• Home
  • Articles
  • [Q51-Q75] Verified Associate-Cloud-Engineer dumps Q&As - Pass Guarantee Exam Dumps Test Engine [2021]

[Q51-Q75] Verified Associate-Cloud-Engineer dumps Q&As - Pass Guarantee Exam Dumps Test Engine [2021]

Share

Verified Associate-Cloud-Engineer dumps Q&As - Pass Guarantee Exam Dumps Test Engine [2021]

Associate-Cloud-Engineer dumps and 245 unique questions

NEW QUESTION 51
You deployed a new application inside your Google Kubernetes Engine cluster using the YAML file specified below.

You check the status of the deployed pods and notice that one of them is still in PENDING status:

You want to find out why the pod is stuck in pending status. What should you do?

  • A. Review details of the myapp-deployment Deployment object and check for error messages.
  • B. Review details of the myapp-service Service object and check for error messages.
  • C. View logs of the container in myapp-deployment-58ddbbb995-lp86m pod and check for warning messages.
  • D. Review details of myapp-deployment-58ddbbb995-lp86m Pod and check for warning messages.

Answer: D

 

NEW QUESTION 52
You created several resources in multiple Google Cloud projects. All projects are linked to different billing accounts. To better estimate future charges, you want to have a single visual representation of all costs incurred. You want to include new cost data as soon as possible. What should you do?

  • A. Fill all resources in the Pricing Calculator to get an estimate of the monthly cost.
  • B. Configure Billing Data Export to BigQuery and visualize the data in Data Studio.
  • C. Use the Reports view in the Cloud Billing Console to view the desired cost information.
  • D. Visit the Cost Table page to get a CSV export and visualize it using Data Studio.

Answer: B

Explanation:
Reference:
https://cloud.google.com/billing/docs/how-to/visualize-data

 

NEW QUESTION 53
You keep attempting to execute a command, and while there's no error being thrown, you suspect something is going wrong. You want to check out the gcloud logs. However, you can't recall in which directory they're located. Your script skills are not what they could be, so you can't rely on using those fancy command line skills.
Which command could you run to show you where the log directory is located?

  • A. gcloud
  • B. gcloud logging
  • C. google logs
  • D. gcloud info

Answer: D

 

NEW QUESTION 54
You've been asked to add Martha Jones as a member of the "Production Storefront App" project; Using the email address [email protected] with the App Engine Admin role. You browse to the IAM page in the console and attempt to add her, however, you get the following error.
"Email addresses and domains must be associated with an active Google Account or Google Apps account."
What's the most likely cause for this error?

  • A. Martha has been denied access due to a policy on the Organization.
  • B. Martha has an outstanding bill with Google and can't be added until the bill is paid.
  • C. Martha has already been added as a to this project as a different member.
  • D. Martha hasn't been added as a user inside the Company's G Suite account.

Answer: D

 

NEW QUESTION 55
Several employees at your company have been creating projects with Cloud Platform and paying for it with their personal credit cards, which the company reimburses. The company wants to centralize all these projects under a single, new billing account. What should you do?

  • A. Create a ticket with Google Support and wait for their call to share your credit card details over the phone.
  • B. Contact [email protected] with your bank account details and request a corporate billing account for your company.
  • C. In the Google Platform Console, go to the Resource Manage and move all projects to the root Organization.
  • D. In the Google Cloud Platform Console, create a new billing account and set up a payment method.

Answer: D

 

NEW QUESTION 56
You need to configure IAM access audit logging in BigQuery for external auditors. You want to follow Google-recommended practices. What should you do?

  • A. Add the auditors group to the `logging.viewer' and `bigQuery.dataViewer' predefined IAM roles.
  • B. Add the auditors group to two new custom IAM roles.
  • C. Add the auditor user accounts to the `logging.viewer' and `bigQuery.dataViewer' predefined IAM roles.
  • D. Add the auditor user accounts to two new custom IAM roles.

Answer: A

Explanation:
As per google best practices it is recommended to use predefined roles and create groups to control access to multiple users with same responsibility
https://cloud.google.com/docs/enterprise/best-practices-for-enterprise-organizations#groups-and- service-accounts .

 

NEW QUESTION 57
A legacy application running in premises requires a Solutions Architect to be able to open a firewall to allow access to several Amazon S3 buckets. The Architect has a VPN connection to AWS in place.
How should the Architect meet this requirement?

  • A. Configure IP whitelisting on the customer's gateway.
  • B. Configure a proxy on Amazon EC2 and use an Amazon S3 VPC endpoint.
  • C. Use Amazon API Gateway to do IP whitelisting.
  • D. Create an IAM role that allows access from the corporate network to Amazon S3.

Answer: D

 

NEW QUESTION 58
30. You are running multiple microservices in a Kubernetes Engine cluster. One microservice is rendering images. The microservice responsible for the image rendering requires a large amount of CPU time compared to the memory it requires. The other microservices are workloads that are optimized for n1-standard machine types. You need to optimize your cluster so that all workloads are using resources as efficiently as possible. What should you do?

  • A. Assign the pods of the image rendering microservice a higher pod priority than the older microservices
  • B. Configure the required amount of CPU and memory in the resource requests specification of the image rendering microservice deployment Keep the resource requests for the other microservices at the default
  • C. Create a node pool with compute-optimized machine type nodes for the image rendering microservice Use the node pool with general-purpose machine type nodes for the other microservices
  • D. Use the node pool with general-purpose machine type nodes for lite mage rendering microservice Create a nodepool with compute-optimized machine type nodes for the other microservices

Answer: C

 

NEW QUESTION 59
You need to provide a cost estimate for a Kubernetes cluster using the GCP pricing calculator for Kubernetes.
Your workload requires high IOPs, and you will also be using disk snapshots. You start by entering the number of nodes, average hours, and average days. What should you do next?

  • A. Select Add GPUs. Fill in persistent disk storage and snapshot storage.
  • B. Select Add GPUs. Add estimated cost for cluster management.
  • C. Fill in local SSD. Fill in persistent disk storage and snapshot storage.
  • D. Fill in local SSD. Add estimated cost for cluster management.

Answer: A

 

NEW QUESTION 60
Which is the correct command to bind an IAM policy to a service account at an organisation or folder level?

  • A. gcloud organizations add-iam-policy-binding org_id --member serviceAccount:whizlab@amazon- prj.iam.gserviceaccount.com --role roles/viewer
  • B. gcloud organizations add-iam-policy-binding --member serviceAccount:whizlab@amazon- prj.iam.gserviceaccount.com --role roles/viewer
  • C. gcloud iam service-accounts keys create amazon-prj --iam-account amazon@amazon- prj.iam.gserviceaccount.com
  • D. gcloud projects add-iam-policy-binding amazon-prj --member serviceAccount:amazonamazon- prj.iam.gserviceaccount.com --role roles/viewer

Answer: A

 

NEW QUESTION 61
You need to create a new Kubernetes Cluster on Google Cloud Platform that can autoscale the number of worker nodes. What should you do?

  • A. Create a cluster on Kubernetes Engine and enable autoscaling on the instance group of the cluster.
  • B. Create a cluster on Kubernetes Engine and enable autoscaling on Kubernetes Engine.
  • C. Create Compute Engine instances for the workers and the master, and install Kubernetes. Rely on Kubernetes to create additional Compute Engine instances when needed.
  • D. Configure a Compute Engine instance as a worker and add it to an unmanaged instance group.
    Add a load balancer to the instance group and rely on the load balancer to create additional Compute Engine instances when needed.

Answer: B

Explanation:
A is correct because this is the way to set up an autoscaling Kubernetes cluster.
B is not correct because you should not manage the scaling of Kubernetes through the MIG.
C is not correct because an UMIG cannot scale based on a load balancer and this is not the correct way to set up Kubernetes.
D is not correct because Kubernetes will not create additional instances when deployed on Compute Engine.
https://cloud.google.com/kubernetes-engine/docs/concepts/cluster-autoscaler

 

NEW QUESTION 62
You need a dynamic way of provisioning VMs on Compute Engine. The exact specifications will be in a dedicated configuration file. You want to follow Google's recommended practices. Which method should you use?

  • A. Deployment Manager
  • B. Cloud Composer
  • C. Managed Instance Group
  • D. Unmanaged Instance Group

Answer: C

 

NEW QUESTION 63
An application generates daily reports in a Compute Engine virtual machine (VM). The VM is in the project corp-iot-insights. Your team operates only in the project corp-aggregate-reports and needs a copy of the daily exports in the bucket corp-aggregate-reports-storage. You want to configure access so that the daily reports from the VM are available in the bucket corp-aggregate-reports-storage and use as few steps as possible while following Google-recommended practices. What should you do?

  • A. Make corp-aggregate-reports-storage public and create a folder with a pseudo-randomized suffix name. Share the folder with the IoT team.
  • B. Create a Shared VPC network between both projects. Grant the VM Service Account the role Storage Object Creator on corp-iot-insights.
  • C. Move both projects under the same folder.
  • D. Grant the VM Service Account the role Storage Object Creator on corp-aggregate-reports-storage.

Answer: A

Explanation:
Reference:
https://cloud.google.com/billing/docs/onboarding-checklist

 

NEW QUESTION 64
You are deploying an application to App Engine. You want the number of instances to scale based on request rate. You need at least 3 unoccupied instances at all times. Which scaling type should you use?

  • A. Basic Scaling with max_instancesset to 3.
  • B. Basic Scaling with min_instancesset to 3.
  • C. Automatic Scaling with min_idle_instancesset to 3.
  • D. Manual Scaling with 3 instances.

Answer: C

Explanation:
Explanation/Reference: https://cloud.google.com/appengine/docs/standard/python/how-instances-are-managed

 

NEW QUESTION 65
You need to produce a list of the enabled Google Cloud Platform APIs for a GCP project using the gcloud command line in the Cloud Shell. The project name is my-project. What should you do?

  • A. Run gcloud infoto view the account value, and then run gcloud services list -- account <Account>.
  • B. Run gcloud projects describe <project ID>to verify the project value, and then run gcloud services list --available.
  • C. Run gcloud projects listto get the project ID, and then run gcloud services list -
    -project <project ID>.
  • D. Run gcloud initto set the current project to my-project, and then run gcloud services list --available.

Answer: C

 

NEW QUESTION 66
You have an instance group that you want to load balance. You want the load balancer to terminate the client SSL session. The instance group is used to serve a public web application over HTTPS. You want to follow Google-recommended practices. What should you do?

  • A. Configure an HTTP(S) load balancer.
  • B. Configure an internal TCP load balancer.
  • C. Configure an external TCP proxy load balancer.
  • D. Configure an external SSL proxy load balancer.

Answer: A

Explanation:
For HTTP(s) Load balancer, the client SSL session terminates at the load balancer.

 

NEW QUESTION 67
You want to add a new auditor to a Google Cloud Platform project. The auditor should be allowed to read, but not modify, all project items.
How should you configure the auditor's permissions?

  • A. Create a custom role with view-only project permissions. Add the user's account to the custom role.
  • B. Create a custom role with view-only service permissions. Add the user's account to the custom role.
  • C. Select the built-in IAM service Viewer role. Add the user's account to this role.
  • D. Select the built-in IAM project Viewer role. Add the user's account to this role.

Answer: D

Explanation:
https://cloud.google.com/resource-manager/docs/access-control-proj

 

NEW QUESTION 68
You need to grant access for three users so that they can view and edit table data on a Cloud Spanner instance. What should you do?

  • A. Run gcloud iam roles describe roles/spanner.databaseUser.
    Add the users to the role.
  • B. Run gcloud iam roles describe roles/spanner.viewer - -project my-project.
    Add the users to the role.
  • C. Run gcloud iam roles describe roles/spanner.databaseUser.
    Add the users to a new group. Add the group to the role.
  • D. Run gcloud iam roles describe roles/spanner.viewer - -project my-project.
    Add the users to a new group. Add the group to the role.

Answer: A

 

NEW QUESTION 69
Your company publishes large files on an Apache web server that runs on a Compute Engine instance. The Apache web server is not the only application running in the project. You want to receive an email when the egress network costs for the server exceed 100 dollars for the current month as measured by Google Cloud.
What should you do?

  • A. Use the Cloud Logging Agent to export the Apache web server logs to Cloud Logging. Create a Cloud Function that uses BigQuery to parse the HTTP response log data in Cloud Logging for the current month and sends an email if the size of all HTTP responses, multiplied by current Google Cloud egress prices, totals over 100 dollars. Schedule the Cloud Function using Cloud Scheduler to run hourly.
  • B. Set up a budget alert on the project with an amount of 100 dollars, a threshold of 100%, and notification type of "email."
  • C. Export the billing data to BigQuery. Create a Cloud Function that uses BigQuery to sum the egress network costs of the exported billing data for the Apache web server for the current month and sends an email if it is over 100 dollars. Schedule the Cloud Function using Cloud Scheduler to run hourly.
  • D. Set up a budget alert on the billing account with an amount of 100 dollars, a threshold of 100%, and notification type of "email."

Answer: B

Explanation:
Explanation

 

NEW QUESTION 70
Your Dataproc cluster runs in a single Virtual Private Cloud (VPC) network in a single subnet with range 172.16.20.128/25. There are no private IP addresses available in the VPC network. You want to add new VMs to communicate with your cluster using the minimum number of steps.
What should you do?

  • A. Create a new VPC network for the VMs with a subnet of 172.32.0.0/16.
    Enable VPC network Peering between the Dataproc VPC network and the VMs VPC network.
    Configure a custom Route exchange.
  • B. Create a new VPC network for the VMs.
    Enable VPC Peering between the VMs' VPC network and the Dataproc cluster VPC network.
  • C. Modify the existing subnet range to 172.16.20.0/24.
  • D. Create a new Secondary IP Range in the VPC and configure the VMs to use that range.

Answer: B

Explanation:
A subnet has a single primary IP address range and, optionally, one or more secondary IP address ranges. For each subnet IP address range, Google Cloud creates a subnet route. When you use VPC Network Peering, Google Cloud always exchanges the subnet routes that don't use privately reused public IP addresses between the two peered networks. If firewall rules in each network permit communication, VM instances in one network can communicate with instances in the peered network.
Reference: https://cloud.google.com/vpc/docs/vpc-peering

 

NEW QUESTION 71
You've created a bucket to store some data archives for compliance. The data isn't likely to need to be viewed. However, you need to store it for at least 7 years. What is the best default storage class?

  • A. Multi-regional
  • B. Regional
  • C. Nearline
  • D. Coldline

Answer: B,D

 

NEW QUESTION 72
You need to create a new billing account and then link it with an existing Google Cloud Platform project.
What should you do?

  • A. Verify that you are Project Billing Manager for the GCP project. Create a new billing account and link the new billing account to the existing project.
  • B. Verify that you are Billing Administrator for the billing account. Update the existing project to link it to the existing billing account.
  • C. Verify that you are Project Billing Manager for the GCP project. Update the existing project to link it to the existing billing account.
  • D. Verify that you are Billing Administrator for the billing account. Create a new project and link the new project to the existing billing account.

Answer: D

 

NEW QUESTION 73
A Solutions Architect is designing the architecture for a new three-tier web-based e-commerce site that must be available 24/7. Requests are expected to range from 100 to 10,000 each minute. Usage can vary depending on time of day, holidays, and promotions. The design should be able to handle these volumes, with the ability to handle higher volumes if necessary.
How should the Architect design the architecture to ensure the web tier is cost-optimized and can handle the expected traffic? (Choose two.)

  • A. Use Amazon Route 53 to route traffic to the correct region.
  • B. Launch Amazon EC2 instances in an Auto Scaling group behind an ELB.
  • C. Store all static files in a multi-AZ Amazon Aurora database.
  • D. Create an CloudFront distribution pointing to static content in Amazon S3.
  • E. Use Amazon S3 multi-part uploads to improve upload times.

Answer: B,D

 

NEW QUESTION 74
You are setting up a Windows VM on Compute Engine and want to make sure you can log in to the VM via RDP. What should you do?

  • A. After the VM has been created, use your Google Account credentials to log in into the VM.
  • B. After the VM has been created, download the JSON private key for the default Compute Engine service account. Use the credentials in the JSON file to log in to the VM.
  • C. When creating the VM, add metadata to the instance using `windows-password' as the key and a password as the value.
  • D. After the VM has been created, use gcloud compute reset-windows-password to retrieve the login credentials for the VM.

Answer: D

Explanation:
https://cloud.google.com/sdk/gcloud/reference/beta/compute/reset-windows-password

 

NEW QUESTION 75
......


Career prospects

The professionals with the Google Associate Cloud Engineer certification can explore different job roles. Some of these include a Cloud Operations Engineer, a Cloud Services Engineer, a Cloud Solutions Systems Engineer, a Cloud Network Engineer, and a Software Engineer. The average salary for these certified specialists is $74,000 per year. The actual salary depends on your position and level of experience.

 

Associate-Cloud-Engineer Dumps for Pass Guaranteed - Pass Associate-Cloud-Engineer Exam: https://www.passtestking.com/Google/Associate-Cloud-Engineer-practice-exam-dumps.html

Associate-Cloud-Engineer Exam Dumps - Try Best Associate-Cloud-Engineer Exam Questions: https://drive.google.com/open?id=10RvvL-z19gPDVp27zZeZi6y_Ay9Fx9h1

Related Articles

more
Go To Associate-Cloud-Engineer Questions