GCP

You want to store critical business information in Cloud Storage buckets. The information is regularly changed, but previous versions need to be referenced on a regular basis. You want to ensure that there is a record of all changes to any information in these buckets. You want to ensure that accidental edits or deletions can be easily rolled back. Which feature should you enable?

1

שאלה #96562

		Bucket Lock
		Object Versioning
		Object change notification
		Object Lifecycle Management

מיין לפי

Tal Eilon 0 נקודות · יותר מ-6 חודשים

מוניטין: 1

https://www.examtopics.com/discussions/google/view/80304-exam-professional-cloud-architect-topic-1-question-189/

Your company has just recently activated Cloud Identity to manage users. The Google Cloud Organization has been configured as well. The security team needs to secure projects that will be part of the Organization. They want to prohibit IAM users outside the domain from gaining permissions from now on. What should they do?

1

שאלה #96563

		Configure an organization policy to restrict identities by domain.
		Configure an organization policy to block creation of service accounts.
		Configure Cloud Scheduler to trigger a Cloud Function every hour that removes all users that don't belong to the Cloud Identity domain from all projects.
		Create a technical user (e.g., [email protected]), and give it the project owner role at root organization level. Write a bash script that: "¢ Lists all the IAM rules of all projects within the organization. "¢ Deletes all users that do not belong to the company domain. Create a Compute Engine instance in a project within the Organization and configure gcloud to be executed with technical user credentials. Configure a cron job that executes the bash script every hour.

נערך לפני שנתיים

מיין לפי

Tal Eilon 0 נקודות · יותר מ-6 חודשים

מוניטין: 1

https://www.examtopics.com/discussions/google/view/68690-exam-professional-cloud-architect-topic-1-question-177/

Tal Eilon 0 נקודות · יותר מ-6 חודשים

מוניטין: 1

configure domain

Your company has an application running on Google Cloud that is collecting data from thousands of physical devices that are globally distributed. Data is published to Pub/Sub and streamed in real time into an SSD Cloud Bigtable cluster via a Dataflow pipeline. The operations team informs you that your Cloud Bigtable cluster has a hotspot, and queries are taking longer than expected. You need to resolve the problem and prevent it from happening in the future. What should you do?

1

שאלה #96564

		Advise your clients to use HBase APIs instead of NodeJS APIs.
		Delete records older than 30 days.
		Review your RowKey strategy and ensure that keys are evenly spread across the alphabet.
		Double the number of nodes you currently have.

נערך לפני שנתיים

מיין לפי

Tal Eilon 0 נקודות · יותר מ-6 חודשים

מוניטין: 1

https://www.examtopics.com/discussions/google/view/68691-exam-professional-cloud-architect-topic-1-question-178/

You have a Compute Engine application that you want to autoscale when total memory usage exceeds 80%. You have installed the Cloud Monitoring agent and configured the autoscaling policy as follows: ✑ Metric identifier: agent.googleapis.com/memory/percent_used ✑ Filter: metric.label.state = 'used' ✑ Target utilization level: 80 ✑ Target type: GAUGE You observe that the application does not scale under high load. You want to resolve this. What should you do?

1

שאלה #96565

		Change the Target type to DELTA_PER_MINUTE.
		Change the Metric identifier to agent.googleapis.com/memory/bytes_used.
		Change the filter to metric.label.state = 'used' AND metric.label.state = 'buffered' AND metric.label.state = 'cached' AND metric.label.state = 'slab'.
		Change the filter to metric.label.state = 'free' and the Target utilization to 20.

נערך לפני שנתיים

מיין לפי

Tal Eilon 0 נקודות · יותר מ-6 חודשים

מוניטין: 1

https://www.examtopics.com/discussions/google/view/80040-exam-professional-cloud-architect-topic-1-question-190/

The operations team in your company wants to save Cloud VPN log events for one year. You need to configure the cloud infrastructure to save the logs. What should you do?

1

שאלה #96566

		Set up a filter in Cloud Logging and a Cloud Storage bucket as an export target for the logs you want to save.
		Enable the Compute Engine API, and then enable logging on the firewall rules that match the traffic you want to save.
		Set up a Cloud Logging Dashboard titled Cloud VPN Logs, and then add a chart that queries for the VPN metrics over a one-year time period.
		Set up a filter in Cloud Logging and a topic in Pub/Sub to publish the logs.

נערך לפני שנתיים

מיין לפי

Tal Eilon 0 נקודות · יותר מ-6 חודשים

מוניטין: 1

https://www.examtopics.com/discussions/google/view/68684-exam-professional-cloud-architect-topic-1-question-173/

Tal Eilon 0 נקודות · יותר מ-6 חודשים

מוניטין: 1

מיניב: מתחיל בsetup נגמר בyou want to save

Your company has a Google Workspace account and Google Cloud Organization. Some developers in the company have created Google Cloud projects outside of the Google Cloud Organization. You want to create an Organization structure that allows developers to create projects, but prevents them from modifying production projects. You want to manage policies for all projects centrally and be able to set more restrictive policies for production projects. You want to minimize disruption to users and developers when business needs change in the future. You want to follow Google-recommended practices. Now should you design the Organization structure?

1

שאלה #96567

		1. Create a second Google Workspace account and Organization. 2. Grant all developers the Project Creator IAM role on the new Organization. 3. Move the developer projects into the new Organization. 4. Set the policies for all projects on both Organizations. 5. Additionally, set the production policies on the original Organization.
		1. Create a folder under the Organization resource named "Production." 2. Grant all developers the Project Creator IAM role on the new Organization. 3. Move the developer projects into the new Organization. 4. Set the policies for all projects on the Organization. 5. Additionally, set the production policies on the "Production" folder.
		1. Create folders under the Organization resource named "Development" and "Production." 2. Grant all developers the Project Creator IAM role on the "Development" folder. 3. Move the developer projects into the "Development" folder. 4. Set the policies for all projects on the Organization. 5. Additionally, set the production policies on the "Production" folder.
		1. Designate the Organization for production projects only. 2. Ensure that developers do not have the Project Creator IAM role on the Organization. 3. Create development projects outside of the Organization using the developer Google Workspace accounts. 4. Set the policies for all projects on the Organization. 5. Additionally, set the production policies on the individual production projects.

מיין לפי

Tal Eilon 0 נקודות · יותר מ-6 חודשים

מוניטין: 1

https://www.examtopics.com/discussions/google/view/68682-exam-professional-cloud-architect-topic-1-question-171/

You want to allow your operations team to store logs from all the production projects in your Organization, without including logs from other projects. All of the production projects are contained in a folder. You want to ensure that all logs for existing and new production projects are captured automatically. What should you do?

1

שאלה #96568

		Create an aggregated export on the Production folder. Set the log sink to be a Cloud Storage bucket in an operations project.
		Create an aggregated export on the Organization resource. Set the log sink to be a Cloud Storage bucket in an operations project.
		Create log exports in the production projects. Set the log sinks to be a Cloud Storage bucket in an operations project.
		Create log exports in the production projects. Set the log sinks to be BigQuery datasets in the production projects, and grant IAM access to the operations team to run queries on the datasets.

מיין לפי

Tal Eilon 0 נקודות · יותר מ-6 חודשים

מוניטין: 1

https://www.examtopics.com/discussions/google/view/68686-exam-professional-cloud-architect-topic-1-question-175/

You are configuring the cloud network architecture for the newly created project in Google Cloud that will host applications in Compute Engine. Compute Engine virtual machine instances will be created in two different subnets (aub-a and sub-b) within a single region. Instances in sub-a will have public IP addresses. Instances in sub-a will have only private IP addresses. To download updated packages, instances must connect to a public repository outside the boundaries of Google Cloud. You need to allow sub-b to access the external repository. What should you do?

1

שאלה #96569

		Enable Private Google Access on sub-b.
		Configure Cloud NAT and select sub-b in the NAT mapping section.
		Configure a bastion host instance in sub-a to connect to instances in sub-b.
		Enable Identity-Aware Proxy for TCP forwarding for instances in sub-b.

מיין לפי

Tal Eilon 0 נקודות · יותר מ-6 חודשים

מוניטין: 1

שאלה לא קיימת בexamtopics

You have a Compute Engine managed instance group that adds and removes Compute Engine instances from the group in response to the load on your application. The instances have a shutdown script that removes REDIS database entries associated with the instance. You see that many database entries have not been removed, and you suspect that the shutdown script is the problem. You need to ensure that the commands in the shutdown script are run reliably every time an instance is shut down. You create a Cloud Function to remove the database entries. What should you do next?

1

שאלה #96570

		Modify the shutdown script to wait for 30 seconds before triggering the Cloud Function.
		Do not use the Cloud Function. Modify the shutdown script to restart if it has not completed in 30 seconds.
		Set up a Cloud Monitoring sink that triggers the Cloud Function after an instance removal log message arrives in Cloud Logging.
		Modify the shutdown script to wait for 30 seconds and then publish a message to a Pub/Sub queue.

מיין לפי

Tal Eilon 0 נקודות · יותר מ-6 חודשים

מוניטין: 1

https://www.examtopics.com/discussions/google/view/80034-exam-professional-cloud-architect-topic-1-question-181/

Your company recently acquired a company that has infrastructure in Google Cloud. Each company has its own Google Cloud organization. Each company is using a Shared Virtual Private Cloud (VPC) to provide network connectivity for its applications. Some of the subnets used by both companies overlap. In order for both businesses to integrate, the applications need to have private network connectivity. These applications are not on overlapping subnets. You want to provide connectivity with minimal re-engineering. What should you do?

1

שאלה #96571

		Set up VPC peering and peer each Shared VPC together.
		Configure SSH port forwarding on each application to provide connectivity between applications on the different Shared VPCs.
		Set up a cloud VPN gateway in each Shared VPC and peer Cloud VPNs.
		Migrate the projects from the acquired company into your company’s Google Cloud organization. Re-launch the instances in your companies Shared VPC.

מיין לפי

Tal Eilon 0 נקודות · יותר מ-6 חודשים

מוניטין: 1

שאלה לא קיימת בexamtopics

Discuss, Learn and be Happy דיון בשאלות

The operations team in your company wants to save Cloud VPN log events for one year. You need to configure the cloud infrastructure to save the logs. What should you do?

בקשה לשינוי התשובה / תיקון שאלה gavel

בקשה למחיקת השאלהmood_bad

בקשה לשינוי התשובה / תיקון שאלה

בקשה למחיקת השאלה