Professional Documents
Culture Documents
release of Cloud SDK on your machine, however when you run kubectl, you receive an error stating
“Command ‘kubectl’ not found”. Which command will you use to install kubectl on Ubuntu?
You have recently joined a startup and have been asked to create a new Google Cloud account for the
company along with setting up budget alarm of $100. You have set up an alarm with 40%, 60%, 90%,
and 100% threshold. What will happen once the threshold of 100% is reached?
B Your project will be deleted because you have depleted all your budget.
C All VMs will be stopped so that you don’t exceed your budget.
You have to run several services to support an application. Which of the following is a good
deployment model?
C Use a small VM for all services and increase the size of the VM when CPU utilization exceeds 90
percent
You have been tasked with designing an organizational hierarchy for managing departments and their
cloud resources. What organizing components are available in GCP?
A Block storage
B Object storage
C Cache
A Subnet
B Virtual machine
C Physical server
D Block
As a cloud engineer, you have been asked to upgrade the free trial of your account and rename it to a
production-inventory-system. You are getting permission denied error while making the changes.
Which of the following permissions will solve the problem?
A billing.accounts.update
B billing.account.upgrade
C billing.account.update
D billing.accounts.upgrade
A startup has reached out to you for help with their single page application which they will be running
using docker. They want you to suggest the best possible service which can be used by the developers
to deploy and manage the application on their own. Which one according to you will be best suited for
their requirement without considering the management of underlying infrastructure?
A App Engine
B Cloud Engine
C Cloud Functions
Investing in servers for extended periods of time, such as committing to use servers for three to five
years, works well when?
B A company can accurately predict server need for an extended period of time
How many maximum instance-hours are supported by an App Engine as free daily usage quota when
scaling an instance using Automatic Scaling type?
A8
B 10
C 28
D 35
You are working with a healthcare startup as Google Cloud Consultant on a new project which they are
about to launch next week as a beta version. All the static files are stored on GCS and you have been
asked to make one of the PDF named launching-bucket publicly available for the customers to
download. You only have access to CLI to achieve the same. Which of the following commands would
you use to do it?
You are starting to work on a client’s project who is looking for a database service within Google Cloud
that is horizontally scalable, supports gigabyte size of relational data, and even supports ACID for
reliable storage of data. Which service will you recommend?
A CloudSQL
B Cloud Spanner
C Datastore
D BigQuery
You have been asked to build a backend using Clojure and host it on Google Cloud with full freedom of
choosing OS, applications, libraries, etc. Which service will you prefer?
A Cloud Function
C Compute Engine
D Cloud Run
You created a Nearline bucket in GCS by using the default parameters, after an hour you realized the
requirement was to create a Nearline bucket in asia-south1 location. How will you correct this
configuration change?
A Edit the bucket and change the location of the bucket from the default location to asia-south1.
C Modify the bucket and change its storage class to regional and choose the location to asia-south1.
D Delete the bucket and create a new bucket as per the requirement.
Your client wants to migrate an application to Google Cloud which has 15 TB of relational data. The
database is growing rapidly by 10 GB every day. In addition, to support the traffic, at least 10 read
replicas are required. Which of the following services would you meet the requirements?
A Cloud Bigtable
B Cloud Storage
C BigQuery
D Cloud Spanner
You have MS SQL Server running on a VM with n1-standard-4 machine type. For the last few days, you
are noticing performance degradation because of more than 95% memory utilization. CPU metrics
look absolutely fine and need no change. Your manager has asked you to increase a small amount of
memory keeping the cost in mind. What is the most cost-effective approach?
You want your application hosted on a VM to fetch metadata of that instance. Which command will
help you to fetch it?
A curl metadata.google.internal/compute-metadata/v1/
B curl <instance-private-ip>/metadata/v1/
C curl metadata.google.internal/computeMetadata/v1/
D curl internal.googleapi.com/compute-metadata/v1/
You have 100 TB of non-relational data and want to run analytics on it to see the previous year’s net
sales. Which tool suits your requirement?
A Bigtable
B Datastore
C BigQuery
D GCS
Your team has deployed a GKE cluster having 3 nodes for high availability. The cluster was tested
multiple times before moving to production, but it suddenly stopped working after deploying it to the
production environment. A team member approached you that he will need shell access to the
container for a while to resolve the issue. Which command will give him access to the container?
You need to deploy an update to an application in Google App Engine. The update is risky, but it can
only be tested in a live environment. What is the best way to introduce the update to minimize risk?
A Deploy a new version of the application but use traffic splitting to only direct a small number of users
to the new version.
C Warn users that a new app version may have issues and provide a way to contact you if there are
problems.
D Create a new project with the new app version, then redirect users to the new version.
Which of the following export options are available with Google Cloud Billing?
Which of the following commands could be used to autoscale a replication controller “foo” with
number of pods between 1 to 10 having target cpu utilization at 80%?
A Cloud Function
B Cloud Dataproc
C Cloud Pub/Sub
D RabbitMQ
You have been asked to deploy a highly available Kubernetes cluster using Google Kubernetes Engine
by your manager. While spinning up the cluster you realize you do not see an option of creating a
master. What can be the reason?
There are 15 VMs in your company’s Google Cloud account which have public IP addresses but are
ephemeral. Your manager asked you to assign static public IP to each instance. During the process, you
were able to assign IPs to only 5 of the VMs and were receiving errors in all other instances. What can
be the reason?
B Your quota has been exhausted and you can raise a request to increase it.
C Not all OS supports static public IP so check if the OS on VM supports static IP.
D You need to first remove the existing public IP attached to VMs and then attach static IP to them.
There are 5 VPC networks in your staging project created for 5 different applications. Each network has
its own CIDR range and firewall rules. You are asked to list the firewall rules of network-3 to perform
an update. Select the appropriate response.
Your team has deployed a few windows web servers on a custom VPC network and the same is
running properly. After a few hours of the app suddenly crashes, developers are trying to remote
access web servers, but are failing to do so. While troubleshooting the issue you realize that the
firewall rule is missing. Which command will help you solve the problem?
A development team works with two Cloud Functions using node.js code. Each function corresponds
to environments for development and production. The code is the same except for the Cloud SQL
database values used in each function. The team wants to maintain code in a clean and reusable
fashion and decides to pass the database value during function execution. Which feature will allow
you to do this?
A Metadata
B Service Accounts
C Environment Variables
D Timeouts
You have a Kubernetes cluster with 1 node-pool. The cluster receives a lot of traffic and needs to grow.
You decide to add a node. What should you do?
A Use “gcloud container clusters resize” with the desired number of nodes.
B Use “kubectl container clusters resize” with the desired number of nodes.
C Edit the managed instance group of the cluster and increase the number of VMs by 1.
D Edit the managed instance group of the cluster and enable autoscaling.
You are launching VMs for your company’s internal application via CLI and you are not able to recollect
one of the flags. Using which command you can help yourself?
A web application is hosted on VM and its resources are stored in a bucket. You have been asked to let
any authenticated user access the very high level blueprint of the company's product. This blueprint
does not contain any confidential data or IP data so can be made available to the public as well. What
changes are required to make it work?
D permission. Remove all existing entries from permission and add allAuthenticatedUsers having read
permission.
You want to rename an object stored in a bucket. What command structure would you use?
A health care company that provides medical services to the users wants to track their network
forensics, real-time security analysis, and optimize the expense. The manager would like to track the
network sent from and received by VM instances. What do you suggest they do?
A Pub/Sub
B VPC Monitoring
You as a Senior Cloud Engineer doing proofs-of-concept (POC) on a business-critical application having
a database deployed on a GCE virtual machine. The requirement is to have a disk that supports up to
35,000 Read IOPS per instance. Which of the following disks is suitable to meet the requirement?
Your project has a requirement of high GPU capacity and your manager has asked you to spin up a new
ubuntu instance with NVIDIA Tesla k80 GPU in the us-east1-d zone. Which of the following commands
would you use to do the following?
Your company was bidding on a big data project for the last few months and they have finally received
the project. The project wants you to deploy Apache Spark clusters on Google Cloud. Which service
will you use?
A Bigtable
B Cloud Composer
C DataFlow
D DataProc
A cloud engineer has been assigned to work on a running project. He wants to know which VMs are
running in the project. How could the cloud engineer get the information of the all VMs running in the
project?
Your company has uploaded some business-critical documents to Cloud Storage and your project
manager wants you to restrict access to the objects by using ACLs. Which of the following permission
would allow you to update the object ACLs?
A storage.objects.update
B storage.objects.setIamPolicy
C storage.objects.create
D storage.objects.getIamPolicy
Your company has deployed an application using Google App Engine flexible environment and you
have been asked to ssh the VM instance in a flexible environment, update the app configuration and if
required, enable and disable the App Engine application, which of the following predefined roles has
access to perform these tasks?
You want to list roles assigned to users in a project called ace-exam-project. What gcloud command
would you use?
Your company hired a Big Data consultant for creating real-time reporting applications using Google
Cloud services like BigQuery and PowerBI reporting tool. Your manager asked you to create an IAM
user which gives him access to read, update, and delete the dataset but not to create one. Which role
would you assign to him?
A roles/bigquery.dataOwner
B roles/bigquery.dataEditor
C roles/bigquery.datasetEditor
D roles/bigquery.admin
Your company has appointed a new DevOps engineer with experience in Google Cloud Platform, you
have been asked to create a user which would allow him to call “builds.cancel()” API only. Which of
the following permission would you consider completing this task?
A cloudbuild.builds.create
B cloudbuild.builds.update
C cloudbuild.builds.list
D cloudbuild.builds.get
Using the principle of least privilege, your colleague Bob needs to be able to create new instances on
Compute Engine in the project ‘Project A’. How should you give him access without giving more
permissions than is necessary?
C Create a shared VPC that Bob can access Compute resources from.
Your company is going for an audit and the auditor has approached you to provide them with all the
audit logs related to the bangkit-prod project. Which service will you use to extract the logs for
auditors?
A Flow logs
B Stackdriver logging
C Activity logs
D Audit logs
An auditor needs to review audit logs. You assign read-only permission to a custom role you create for
auditors. What security best practices are you following?
A Separation of duties
B Defense in depth
C Least privilege
D Vulnerability scanning
You are creating a firewall rule for your DB server so that only web servers and your internal
application servers can access it. You have added both service accounts and tags for traffic filters but
while saving you receive an error. What can be the reason?
D Service accounts and tags cannot be used together at the same time.