run virtual machines that run on Google's infrastructure? 2
1. Cloud Functions
2. Compute Engine
3. Kubernetes Engine
4. App Engine
56. Which compute service lets customers deploy their applications in containers that run in clusters on Google's 3
infrastructure?
1. Cloud Functions
2. Compute Engine
4. App Engine
57. Which compute service lets customers focus on their applications, leaving most infrastructure and provisioning to Google, 4
while still offering various choices of runtime?
1. Cloud Functions
2. Compute Engine
4. App Engine
58. Which compute service lets customers supply chunks of code, which get run on-demand in response to events, on 1
infrastructure wholly managed by Google?
1. Cloud Functions
2. Compute Engine
4. App Engine
59. For what kind of traffic would the regional load balancer be the first choice? Choose all that are correct (2 answers). 2,
3
1. TCP traffic (non-SSL) on popular well-known port numbers
2. TCP traffic on arbitrary port numbers
3. UDP traffic
4. TCP/SSL traffic on popular well-known port numbers
60. Choose a simple way to let a VPN into your Google VPC continue to work in spite of routing changes, 4
1. Direct Peering
2. Dedicated Interconnect
3. Carrier Peering
4. Cloud Router
61. Which of these storage needs is best addressed by Cloud Datastore? 1
1. Structured objects, with transactions and SQL-like queries

2. Structured objects, with lookups based on a single key
3. Immutable binary objects
4. A relational database with SQL queries and horizontal scalability
62. Which of these storage needs is best addressed by Cloud Spanner? 1

63. Which of these storage needs is best addressed by Cloud Bigtable? 4

64. Which of these storage needs is best addressed by Cloud Storage? 3

65. You are a project owner and need your co-worker to deploy a new version of your application to App Engine. You want to C
follow Google's recommended practices. Which IAM roles should you grant your co-worker?
A. Project Editor
B. App Engine Service Admin
C. App Engine Deployer
D. App Engine Code Viewer
66. Your company has reserved a monthly budget for your project. You want to be informed automatically of your project B
spend so that you can take action when you approach the limit. What should you do?
A. Link a credit card with a monthly limit equal to your budget.

B. Create a budget alert for 50%, 90%, and 100% of your total monthly budget.
C. In App Engine Settings, set a daily budget at the rate of 1/30 of your monthly budget.
D. In the GCP Console, configure billing export to BigQuery. Create a saved view that queries your total spend.
67. You have a project using BigQuery. You want to list all BigQuery jobs for that project. You want to set this project as the A
default for the bq command-line tool. What should you do?
A. Use "gcloud config set project" to set the default project.

B. Use "bq config set project" to set the default project.
C. Use "gcloud generate config-url" to generate a URL to the Google Cloud Platform Console to set the default project.
D. Use "bq generate config-url" to generate a URL to the Google Cloud Platform Console to set the default project.
68. Your project has all its Compute Engine resources in the europe-west1 region. You want to set europe-west1 as the default B
region for gcloud commands. What should you do?
A. Use Cloud Shell instead of the command line interface of your device. Launch Cloud Shell after you navigate to a
resource in the europe-west1 region. The europe-west1 region will automatically become the default region.
B. Use "gcloud config set compute/region europe-west1" to set the default region for future gcloud commands.
C. Use "gcloud config set compute/zone europe-west1" to set the default region for future gcloud commands.
D. Create a VPN from on-premises to a subnet in europe-west1, and use that connection when executing gcloud
commands.
69. You developed a new application for App Engine and are ready to deploy it to production. You need to estimate the costs C
of running your application on Google Cloud Platform as accurately as possible. What should you do?
A. Create a YAML file with the expected usage. Pass this file to the "gcloud app estimate" command to get an accurate
estimation.
B. Multiply the costs of your application when it was in development by the number of expected users to get an accurate
estimation.
C. Use the pricing calculator for App Engine to get an accurate estimation of the expected charges.
D. Create a ticket with Google Cloud Billing Support to get an accurate estimation.
70. Your company processes high volumes of IoT data that are time-stamped. The total data volume can be several petabytes. C
The data needs to be written and changed at a high speed. You want to use the most performant storage option for your
data. Which product should you use?
A. Cloud Datastore
B. Cloud Storage
C. Cloud Bigtable
D. BigQuery
71. Your application has a large international audience and runs stateless virtual machines within a managed instance group B
across multiple locations. One feature of the application lets users upload files and share them with other users. Files must
be available for 30 days; after that, they are removed from the system entirely. Which storage solution should you choose?
A. A Cloud Datastore database.

B. A multi-regional Cloud Storage bucket.
C. Persistent SSD on virtual machine instances.
D. A managed instance group of Filestore servers.
72. You have a definition for an instance template that contains a web application. You are asked to deploy the application so C
that it can scale based on the HTTP traffic it receives. What should you do?
A. Create a VM from the instance template. Create a custom image from the VM's disk. Export the image to Cloud Storage.
Create an HTTP load balancer and add the Cloud Storage bucket as its backend service.
B. Create a VM from the instance template. Create an App Engine application in Automatic Scaling mode that forwards all
traffic to the VM.
C. Create a managed instance group based on the instance template. Configure autoscaling based on HTTP traffic and
configure the instance group as the backend service of an HTTP load balancer.
D. Create the necessary amount of instances required for peak user traffic based on the instance template. Create an
unmanaged instance group and add the instances to that instance group. Configure the instance group as the Backend
Service of an HTTP load balancer.
73. You are creating a Kubernetes Engine cluster to deploy multiple pods inside the cluster. All container logs must be stored A,
in BigQuery for later analysis. You want to follow Google-recommended practices. Which two approaches can you take? E
A. Turn on Stackdriver Logging during the Kubernetes Engine cluster creation.

B. Turn on Stackdriver Monitoring during the Kubernetes Engine cluster creation.
C. Develop a custom add-on that uses Cloud Logging API and BigQuery API. Deploy the add-on to your Kubernetes
Engine cluster.
D. Use the Stackdriver Logging export feature to create a sink to Cloud Storage. Create a Cloud Dataflow job that imports
log files from Cloud Storage to BigQuery.
E. Use the Stackdriver Logging export feature to create a sink to BigQuery. Specify a filter expression to export log records
related to your Kubernetes Engine cluster only.
74. You need to create a new Kubernetes Cluster on Google Cloud Platform that can autoscale the number of worker nodes. A
What should you do?
A. Create a cluster on Kubernetes Engine and enable autoscaling on Kubernetes Engine.

B. Create a cluster on Kubernetes Engine and enable autoscaling on the instance group of the cluster.
C. Configure a Compute Engine instance as a worker and add it to an unmanaged instance group. Add a load balancer to
the instance group and rely on the load balancer to create additional Compute Engine instances when needed.
D. Create Compute Engine instances for the workers and the master, and install Kubernetes. Rely on Kubernetes to create
additional Compute Engine instances when needed.
75. You have an application server running on Compute Engine in the europe-west1-d zone. You need to ensure high A
availability and replicate the server to the europe-west2-c zone using the fewest steps possible. What should you do?
A. Create a snapshot from the disk. Create a disk from the snapshot in the europe-west2-c zone. Create a new VM with that
disk.
B. Create a snapshot from the disk. Create a disk from the snapshot in the europe-west1-d zone and then move the disk to
europe-west2-c. Create a new VM with that disk.
C. Use "gcloud" to copy the disk to the europe-west2-c zone. Create a new VM with that disk.
D. Use "gcloud compute instances move" with parameter "--destination-zone europe-west2-c" to move the instance to the
new zone.
76. Your company has a mission-critical application that serves users globally. You need to select a transactional and relational B,
data storage system for this application. Which two products should you choose? C
A. BigQuery
B. Cloud SQL
C. Cloud Spanner
D. Cloud Bigtable
E. Cloud Datastore
77. You have a Kubernetes cluster with 1 node-pool. The cluster receives a lot of traffic and needs to grow. You decide to add a A
node. What should you do?
A. Use "gcloud container clusters resize" with the desired number of nodes.
B. Use "kubectl container clusters resize" with the desired number of nodes.
C. Edit the managed instance group of the cluster and increase the number of VMs by 1.
D. Edit the managed instance group of the cluster and enable autoscaling.
78. You created an update for your application on App Engine. You want to deploy the update without impacting your users. D
You want to be able to roll back as quickly as possible if it fails. What should you do?
A. Delete the current version of your application. Deploy the update using the same version identifier as the deleted
version.
B. Notify your users of an upcoming maintenance window. Deploy the update in that maintenance window.
C. Deploy the update as the same version that is currently running.
D. Deploy the update as a new version. Migrate traffic from the current version to the new version.
79. You have created a Kubernetes deployment, called Deployment-A, with 3 replicas on your cluster. Another deployment, D
called Deployment-B, needs access to Deployment-A. You cannot expose Deployment-A outside of the cluster. What
should you do?
A. Create a Service of type NodePort for Deployment A and an Ingress Resource for that Service. Have Deployment B use
the Ingress IP address.
B. Create a Service of type LoadBalancer for Deployment A. Have Deployment B use the Service IP address.
C. Create a Service of type LoadBalancer for Deployment A and an Ingress Resource for that Service. Have Deployment B
use the Ingress IP address.
D. Create a Service of type ClusterIP for Deployment A. Have Deployment B use the Service IP address.
80. You need to estimate the annual cost of running a Bigquery query that is scheduled to run nightly. What should you do? B
A. Use "gcloud query --dry_run" to determine the number of bytes read by the query. Use this number in the Pricing
Calculator.
B. Use "bq query --dry_run" to determine the number of bytes read by the query. Use this number in the Pricing Calculator.
C. Use "gcloud estimate" to determine the amount billed for a single query. Multiply this amount by 365.
D. Use "bq estimate" to determine the amount billed for a single query. Multiply this amount by 365.
81. You want to find out who in your organization has Owner access to a project called "my-project".What should you do? B
A. In the Google Cloud Platform Console, go to the IAM page for your organization and apply the filter "Role:Owner".
B. In the Google Cloud Platform Console, go to the IAM page for your project and apply the filter "Role:Owner".
C. Use "gcloud iam list-grantable-role --project my-project" from your Terminal.
D. Use "gcloud iam list-grantable-role" from Cloud Shell on the project page.
82. You want to create a new role for your colleagues that will apply to all current and future projects created in your D
organization. The role should have the permissions of the BigQuery Job User and Cloud Bigtable User roles. You want to
follow Google's recommended practices. How should you create the new role?
A. Use "gcloud iam combine-roles --global" to combine the 2 roles into a new custom role.
B. For one of your projects, in the Google Cloud Platform Console under Roles, select both roles and combine them into a
new custom role. Use "gcloud iam promote-role" to promote the role from a project role to an organization role.
C. For all projects, in the Google Cloud Platform Console under Roles, select both roles and combine them into a new
custom role.
D. For your organization, in the Google Cloud Platform Console under Roles, select both roles and combine them into a
new custom role.
83. You work in a small company where everyone should be able to view all resources of a specific project. You want to grant C
them access following Google's recommended practices. What should you do?
A. Create a script that uses "gcloud projects add-iam-policy-binding" for all users' email addresses and the Project Viewer
role.
B. A. Create a script that uses "gcloud iam roles create" for all users' email addresses and the Project Viewer role.
C. Create a new Google Group and add all users to the group. Use "gcloud projects add-iam-policy-binding" with the
Project Viewer role and Group email address.
D. Create a new Google Group and add all members to the group. Use "gcloud iam roles create" with the Project Viewer
role and Group email address.
84. You need to verify the assigned permissions in a custom IAM role. What should you do? A
A. Use the GCP Console, IAM section to view the information.

B. Use the "gcloud init" command to view the information.
C. Use the GCP Console, Security section to view the information.
D. Use the GCP Console, API section to view the information.
85. You are designing the object security structure for sensitive customer information. Which of the following should you be 2
sure to include in your planning?
1. Assign all employees to a single full-access group, to keep security simple.

2. Do not grant any bucket-level permissions, so that new objects are secure by default.
3. Give write access and read access to different people, to ensure separation of duties.
4. None of the other options is appropriate.
5. Put each customer's objects in a separate bucket, to limit attack surface area.
86. You navigate to the Activity Log for a project containing a GKE cluster you created. If you filter the Resource Type to "GCE 3
VM Instance", which of the following will you see?
1. You will see lines of the form "YOUR_EMAIL created GKE_NODE_INSTANCE_NAME"

2. You will not see any lines because the instances are owned by GKE.
3. None of the other options is correct.
4. You will see lines of the form "DEFAULT_GCE_SERVICE_ACCOUNT created GKE_NODE_INSTANCE_NAME"
87. You are working together with a contractor from the Acme company and you need to allow GCE instances running in one 2,
of Acme's GCP projects to write to a Cloud Pub/Sub topic you own. Which of the following pieces of information are 5
enough to let you enable that access? (Select 2 answers)
1. The Acme GCP project's project ID

2. The email address of the Acme project service account
3. The email address of the Acme contractor
4. The Acme GCP project's name
5. The Acme GCP project's project number
88. You are planning out your usage of GCP. Which of the following things do you need to consider about Service Accounts? 2
1. To use service accounts, you must enable the Service Account API.
2. The default service account is restricted in what it can do by the default access scopes.
3. Access scopes are related to service APIs and not service accounts.
4. None of the other statements is true.
5. The default access scopes allow full access to all services.
89. How should you enable a GCE instance in Project A (having project ID `project-a-id`) to read files from a bucket in a 1,
Project B (having project ID `project-b-id`)? (Select 2 answers) 6
1. Do not change the default service account setup and attachment

2. Log into Cloud Shell in Project A and run `gcloud services enable storage.googleapis.com --project-id project-b-id`
3. Log into Cloud Shell in Project B and run `gcloud services enable storage.googleapis.com --project-id project-a-id`
4. When launching the instance, remove the default service account so it falls back to project-level access
5. Log onto the instance and run `gcloud services enable storage.googleapis.com --project-id project-b-id`
6. In Project B, grant bucket read access to Project A's default compute service account.
7. Only one of the other options is correct
90. When should you add new users to your projects? 2
1.At the end of the billing cycle of the linked billing account
2. Whenever the new user should begin having access to the project
3. When the new user is available enter their credentials on your computer
4. On weekdays so that Google Support personnel can respond to your queries
5. On the weekends, to minimize the effects of downtime
91. You need to to read objects from a newly-created GCS bucket. Which of the following would allow you to do this? (Select 2,
2 answers) 5
1. roles/resourcemanager.folderViewer
2. roles/owner
3. roles/compute.storageAdmin
4. roles/iam.roleViewer
5. roles/storage.legacyBucketReader
92. A co-worker tried to access the `myfile` file that you have stored in the `mybucket` GCS bucket, but they were denied 1
access? Which of the following represents the best way to allow them to view it?
1. In Cloud Shell, type `gsutil acl ch -u coworker@email.domain:r gs://mybucket/myfile`SELECTED

2. SSH to a GCE instance and type `gcloud storage allow-access coworker@email.domain gs://mybucket/myfile`
3. In the GCP console, go to the "IAM & Admin" section, switch to the "Roles" tab, and add the co-worker under "Editor".
4. In the GCP console, go to the Activity screen, find the "File Access Denied" line, and press the "Add Exception" button.
93. You need to allow writing objects to a particular GCS bucket. Which of the following would be the best way to grant these 2
permissions?
1. roles/editor
2. roles/storage.legacyBucketWriter
3. roles/storage.objectAdmin
4. roles/source.writer
5. None of the other options will work
94. You are designing the object security structure for sensitive customer information. Which of the following should you be 1
sure to include in your planning?
1. Assign only limited access, to achieve least privilege.

3. Ensure there is a honeypot, to support penetration testing.
4. Use both ACLs and roles, to achieve defense in depth.
5. Randomize object names, to support security through obscurity.
6.Hash and salt all data, to limit the blast radius of any potential breach.
95. You need to view both request and application logs for your Python-based App Engine app. Which of the following options 1
would be best?
1. Use the built-in support to get both request and app logs to Stackdriver.
3. Install the Stackdriver agent to get request logs to Stackdriver; use the Stackdriver Logging API to send app logs
directly to Stackdriver.
4. Use the built-in support to view request logs in the App Engine console and install the Stackdriver agent to get app logs
to Stackdriver.
96. You are designing the logging structure for a non-containerized Java application that will run on GAE. Which of the 6
following options is recommended and will use the least number of steps to enable your developers to later access and
search logs?
1. Have the developers write log lines to stdout and stderr, install and run the Stackdriver agent beside the application
2. Have the developers write log lines to stdout and stderr
3. Have the developers write log lines to a file named stackdriver.log
4. Have the developers write log lines to a file named stackdriver.log, install and run the Stackdriver agent beside the
applicationSELECTED
5. Have the developers write log lines to a file named application.log, install the Stackdriver agent on the VMs, configure
the Stackdriver agent to monitor and push application.log
6. Have the developers write logs using the App Engine Java SDK
97. You are designing the logging structure for a containerized Java application that will run on GAE Flex. Which of the 1
search logs?

application
98. You have a GKE cluster that currently has six nodes but has lots of idle capacity. What should you do? 5
1. In the GCE console, terminate one of the nodes.

2. Nothing. GKE is always fully managed and will scale down by default.
3. In the GCE console, delete one of the nodes.
4. Clusters are immutable so simply create a new cluster for the smaller workload.
5. Run `gcloud container clusters resize mycluster --size=5` .
99. You have a GKE cluster that currently has six nodes but will soon run out of capacity. What should you do? 4
1. Run `gcloud compute instances create gke-7`

2. Clusters are immutable so simply create a new cluster for the larger workload.
3. Run `gcloud compute instances create anyname --gke`
4. In the GKE console, edit the cluster and specify the new desired size.
5. Nothing. GKE is always fully managed and will scale up by default.
100. You are designing the logging structure for a containerized Java application that will run on GKE. Which of the following 4
options is recommended and will use the least number of steps to enable your developers to later access and search logs?
application
101. You have a StatefulSet and a DaemonSet deployed in your GKE cluster which currently has seven nodes. What will happen 3
if you scale the cluster down to six nodes?
1. You will be unable to access the data from one StatefulSet pod.
2. The size of any deployments will be decreased by one.SELECTED
3. The number of pods for the DaemonSet will shrink.
4. Clients connecting to any Services will experience a momentary service interruption.
5. All pods that were running on the terminated node will be restarted on other nodes.
102. You are designing the logging structure for a non-containerized Java application that will run on GCE. Which of the 6
search logs?

application
103. You run the command `kubectl describe pod mypodname` in Cloud Shell. What should you expect to see? 2
1. An "unknown command" error

2. Information about the named pod
3. An authorization failure
4. An authentication failure
5. A configuration error
104. You have a GKE cluster that has fluctuating load over the course of each day and you would like to reduce costs. What 5
should you do?
1. In the GCE console, add the nodes to an unmanaged instance group.

2. In the GCE console, add the nodes to a managed instance group.
3. Run `gcloud container clusters resize mycluster --size=auto` .
4. Write a script to recreate the cluster as demand changes.
5. In the GKE console, edit the cluster and enable cluster autoscaling.
105. You are thinking through all the things that happen when a Compute Engine instance starts up with a startup script that 2
installs the Stackdriver agent and runs gsutil to retrieve a large amount of data from Cloud Storage. Of the following steps,
which is the first one to happen?
1. Data retrieval from GCS completes

2.The metadata service returns information about this instance to the first requestor
3. The instance startup script begins
4. Stackdriver Logging shows the first log lines from the startup script
installs the Stackdriver agent and runs gsutil to retrieve a large amount of data from Cloud Storage. Of the following
steps, which is the first one to happen?
1. The instance startup script completes

2. The gcloud command to start the instance completes
3. The instance goes into the Running state
4. Space is reserved on a host machine
steps, which is the last one to happen?

2. The metadata service returns information about this instance to the first requestor
108. You need to very quickly set up Nginx Plus on GCP. Which of the following is the fastest option to get up and running? 2
1. Cloud Functions
2. Cloud Launcher
4.App Engine Standard
109. You need to very quickly set up Wordpress on GCP. Which of the following are the fastest options to get up and running? 3,
(Select 2 answers) 6
1. Cloud Press
2. Cloud Functions
3. GCP Marketplace
4. Only one of the other options would work
5. Compute Engine
6. Cloud Launcher
110. You are planning to run a single-node database on GKE. Which of the following things do you need to consider? 5
1. The data will likely be corrupted when a deployment changes or a pod fails
2. GKE handles disk replication across pods
3. You should use DataSet and DataSetReplication objects
4. You should use a DaemonSet object
5. You should use PersistentVolume and PersistentVolumeClaim objects
111. Which of the following is NOT a part of having a Java program running on a GCE instance access the Cloud Tasks API in a 2
Google-recommended way?
1. The Cloud Tasks API should be enabled

2. The program should pass "Metadata-Flavor: Google" to the SDK
3. The program should use the Google SDK
4. The GCE instance should be using a service account
5. The access scopes should include access to the Cloud Tasks API
6. The service account should have access to the Cloud Tasks APIS
112. What will happen if a running GKE pod encounters a fatal error? 2
1. You can tell GKE to restart the pod in an available deployment.

2. If it is a part of a deployment, GKE will automatically restart that pod on an available node.
3. If it is a part of a host, GKE will automatically restart the pod in an available deployment.
4. If it is a part of a node, GKE will automatically restart that pod on an available GCE host.
5. GKE pods are tiered and cannot encounter fatal errors.
113. You need to very quickly set up Nginx on GCP. Which of the following is the fastest option to get up and running? 1
1. GCP MarketplaceSELECTED
2. None of the other options would work
3. Cloud Dataprep
4. Compute Engine
5. Cloud Dataflow
114. You are monitoring a GKE cluster and see that a pod is being terminated. What will happen? 1
1. The memory used by the containers will be freed.

2. The processes used in the PersistentSet will remain locked.
3. The domains used in the deployment will be reduced.
4. The ports used in the StatefulSet will be opened.
115. You already installed and configured `gcloud` for use on your work computer (not Cloud Shell). What do you need to so 3
you can also use `gsutil` and `bq`?
1. Configure those tools independently.

2. Run `gsutil config import gcloud` and `bq config import gcloud`.
3. Nothing
4. Run `gcloud config export gsutil` and `gcloud config export bq`.
5. Run `gcloud config export storage` and `gcloud config export query`.
116. Which of the following are true about a newly-created project? 5
1. The free tier lasts one year

2. Since BigQuery is enabled by default, charges will immediately accrue until you shut it off
3. It cannot be used until the organization owner has completed the approval form
4. The free tier lasts 30 days
5. None of the other statements is true
117. You have previously installed the Google Cloud SDK on your work laptop and configured it. You now run the command 5
`gcloud compute instances create newvm` but it does not prompt you to specify a zone. Which of the following could
explain this?
1. The project configured for gcloud is located in a particular zone.

2. In Cloud Shell, you previously set a zone as the default one GCE should use.
3. Your gcloud configuration includes a value for compute/zone
4. Your gcloud configuration includes a value for compute/region
5. Only one of the other options is correct.
118. How can you link a new project with your billing account? (Select 2 answers) 1, 4
1. If you created the project in the console, do nothing.

2. If you created the project in Cloud Shell, do nothing.
3. If you created the project via gsutil, do nothing.
4. If you created the project via gcloud, link it with a command under `gcloud beta billing`.
5. Whenever a project is created, it is always linked with the billing account of whoever created it.
6. If Google Titanium support created the project, do nothing.
119. Google has just released a new XYZ service and you would like to try it out in your pre-existing skunkworks project. How 4
can you enable the XYZ API in the fewest number of steps?
1. Since you have Silver-level support on your linked billing account, email support to enable XYZ
2. Open Cloud Shell, configure authentication, select the "defaults" project, run `gcloud enable xyz service`
3. Do nothing. It is enabled by default.
4. Open Cloud Shell, run `gcloud services enable xyz.googleapis.com`
5. Open Cloud Shell, configure authentication, run `gcloud services enable xyz.googleapis.com`
6. Open Cloud Shell, run `gcloud services enable xyz`
7. Since you have Gold-level support on this project, phone support to enable XYZ
120. Who can change the billing account linked to a project? (Select 2 answers) 2,
6
1. Only Google Support
2. The project owner
3. Any user of the project
4. Any project editor
5. Any project auditor
6.Any project billing administrator
121. When will a newly-created project become available? 6
1. At the end of the billing cycle of the linked billing account

2. None of the other options is correct
3. On the first day of the month
4. Once the project owner has logged out and back in again
5. At midnight
6. After a few minutes of initialization
122. Which of the following are Google-recommended practices for creating new projects? (Select 3 answers) 3,
4,
1. Create a project for each user of your system. 8
2. New projects should only be created when your organization can handle at least one hour of downtime.
3. Create a project for each environment for your system--such as Dev, QA, and Prod.SELECTED
4. Create separate projects for systems owned by different departments in your organization.SELECTED
5. Create a new project each time you deploy your system.
6. Because quotas are shared across all projects, it doesn't matter how many you make.
7. Add more systems into a project until you hit a quota limit, then make a new one.
8. Use projects to limit blast radius.
123. You already have a GCP project but want another one for a new developer who has started working for your company. 3
How can you create a new project?
1. You cannot create a new project.

2. In the GCP mobile app, navigate to the support section and press "Create new project".
3. In the console, press on the current project name, then press on "Create New".
4. Turn on Gold level support on an existing project, phone support to create a new project.
5. Configure GCS for your local machine using QUIK bindings and press its "New Project" button.
6. Enable Silver support on your billing account, email support to create a new project.
124. You have just installed the Google Cloud SDK. Which of the following are the best way to initialize the command line tools? 5,
6
1. `gcloud auth login`
2. `gcloud config set account`
3. `gcloud config configurations create default`
4. `gcloud config set project`
5. Only one of the other options is required.SELECTED
6. `gcloud init`SELECTED
7. `gcloud config export gsutil bq`
125. You currently have 850TB of Closed-Circuit Television (CCTV) capture data and are adding new data at a rate of 4
80TB/month. The rate of data captured and needing to be stored is expected to grow to 200TB/month within one year
because new locations are being added, each with 4-10 cameras. Archival data must be stored indefinitely, and as
inexpensively as possible. The users of your system currently need to access 60GB of current-month footage and 50GB of
archival footage, and access rates are expected to grow linearly with data volume. Which of the following storage options
best suits this purpose?
1. Store new data as Multi-Regional and then use Lifecycle Management to transition it to Nearline after 30 days.
2. Store new data as Multi-Regional and then use Lifecycle Management to transition it to Regional after 30 days.
3. Store new data as Regional and then use Lifecycle Management to transition it to Coldline after 30 days.
4. Immediately store all data as Coldline, because the access volume is low.
5. Always keep all data stored as Multi-Regional, because access volume is high.
126. You are estimating the cost of hosting a system on GKE and exposing two Services, externally. Which of the following 2
things will you do?
1. Put your estimated number and size of SSDs needed on the Cloud Storage tab.
3. Put your estimated number of instances needed to host the system in the GCE tab.
4. Put your estimated network traffic into the Cloud Load Balancer in the Networking tab.
127. When comparing `n1-standard-8`, `n1-highcpu-8`, and `n1-highmem-16`, which of the following statements are true? 1,
3
1. The `n1-highcpu-8` is the least expensive
2. The `n1-highmem-16` has twice as much RAM as the `n1-highcpu-8`
3. The `n1-highmem-16` has twice as many CPUs as the `n1-highcpu-8`SELECTED
4. The `n1-standard-8` is the least expensive
5. They all cost the same amount
128. You need to store thousands of 2TB objects for one week and it is very unlikely that you will need to retrieve any of them. 3
Which of the following options would be the most cost-effective?
1. Nearline Cloud Storage bucket

2. Multi-Regional Cloud Storage bucket
3. Regional Cloud Storage bucket
4. Bigtable
5. Coldline Cloud Storage bucket
129. You are planning to use GPUs for your system on GCP. Which of the following statements is true about using the pricing 4
calculator for this situation?
1. GPUs can be entered on any of the GCE, GKE, and GAE tabs.
2. GPUs are always entered on the GCE tab.
4. GPUs can be entered on both the GCE and GKE tabs.
5. GPUs are always entered on the GPU tab.
130. You have two web applications that you want to deploy in GCP--one written in Ruby and the other written in Rust. Which of 1,
the following GCP services would be capable of handling these apps? 3
1. Compute Engine
2. Web Engine
4. Cloud Functions
5. Stackdriver
6. Cloud Dataproc
131. You need to process batch data in GCP and reuse your existing Hadoop-based processing code. Which of the following is a 5
managed service that would best handle this situation?
1. Cloud Storage Processing

2. Cloud Dataflow
4. Compute Engine
5. Cloud Dataproc
132. You need to store thousands of 2TB objects for one year and it is very unlikely that you will need to retrieve any of them. 3

5. Bigtable
133. You are planning to use BigTable for your system on GCP. Which of the following statements is true about using the pricing 3
calculator for this situation?
1. You need to estimate how much GCS data will be backing the BigTable.
2. You need to estimate query volume for the BigTable autoscaling estimation.
3. You need to enter the number of BigTable nodes you'll provision.
134. You are planning to host your system in Google App Engine. Which of the following statements is NOT true about using 1
the pricing calculator?
1. You select your required operating system on the App Engine tab.
2. None of the other options is untrue.
3. You enter the number of instances on the App Engine tab.
4. You enter the amount of Cloud Storage you'll use on the App Engine tab.
5. You enter the amount of Outgoing Network Traffic on the App Engine tab.
135. Is there usually more than one solution for a task or application in Google Cloud Platform? 1
1. Yes
2. No
136. Which of the following tools allow you to interact with Google Cloud Platform (select 2)? 1,
4
1. Cloud Console which is a web-based, graphical user interface that you access through console.cloud.google.com.
2. Google Cloud Operator which is a phone service that uses speech recognition to transmit your commands.
3. Google Cloud Wi-Fi hotspot which is available in some cities.
4. Google Cloud SDK which is a command-line interface that can be installed locally or accessed through Cloud Shell.
137. What is the difference between Cloud Console and Cloud Shell? 2
1. Cloud Console is a command-line tool, while Cloud Shell is a graphical user interface
2. Cloud Shell is a command-line tool, while Cloud Console is a graphical user interface
3. Cloud Shell is a locally installed tool, while Cloud Console is a temporary virtual machine.
4. There is no difference as these tools are 100% identical.
138. What is a key distinguishing feature of networking in the Google Cloud Platform? 3
1. Unlike other cloud networks, access lists and firewall rules are available.
2. Network topology is not dependent on address layout.
3. Data can be tagged for "late delivery" and it will be delivered on the time and day you set.
4. Supports IPv4 addresses that conform to RFC 1918.
139. What are the three types of networks offered in the Google Cloud Platform? 3
1. Zonal, regional, and global

2. Gigabit network, 10 gigabit network, and 100 gigabit network
3. Default network, auto network, and custom network.
4. IPv4 unicast network, IPv4 multicast network, IPv6 network
140. What is one benefit of applying firewall rules by tag rather than by address? 4
1. Tags help organizations track firewall billing.

2. Tags in network traffic help with network sniffing.
3. Tags on firewall rules control which ephemeral IP addresses VMs will receive.
4. When a VM is created with a matching tag, the firewall rules apply irrespective of the IP address it is assigned.
141. Which statement is true of Virtual Machine Instances in Google Compute Engine? 3
1. A VM in Compute Engine always maps to a single hardware computer in a rack.

2. Compute Engine uses VMware to create Virtual Machine Instances.
3. In Compute Engine, a VM is a networked service that simulates the features of a computer.
4. All Compute Engine VMs are single tenancy and do not share CPU hardware.
142. What is inferred instance discounting? 4
1. Usage of VMs for a partial month is extrapolated out to the entire month to give the best discount.
2. Usage of VMs of the same machine types across all zones in a region are combined as if they were one machine to give
the best discount.
3. Usage of VMs of similar machine types the same zone are combined as if they were one machine to give the best
discount.
4. Usage of VMs of the same machine type in the same zone are combined as if they were one machine to give the best
discount.
143. Which statement is true of persistent disks? 1
1. Persistent disks are encrypted by default.

2. Persistent disks are physical hardware devices connected directly to VMs.
3. Persistent disks are always HDDs (magnetic spinning disks).
4. Once created, a persistent disk cannot be resized.
144. No resources in GCP can be used without being associated with... 4
1. A user.
2. A virtual machine.
3. A bucket.
4. A project.
145. A budget is set at $500 and an alert is set at 100%. What happens when the full amount is used? 2
1. Everything in the associated project will suspend because there is not more budget to spend.
2. A notification email is sent to the Billing Administrator.
3. You have a 4-hour courtesy period before Google shuts down all resources.
4. Nothing. There is no point to sending a notification when there is no budget remaining.
146. How do quotas protect GCP customers? 4
1. By preventing resource use in too many zones in a region.

2. By preventing resource use by unknown users.
3. By preventing resource use of too many different GCP services.
4. By preventing uncontrolled consumption of resources.
147. What is the foundational process at the base of Google's Site Reliability Engineering (SRE) ? 3
1. Capacity planning.
2. Testing and release procedures.
3. Monitoring.
4. Root cause analysis.
148. What is the purpose of the Stackdriver Trace service? 1
1. Reporting on latency as part of managing performance.

2. Reporting on GCP system errors.
3. Reporting on application errors.
4. Reporting on GCP resource consumption as part of managing performance.
149. Stackdriver integrates several technologies, including monitoring, logging, error reporting, and debugging that are 1
commonly implemented in other environments as separate solutions using separate products. What are key benefits of
integration of these services?
1. Reduces overhead, reduces noise, streamlines use, and fixes problems faster
2. Ability to replace one tool with another from a different vendor
3. Detailed control over the connections between the technologies
4. Better for GCP only so long as you don't need to monitor other applications or clouds
150. What data storage service might you select if you just needed to migrate a standard relational database running on a 1
single machine in a datacenter to the cloud?
1. Cloud SQL
2. BigQuery
3. Persistent Disk
4. Cloud Storage
151. Which GCP data storage service offers ACID transactions and can scale globally? 3
1. Cloud Storage
2. Cloud CDN
3. Cloud Spanner
4. Cloud SQL
152. Which data storage service provides data warehouse services for storing data but also offers an interactive SQL interface 1
for querying the data?
1. BigQuery
2. Cloud Dataproc
3. Cloud Datalab
4. Cloud SQL
153. What is the purpose of Virtual Private Networking (VPN)? 3
1. It is a method to detect intruders at the edge of a network boundary.

2. VPNs are also called access control lists, or ACLs, and they limit network access.
3. To enable a secure communication method (a tunnel) to connect two trusted environments through an untrusted
environment, such as the Internet.
4. The main purpose is to encrypt data so that it can be stored in an encrypted format.
154. Why might you use Cloud Interconnect or Direct Peering instead of VPN? 4
1. Cloud Interconnect and Direct Peering are cheaper because you can turn them on and off easily when not in use.
2. Google only offers SLAs for Cloud Interconnect and Direct Peering.
3. VPN does not offer control over IP address assignment and CIDR subnets, while Cloud Interconnect and Direct Peering
do.
4. Cloud Interconnect and Direct Peering can provide higher availability, lower latency, and lower cost for data-intensive
applications.
155. What is the purpose of a Cloud Router and why does that matter? 2
1. It connects VPN on one side to Direct Peering on the other, which is faster than VPN alone.
2. It implements dynamic VPN that allows topology to be discovered and shared automatically, which reduces manual static
route maintenance.
3. It is a hardware router, provided by Google but hosted in GCP.
4. A Cloud Router enables you to perform round-robin switching over multiple VPNs so that you can combine the
bandwidth and get better throughput than is actually offered by the Internet.
156. What are the three categories of GCP load balancing as described in the course materials? 4
1. Local Area load balancing, HTTP(S) load balancing, and auto scaling load balancing
2. Network load balancing, local area load balancing, and unmanaged load balancing
3. HTTP(S) load balancing, SSL proxy load balancing, and and HAProxy load balancing
4. Global external load balancing, regional external load balancing, and regional internal load balancing
157. Which form of load balancing distributes traffic among a pool of instances within a region? 3
1. SSL Proxy Load Balancing

2. HTTP(S) Load Balancing
3. Network Load Balancing
4. TCP Proxy Load Balancing
158. Which form of Load Balancing uses path rules to send traffic to backend services based on type? 3
1. Any Load Balancer that uses a Managed Instance Group

2. UDP Network Load Balancer
3. Content-based Load Balancing
4. SSL Proxy
159. How does the autoscaler resolve conflicts between multiple scaling policies? 2
1. First come, first served.

2. It selects the one that recommends the most VMs, to ensure the application is supported.
3. It selects the one with the fewest VMs to provide the lowest cost.
4. It is based on priority, a value set in each policy that determines the precedence.
160. The following command enables autoscaling for a managed instance group using CPU Utilization: 2
gcloud compute instance-groups managed set-autoscaling example-managed-instance-group --max-num-replicas 20 --

target-cpu-utilization 0.75 --cool-down-period 90
Which of the following statements correctly explains what the command is creating?
1. The command creates an autoscaler that has a target CPU utilization of 75% with a maximum of 20 VMs that will shut down
a VM 90 seconds after the request.
2. The command creates an autoscaler that has a target CPU utilization of 75% with a maximum of 20 VMs that will start
collecting information about a VM 90 seconds after it is created.
3. The command creates an autoscaler that has a target CPU utilization of 75% with a maximum of 60 VMs that will shut down
90 seconds after the request.
4. All options are correct.
161. Which statement is true of autoscaling custom metrics. 3
1. Autoscaling does not support custom metrics.

2. Custom metrics are much slower than native autoscaling metrics, so avoid using them.
3. Stackdriver metrics can be used as custom metrics for autoscaling policies.
4. Every custom metric includes a multiplier variable that you can use to adjust the input value range.
162. What is a fundamental difference between a snapshot of a boot persistent disk and a custom image? 2
1. A snapshot is only for backing up data and cannot be used to create a VM.
2. A snapshot is locked within a project, but a custom image can be shared between projects.
3. A custom image can only be used in disaster recovery.
4. There is no difference, they are different names for the same thing.
163. What happens when a custom images is marked "Obsolete" ? 1
1. No new projects can use the custom image, but those already with the image can continue to use it.
2. All VMs based on the custom image immediately terminate.
3. VMs that are based on the custom image continue to run, but cannot be re-launched.
4. A warning is displayed to new users that the image is no longer supported and will not be maintained or fixed.
164. From where can you import boot disk images for Compute Engine (select 3)? 2, 3, 4
1. Your physical datacenter

2. Virtual machines that run on another cloud platform
3. Virtual machines on your local workstation
4. Google Flash, an online boot disk image storage
165. What kinds of files form the Deployment Manager templates? 2
1. Templates are composed of *.yaml, java, and Node.js files.

2. Templates are composed of *.yaml, python, and jinja2 files.
3. Templates are composed of Powershell, python, and text files.
4. Templates are composed of bash, *.yaml, and Angular.js files.
166. What service does Cloud Launcher provide? 1
1. Provides pre-packaged 3rd party solutions using Deployment Manager templates.

2. It is an Android app that sends notifications when new Zones are launched.
3. Provides 3rd party solutions using the Google Cloud API and bash scripts.
4. Provides an open source standard alternative to Deployment Manager.
167. Which of the following is true of Deployment Manager Templates? 4
1. They cannot be nested, can use environment variables, but do not have their own properties.
2. They can be nested, but cannot share data except as passed in an external file.
3. There can be multiple templates, but they cannot be nested and don't share properties or variables.
4. They can be nested, have properties, and can use environment variables.
168. Which of the following are data processing Managed Services? 3
1. Dataproc, Datastudio, and Google Cloud Storage.

2. Google Compute Engine, Cloud IAM, and Hadoop.
3. Dataproc, Dataflow, and BigQuery.
4. Google Hadoop Manager, DataQuery, BigProc
169. How are Managed Services useful? 2
1. Managed Services are more customizable than infrastructure solutions.

2. Managed Services may be an alternative to creating and managing infrastructure solutions.
3. If you have an existing infrastructure service, Google will manage it for you if you purchase a Managed Services contract.
4. Managed Services are pay services offered by 3rd party vendors.
170. Which of the following is a feature of Dataproc? 1
1. It typically takes less than 90 seconds to start a cluster.

2. Dataproc allows full control over HDFS advanced settings.
3. Dataproc billing occurs in 10-hour intervals.
4. It doesn't integrate with Stackdriver, but it has its own monitoring system.
171. What is Cloud Pub/Sub? 3
1. A feature of Google Maps that identifies bars and sandwich restaurants.

2. A feature of Google console that allows you to subscribe to Cloud news feeds.
3. A fully-managed distributed real-time messaging services for applications.
4. A mutex-based metadata sharing system that serializes access to shared data.
172. What is the purpose of Cloud Endpoints and APIgee API Management? 2
1. Provides a method to publish APIs into Google's Cloud API marketplace.

2. Provides a point of redirection where policy, licensing, authorization, and security can be implemented around a shared
API.
3. Changes API calling semantics constantly as a security measure.
4. It is an internal call-back mechanism used with Cloud Pub/Sub for internal applications.
173. What is a Cloud Source Repository? 4
1. It is how Google shares Open Source software with the world.

2. A memory cache system similar to MemcacheD.
3. Another term used for Google Cloud Storage.
4. A private Git remote repository on GCP.
174. Where can docker containers be run in GCP? 1
1. Both on Kubernetes Engine and in App Engine Flexible Environment

2. Only on Kubernetes Engine
3. Only on App Engine Standard Environment
4. Kubernetes Engine and either App Engine Standard or Flexible Environments
175. Which platform enables customization including choice of the operating system? 3
2. App Engine
3. Compute Engine
4. Cloud Functions
176. When starting a Kubernetes cluster in Kubernetes Engine do you need to create a Master? 2
1. Yes, just as in any other Kubernetes cluster.

2. No, the Master is created by Kubernetes Engine as part of the interface that controls the cluster.
3. Yes, but you have to install special software on the Master to make it work with Compute Engine.
4. No. Unlike Kubernetes, Kubernetes Engine doesn't use a Master.
177. Does Kubernetes Engine support multi-zone container clusters? 1
1. Yes. It improves availability because if one zone fails, the others can pick up the work.
2. No. It supports multi-region container clusters, not multi-zone.
3. No. That wouldn't make sense because clusters are already multi-zone.
4. Yes. But it significantly reduces performance so it has limited uses.
178. Which platform would be best for running containers both in the datacenter and in the cloud? 3
1. Compute Engine
2. App Engine Standard Environment
4. App Engine Flexible Environment
179. What will happen if a running GKE Deployment encounters a fatal error? 6

2. You can tell GKE to restart the deployment in an available pod.
3. GKE will automatically restart that deployment on an available GCE host.
4. GKE will automatically restart that deployment on an available node.
5. GKE will automatically restart the deployment in an available pod.
6. GKE Deployments are configuration information and do not directly encounter fatal errors.
1. The gcloud command to start the instance completesSELECTED

3. The service account is created
181. How should you enable a GCE instance to read files from a bucket in the same project? (select 2) 4,
5
1. Log into Cloud Shell and run `gcloud services enable storage.googleapis.com`
2. Log onto the instance and run `gcloud services enable storage.googleapis.com`
3. Grant bucket read access to the default compute service accountSELECTED
4. Do not change the default service account setup and attachmentSELECTED
182. You are working together with a contractor from the Acme company and you need to allow App Engine running in one of 3,
Acme's GCP projects to write to a Cloud Pub/Sub topic you own. Which of the following pieces of information are enough 4
to let you enable that access? (select 2)
1. The email address of the Acme contractor

2. The Acme GCP project's project numberSELECTED
3. The email address of the Acme project service accountSELECTED
4. The Acme GCP project's project ID
5. The Acme GCP project's name
183. You need to make sure a GCE instance can access other services in GCP. Which of the following are Google-recommended 1,
practices for enabling this? (select 2) 2
1. Access the token via the metadata service.

2. Grant a service account access to the required resources.
3. Hash and salt all passwords transferred to the instance.
4. Use Account Cross Access to authorize requests that originate from the instance.
5. Generate an SSH key for the instance using gcloud or keygen.
6. Securely log onto the account to enter the required credentials.
184. You have a GCE instance using the default service account and access scopes allowing full access to storage, compute, and 6
billing. What will happen if an attacker compromises this instance and runs their own program on it?
1. If they send the credentials and use them outside of GCP, they will have the same access as the GCE instance only if they
spoof that machine's MAC address.
2. If they send the credentials and use them outside of GCP, they will be able to access everything allowed by the access
scopes.
3. If they send the credentials and use them outside of GCP, they will not be able to access any GCP services.
4. They will be unable to access any credentials because of the "Metadata-Flavor: Google" protection.
5. If they send the credentials and use them outside of GCP, they will be able to access everything allowed by the service
account.
185. How many projects can you create? 3
1. A maximum of five per second

2. It doesn't matter, as you should really only need one
3. As many as allowed by your quota
4. As many as Google Support will make for you
5. A maximum of five per month
6. A maximum of one per five minutes
7. There are no limits on creating new projects
186. You need to store trillions of 2KB objects for one month and it you will need to run analytical processing against all of 2
them from hundreds of nodes. Which of the following options would be the most cost-effective?

2. Bigtable
187. You are planning to use BigQuery for a system you will manage. Which of the following statements best represents how 4
you will use the pricing calculator?
1. You will enter some sample data to be stored directly in the main GCP pricing calculator and estimate your query data
volume separately.
3. You will enter some sample data and queries into the BQ Data Analyzer and have it transfer its amounts directly to the
main GCP pricing calculator.
4. You will separately estimate the data to be stored, streamed, and queried by your system and enter your estimated
amounts into the GCP pricing calculator.
5. You will enter some sample data and queries directly in the main GCP pricing calculator.
because new locations are being added, each with 4-10 cameras. Archival data must be stored indefinitely, and as
inexpensively as possible. The users of your system currently need to access 250TB of current-month footage and 100GB
of archival footage, and access rates are expected to grow linearly with data volume. Which of the following storage
options best suits this purpose?
installs the Stackdriver agent and runs gsutil to retrieve a large amount of data from Cloud Storage. Of the following steps,
which is the first one to happen?

3. The service account is created
190. You need to view both request and application logs for your Python-based App Engine app. Which of the following options 1
would be best?
1. Use the built-in support to get both request and app logs to Stackdriver.
2. Use the built-in support to view request logs in the App Engine console and install the Stackdriver agent to get app logs
to Stackdriver.
3. Install the Stackdriver agent to get request logs to Stackdriver; use the Stackdriver Logging API to send app logs
directly to Stackdriver.
191. What is the easiest way to clone a project? 4
1. Navigate to the project creation screen in the console and in the Clone From Project dropdown, select any project linked
to the same billing account as the new project.
2. Open a support request to clone it and wait 2-5 days for it to be completed.
3. Navigate to the project creation screen in the console and in the Clone From Project dropdown, select any project for
which you are a project administrator.
4. There is no general way to automatically clone a project. You must handle each resource separately.
5. Run `gcloud projects clone --fromproject oldprojid --toproject newprojid`
192. You need to store some recently recorded customer focus sessions into a new GCP project. How can you enable the GCS 4
API in the fewest number of steps?
1. Open Cloud Shell, run `gcloud services enable storage`

2. Open Cloud Shell, configure authentication, run `gcloud services enable storage.googleapis.com`
3. Open Cloud Shell, configure authentication, select the "defaults" project, run `gcloud enable storage service`
4. Do nothing. It is enabled by default.
5. Navigate to the Storage section of the console.
193. In Cloud Shell, you run the command `gcloud compute instances list`, and the response that you see is `HTTPError 403: 3
Access Not Configured.`. What is a likely explanation for this error message?
1. The GCE API has not yet been enabled for this account.
2. This Cloud shell instance does not have read access to any of the currently running instances.
3. The GCE API has not yet been enabled for this project.
4. The GCE API has not yet been enabled for this Cloud Shell instance.
5. Your user account does not have read access to any of the currently running instances.
6. The startup script for this Cloud Shell instance has not yet finished running.
194. What is the easiest way to delete a project? 1
1.Run `gcloud projects delete oldprojid`SELECTED

2. Open a support request to delete the project and wait 2-5 days for them to complete the task.
3. There is no general way to delete a project. Projects are immutable.
4. In the monthly project budget email, click the link to "Delete Project and Unsubscribe".
5. Simply ignore the monthly project renewal email and the project will automatically be deleted in 15 days.
195. You go to the Activity Log to look at the "Create VM" event for a GCE instance you just created. You set the Resource 2
Type to "GCE VM Instance". Which of the following will display the "Create VM" event you wish to see?
1. Set the "Activity Types" dropdown to "Development"

2. Set the "Activity Types" dropdown to "Configuration"
3. Set the "Activity Types" dropdown to "Data Access"
4. Set the "Activity Types" dropdown to "Monitoring"
196. You are planning out your organization's usage of GCP. Which of the following is a Google-recommended practice? 2
1. Auditor access should be granted through a Service Account.

3. GCS ACLs should always be set by a Service Account.
4. The project owner should generally be a Service Account.
5. GCS ACLs should always be set to a Service Account.
197. Which of the following roles has the highest level of access? 6
1. Compute Administrator
2. Organization Superuser
3. Controller
4. Organization Auditor
5. Project Editor
6. Project Owner
198. You have a volume of data that is accessed very rarely (on average once every 3-4 years) but should be retrieved very 3,
quickly (less than one second) when it is. Which of the following do you need to consider when deciding how to store this 4
data?
1. Thaw time from GCS Coldline may not be quick enough.

2. Request latency of GCS Multi-Regional may not be quick enough.
3. Only one of the other options is correct.SELECTED
4. All of the GCS storage classes would work fine.
5. Retrieval time from GCS Nearline may not be quick enough.
199. What will happen if a running GKE node encounters a fatal error? 2
1. GKE nodes are immutable and cannot encounter fatal errors.

2. GKE will automatically restart that node on an available GCE host.
3. GKE will automatically restart the node in an available deployment.
4. You can tell GKE to restart the node in an available deployment.
5. GKE will automatically restart that node on an available pod.
200. You want to create a new GCS bucket in Iowa. How could you go about doing this? 3,
4
1. At the top of the GCP console, drop the region selector and choose us-central1, then create the bucket.
2. Make sure the project is homed in the Iowa region then just create the bucket.
3. Begin creating the bucket and set the location to Iowa when prompted.
4. Only one of the other options will work.
5. At the top of the GCP console, drop the zone selector and choose us-central1-a, us-central1-b, us-central1-c, or us-
central1-f, then create the bucket.
6. First create the bucket in Cloud Shell and then set its location to Iowa using the console.
201. Can you generate access keys for service accounts? 1
1. Yes. You may generate a small number of keys per service account to facilitate key rotation.
2. Yes. You may generate as many keys as you want for different purposes.
3. No. Only Google can generate keys for service accounts.
4. Yes. You may generate one key per service account.
202. You need to visualize costs associated with a system you've been running on GCP. Which of the following is the best tool 4
for this?
1. Google Sheets
2. Cloud Billing API
3. GCP Pricing Calculator
4. Data Studio
5. Cloud Pricing API
203. You need to store thousands of 2TB objects for one month and it is very unlikely that you will need to retrieve any of 3
them. Which of the following options would be the most cost-effective?
1. Bigtable
204. You have two web applications that you want to deploy in GCP--one written in Ruby and the other written in Rust. Which 1,
of the following GCP services would be capable of handling these apps? 4
2. Cloud Functions
3. Web Engine
4. Compute Engine
5. Cloud Dataproc
6. Stackdriver
205. You are currently creating instances with `gcloud compute instances create myvm --machine-type=n1-highmem-8`. This is 7
good but you would just like a bit more RAM. Which of the following replacements would be the most cost effective?
1. `gcloud compute instances create myvm --machine-type=n1-highmem-10`

2. `gcloud compute instances create myvm --custom-cpu=2 --custom-memory=10`
3. `gcloud compute instances create myvm --machine-type=n1-highcpu-16`
5. `gcloud compute instances create myvm --machine-type=n1-highmem-16`
because new locations are being added, each with 4-10 cameras. Which of the following storage options best suits this
purpose without encountering storage or throughput limits?
1. One Cloud Storage bucket per CCTV camera

2. One Cloud Storage bucket per week
3. One Cloud Storage bucket per month, for all locations
4. One Cloud Storage bucket per year, per location
5. One Cloud Storage bucket for all objects
207. You need to store a large amount of unstructured data, including video, audio, image, and text files. The data volume is 6
expected to double every 18 months and data access is sporadic and often clustered on a small portion of the overall data.
You would like to reduce ongoing maintenance and management costs. Which option would best serve these
requirements?
1. None of the other options is appropriate

2. Cloud Bigtable
3. BigQuery
4. MySQL on GCE
5. Cloud SQL
6. Cloud Storage
because new locations are being added, each with 4-10 cameras. Archival data must be stored for six months, and as
inexpensively as possible. The users of your system currently need to access 250TB of current-month footage and 50TB of
209. You are planning to use Persistent Disks in your system. In the context of what other GCP service(s) will you be using these 2,
Persistent Disks? (select 2) 4
1. You can only use Persistent Disks with one of the other listed options
3. Cloud Storage
4. Compute Engine
5. BigTable
210. You need to start a set of virtual machines to run year-end processing in a new GCP project. How can you enable the 4
Compute API in the fewest number of steps?
1. Do nothing. It is enabled by default.SELECTED

2. Open Cloud Shell, run `gcloud services enable compute`
3. Open Cloud Shell, configure authentication, run `gcloud services enable compute.googleapis.com`
4. Navigate to the Compute section of the console.
5. Open Cloud Shell, configure authentication, select the "defaults" project, run `gcloud enable compute service`
211. You are designing the logging structure for a non-containerized Java application that will run on GAE. Which of the 6
search logs?
application
212. You are planning to run a multi-node database on GKE. Which of the following things do you need to consider? 2
1. At least one DB pod must always be running for data to stay persisted
2. You should use a StatefulSet object
3. GKE handles disk replication across pods
4. You should use PodReplicationState objects
5. You should use cross-region container replication
1. The metadata service returns information about this instance to the first requestor
214. You need to determine who just started a particular GCE instance that does not meet your organization's resource labelling 5
policies. How can you determine who to follow up with, in the least number of steps?
1. Navigate to the Compute Engine section of the console. Navigate into the details of the instance in question. Navigate to
the "Monitoring" tab. Identify the user by the displayed "Owner" property.
2. From the notifications menu, navigate to the Activity Log. For "Date/time", choose "Select Range" and include today's
date. Look for the log line, "USER_EMAIL created INSTANCE_NAME".
3. Navigate to the project dashboard. Navigate to the "Activity" tab. Look for the log line, "USER_EMAIL created
INSTANCE_NAME".
4. Navigate to the Compute Engine section of the console. Navigate into the details of the instance in question. Identify
the user by the displayed "Owner" property.
5. From the notifications menu, navigate to the Activity Log. Look for the log line, "USER_EMAIL created INSTANCE_NAME".
215. You are responsible for securely managing employee access to Google Cloud. Which of the following are Google- 3,
recommended practices for this? (select 2) 5
1. Set up all employee accounts to use the corporate security office phone number for account rescue.
2. Have each employee set up a GMail account using two-factor authentication.
3. Use Cloud Identity or GSuite to manage Google accounts for employees.
4. Use Google Cloud Directory Sync to push Google account changes to corporate head office via LDAP.
5. Enforce MFA on employee accounts.
216. You are planning out your organization's usage of GCP. Which of the following is a Google-recommended practice? 3
1. GCS ACLs should always be set by a Service Account.

2. The project owner should generally be a Service Account.
4. GCS ACLs should always be set to a Service Account.
5. Auditor access should be granted through a Service Account.
217. You need to store some structured data and query and continually update it with SQL from your web app backend. The 6
data volume and query load are reasonably consistent and you would like to reduce ongoing maintenance and
management costs. Which option would best serve these requirements?
1. Cloud Storage
2. None of the other options is appropriate
3. Cloud Bigtable
4. MySQL on GCE
5. BigQuery
6. Cloud SQL
218. You are planning a log analysis system to be deployed on GCP. Which of the following would be the best service for 2
processing streamed logs?
1. Cloud Pub/Sub
2. Cloud Dataflow
3. BigTable
4. Stackdriver Logging
5. Cloud Dataproc
219. You need to store trillions of 2KB objects for one month and it you will need to run analytical processing against all of 1
them from hundreds of nodes. Which of the following options would be the most cost-effective?
1. Bigtable
220. How should you enable a GCE instance to read files from a bucket in the same project? 2,
3
3. Do not change the default service account setup and attachment
4. Log into Cloud Shell and run `gcloud services enable storage.googleapis.com`
5. Grant bucket read access to the default compute service account
6. Log onto the instance and run `gcloud services enable storage.googleapis.com`
because new locations are being added, each with 4-10 cameras. Archival data must be stored for six months, and as
inexpensively as possible. The users of your system currently need to access 250TB of current-month footage and 50TB of

4. The instance startup script completes
223. You want to create a new GCS bucket in Iowa. How could you go about doing this? 5,
6
1. First create the bucket in Cloud Shell and then set its location to Iowa using the console.
2. At the top of the GCP console, drop the region selector and choose us-central1, then create the bucket.
3. At the top of the GCP console, drop the zone selector and choose us-central1-a, us-central1-b, us-central1-c, or us-
central1-f, then create the bucket.
4. Make sure the project is homed in the Iowa region then just create the bucket.
5. Begin creating the bucket and set the location to Iowa when prompted.
6. Only one of the other options will work.
224. You need to store thousands of 2TB objects for one week and it is very unlikely that you will need to retrieve any of them. 5

3. Bigtable

Quizlet GCP

Uploaded by

Document Information

Original Title

Copyright

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Quizlet GCP

Original Title:

Uploaded by

Copyright:

Google Cloud Platform Fundamentals: Core Infrastructure

Study online at quizlet.com/_657dh9

1. Networks and subnets are global

1. A batch job that cannot be checkpointed and restarted

1. The regional load balancer

1. They are manageable separately from the underlying hardware.

1. Customers who create and run many virtual machines

1. The project number

1. There are two or more organization nodes

1. Nearline and Coldline assess additional retrieval fees.

1. Tight coupling between applications and operating systems

1. A popular management subsystem

1. Yes. Kubernetes Engine customers must use the GCP-provided tool.

1. In clusters that are built into GCP, not separately manageable

1. Your application can write to local disk

1. Billing can drop to zero if your application is idle

1. Cloud Functions is a free service for hosting compute operations.

1. Deployment Manager is an infrastructure management system for GCP resources.

1. Data mining and analysis in datasets of known size

1. Manual resource management

1. Once in BigQuery, data is not accessible from other GCP services.

1. Analyzing streaming data

1. A managed service for building machine learning models

1. It analyzes text to reveal its structure and meaning.

1. Structured objects, with transactions and SQL-like queries

1. A relational database with SQL queries and horizontal scalability

1. A relational database with SQL queries and horizontal scalability

1. A relational database with SQL queries and horizontal scalability

A. Link a credit card with a monthly limit equal to your budget.

A. Use "gcloud config set project" to set the default project.

A. A Cloud Datastore database.

A. Turn on Stackdriver Logging during the Kubernetes Engine cluster creation.

A. Create a cluster on Kubernetes Engine and enable autoscaling on Kubernetes Engine.

A. Use the GCP Console, IAM section to view the information.

1. Assign all employees to a single full-access group, to keep security simple.

1. You will see lines of the form "YOUR_EMAIL created GKE_NODE_INSTANCE_NAME"

1. The Acme GCP project's project ID

1. Do not change the default service account setup and attachment

1. In Cloud Shell, type `gsutil acl ch -u coworker@email.domain:r gs://mybucket/myfile`SELECTED

1. Assign only limited access, to achieve least privilege.

1. Have the developers write log lines to stdout and stderr

1. In the GCE console, terminate one of the nodes.

1. Run `gcloud compute instances create gke-7`

1. Have the developers write log lines to stdout and stderr

1. An "unknown command" error

1. In the GCE console, add the nodes to an unmanaged instance group.

1. Data retrieval from GCS completes

1. The instance startup script completes

1. The instance startup script begins

1. The Cloud Tasks API should be enabled

1. You can tell GKE to restart the pod in an available deployment.

1. The memory used by the containers will be freed.

1. Configure those tools independently.

1. The free tier lasts one year

1. The project configured for gcloud is located in a particular zone.

1. If you created the project in the console, do nothing.

1. At the end of the billing cycle of the linked billing account

1. You cannot create a new project.

1. Nearline Cloud Storage bucket

1. Cloud Storage Processing

1. Nearline Cloud Storage bucket

1. Zonal, regional, and global

1. Tags help organizations track firewall billing.

1. A VM in Compute Engine always maps to a single hardware computer in a rack.

1. Persistent disks are encrypted by default.