
[Sep-2021] Verified Google Exam Dumps with Professional-Cloud-DevOps-Engineer Exam Study Guide
Best Quality Google Professional-Cloud-DevOps-Engineer Exam Questions ActualTestsIT Realistic Practice Exams [2021]
NEW QUESTION 28
You support the backend of a mobile phone game that runs on a Google Kubernetes Engine (GKE) cluster. The application is serving HTTP requests from users. You need to implement a solution that will reduce the network cost. What should you do?
- A. Configure a Google Cloud HTTP Load Balancer as Ingress.
- B. Configure the VPC as a Shared VPC Host project.
- C. Configure your network services on the Standard Tier.
- D. Configure your Kubernetes duster as a Private Cluster.
Answer: D
NEW QUESTION 29
You support an application deployed on Compute Engine. The application connects to a Cloud SQL instance to store and retrieve dat a. After an update to the application, users report errors showing database timeout messages. The number of concurrent active users remained stable. You need to find the most probable cause of the database timeout. What should you do?
- A. Use Stackdriver Profiler to visualize the resources utilization throughout the application.
- B. Determine whether there is an increased number of connections to the Cloud SQL instance.
- C. Use Cloud Security Scanner to see whether your Cloud SQL is under a Distributed Denial of Service (DDoS) attack.
- D. Check the serial port logs of the Compute Engine instance.
Answer: B
NEW QUESTION 30
You are running an application in a virtual machine (VM) using a custom Debian image. The image has the Stackdriver Logging agent installed. The VM has the cloud-platform scope. The application is logging information via syslog. You want to use Stackdriver Logging in the Google Cloud Platform Console to visualize the logs. You notice that syslog is not showing up in the "All logs" dropdown list of the Logs Viewer. What is the first thing you should do?
- A. Install the most recent version of the Stackdriver agent.
- B. Look for the agent's test log entry in the Logs Viewer.
- C. Verify the VM service account access scope includes the monitoring.write scope.
- D. SSH to the VM and execute the following commands on your VM: ps ax I grep fluentd
Answer: D
NEW QUESTION 31
You are running an experiment to see whether your users like a new feature of a web application. Shortly after deploying the feature as a canary release, you receive a spike in the number of 500 errors sent to users, and your monitoring reports show increased latency. You want to quickly minimize the negative impact on users. What should you do first?
- A. Roll back the experimental canary release.
- B. Trace the origin of 500 errors and the root cause of increased latency.
- C. Record data for the postmortem document of the incident.
- D. Start monitoring latency, traffic, errors, and saturation.
Answer: D
NEW QUESTION 32
Your product is currently deployed in three Google Cloud Platform (GCP) zones with your users divided between the zones. You can fail over from one zone to another, but it causes a 10-minute service disruption for the affected users. You typically experience a database failure once per quarter and can detect it within five minutes. You are cataloging the reliability risks of a new real-time chat feature for your product. You catalog the following information for each risk:
* Mean Time to Detect (MUD} in minutes
* Mean Time to Repair (MTTR) in minutes
* Mean Time Between Failure (MTBF) in days
* User Impact Percentage
The chat feature requires a new database system that takes twice as long to successfully fail over between zones. You want to account for the risk of the new database failing in one zone. What would be the values for the risk of database failover with the new system?
- A. MTTD: 5
MTTR: 10
MTBF: 90
Impact: 33% - B. MTTD:5
MTTR: 20
MTBF: 90
Impact: 33% - C. MTTD:5
MTTR: 20
MTBF: 90
Impact: 50% - D. MTTD:5
MTTR: 10
MTBF: 90
Impact 50%
Answer: A
NEW QUESTION 33
You are part of an organization that follows SRE practices and principles. You are taking over the management of a new service from the Development Team, and you conduct a Production Readiness Review (PRR). After the PRR analysis phase, you determine that the service cannot currently meet its Service Level Objectives (SLOs). You want to ensure that the service can meet its SLOs in production. What should you do next?
- A. djust the SLO targets to be achievable by the service so you can bring it into production.
- B. Notify the development team that they will have to provide production support for the service.
- C. Identify recommended reliability improvements to the service to be completed before handover.
- D. Bring the service into production with no SLOs and build them when you have collected operational data.
Answer: C
NEW QUESTION 34
Your company follows Site Reliability Engineering practices. You are the Incident Commander for a new. customer-impacting incident. You need to immediately assign two incident management roles to assist you in an effective incident response. What roles should you assign?
Choose 2 answers
- A. Communications Lead
- B. Engineering Lead
- C. Operations Lead
- D. External Customer Communications Lead
- E. Customer Impact Assessor
Answer: C,D
NEW QUESTION 35
You support an application running on GCP and want to configure SMS notifications to your team for the most critical alerts in Stackdriver Monitoring. You have already identified the alerting policies you want to configure this for. What should you do?
- A. Ensure that your team members set their SMS/phone numbers in their Stackdriver Profile. Select the SMS notification option for each alerting policy and then select the appropriate SMS/phone numbers from the list.
- B. Select the Webhook notifications option for each alerting policy, and configure it to use a third-party integration tool. Ensure that your team members add their SMS/phone numbers to the external tool.
- C. Configure a Slack notification for each alerting policy. Set up a Slack-to-SMS integration to send SMS messages when Slack messages are received. Ensure that your team members add their SMS/phone numbers to the external integration.
- D. Download and configure a third-party integration between Stackdriver Monitoring and an SMS gateway. Ensure that your team members add their SMS/phone numbers to the external tool.
Answer: C
NEW QUESTION 36
Your application images are built using Cloud Build and pushed to Google Container Registry (GCR). You want to be able to specify a particular version of your application for deployment based on the release version tagged in source control. What should you do when you push the image?
- A. Use Cloud Build to include the release version tag in the application image.
- B. Use GCR digest versioning to match the image to the tag in source control.
- C. Supply the source control tag as a parameter within the image name.
- D. Reference the image digest in the source control tag.
Answer: A
NEW QUESTION 37
You are responsible for creating and modifying the Terraform templates that define your Infrastructure. Because two new engineers will also be working on the same code, you need to define a process and adopt a tool that will prevent you from overwriting each other's code. You also want to ensure that you capture all updates in the latest version. What should you do?
- A. * Store your code in a Git-based version control system.
* Establish a process that includes code reviews by peers and unit testing to ensure integrity and functionality before integration of code.
* Establish a process where the fully integrated code in the repository becomes the latest master version. - B. * Store your code in a Git-based version control system.
* Establish a process that allows developers to merge their own changes at the end of each day.
* Package and upload code lo a versioned Cloud Storage bucket as the latest master version. - C. * Store your code as text files in Google Drive in a defined folder structure that organizes the files.
* At the end of each day, confirm that all changes have been captured in the files within the folder structure and create a new .zip archive with a predefined naming convention.
* Upload the .zip archive to a versioned Cloud Storage bucket and accept it as the latest version. - D. * Store your code as text files in Google Drive in a defined folder structure that organizes the files.
* At the end of each day. confirm that all changes have been captured in the files within the folder structure.
* Rename the folder structure with a predefined naming convention that increments the version.
Answer: B
NEW QUESTION 38
You currently store the virtual machine (VM) utilization logs in Stackdriver. You need to provide an easy-to-share interactive VM utilization dashboard that is updated in real time and contains information aggregated on a quarterly basis. You want to use Google Cloud Platform solutions. What should you do?
- A. 1. Export VM utilization logs from Stackdriver to Cloud Pub/Sub.
2. From Cloud Pub/Sub, send the logs to a Security Information and Event Management (SIEM) system.
3. Build the dashboards in the SIEM system and share with your stakeholders. - B. 1. Export VM utilization logs from Stackdriver to BigOuery.
2. Create a dashboard in Data Studio.
3. Share the dashboard with your stakeholders. - C. 1. Export VM utilization logs (rom Stackdriver to BigQuery.
2. From BigQuery. export the logs to a CSV file.
3. Import the CSV file into Google Sheets.
4. Build a dashboard in Google Sheets and share it with your stakeholders. - D. 1. Export VM utilization logs from Stackdriver to a Cloud Storage bucket.
2. Enable the Cloud Storage API to pull the logs programmatically.
3. Build a custom data visualization application.
4. Display the pulled logs in a custom dashboard.
Answer: B
NEW QUESTION 39
Your company follows Site Reliability Engineering practices. You are the person in charge of Communications for a large, ongoing incident affecting your customer-facing applications. There is still no estimated time for a resolution of the outage. You are receiving emails from internal stakeholders who want updates on the outage, as well as emails from customers who want to know what is happening. You want to efficiently provide updates to everyone affected by the outage. What should you do?
- A. Focus on responding to internal stakeholders at least every 30 minutes. Commit to "next update" times.
- B. Provide all internal stakeholder emails to the Incident Commander, and allow them to manage internal communications. Focus on providing responses directly to customers.
- C. Provide periodic updates to all stakeholders in a timely manner. Commit to a "next update" time in all communications.
- D. Delegate the responding to internal stakeholder emails to another member of the Incident Response Team. Focus on providing responses directly to customers.
Answer: A
NEW QUESTION 40
You support a high-traffic web application with a microservice architecture. The home page of the application displays multiple widgets containing content such as the current weather, stock prices, and news headlines. The main serving thread makes a call to a dedicated microservice for each widget and then lays out the homepage for the user. The microservices occasionally fail; when that happens, the serving thread serves the homepage with some missing content. Users of the application are unhappy if this degraded mode occurs too frequently, but they would rather have some content served instead of no content at all. You want to set a Service Level Objective (SLO) to ensure that the user experience does not degrade too much. What Service Level Indicator {SLI) should you use to measure this?
- A. A freshness SLI: the proportion of widgets that have been updated within the last 10 minutes
- B. A latency SLI: the ratio of microservice calls that complete in under 100 ms to the total number of microservice calls
- C. A quality SLI: the ratio of non-degraded responses to total responses
- D. An availability SLI: the ratio of healthy microservices to the total number of microservices
Answer: D
NEW QUESTION 41
Your team has recently deployed an NGINX-based application into Google Kubernetes Engine (GKE) and has exposed it to the public via an HTTP Google Cloud Load Balancer (GCLB) ingress. You want to scale the deployment of the application's frontend using an appropriate Service Level Indicator (SLI). What should you do?
- A. Configure the horizontal pod autoscaler to use the average response time from the Liveness and Readiness probes.
- B. Expose the NGINX stats endpoint and configure the horizontal pod autoscaler to use the request metrics exposed by the NGINX deployment.
- C. Install the Stackdriver custom metrics adapter and configure a horizontal pod autoscaler to use the number of requests provided by the GCLB.
- D. Configure the vertical pod autoscaler in GKE and enable the cluster autoscaler to scale the cluster as pods expand.
Answer: B
NEW QUESTION 42
You support a multi-region web service running on Google Kubernetes Engine (GKE) behind a Global HTTP'S Cloud Load Balancer (CLB). For legacy reasons, user requests first go through a third-party Content Delivery Network (CDN). which then routes traffic to the CLB. You have already implemented an availability Service Level Indicator (SLI) at the CLB level. However, you want to increase coverage in case of a potential load balancer misconfiguration. CDN failure, or other global networking catastrophe. Where should you measure this new SLI?
Choose 2 answers
- A. Instrumentation coded directly in the client
- B. Your application servers' logs
- C. Metrics exported from the application servers
- D. GKE health checks for your application servers
- E. A synthetic client that periodically sends simulated user requests
Answer: C,D
NEW QUESTION 43
Your application artifacts are being built and deployed via a CI/CD pipeline. You want the CI/CD pipeline to securely access application secrets. You also want to more easily rotate secrets in case of a security breach. What should you do?
- A. Store secrets in a separate configuration file on Git. Provide select developers with access to the configuration file.
- B. Encrypt the secrets and store them in the source code repository. Store a decryption key in a separate repository and grant your pipeline access to it
- C. Store secrets in Cloud Storage encrypted with a key from Cloud KMS. Provide the CI/CD pipeline with access to Cloud KMS via IAM.
- D. Prompt developers for secrets at build time. Instruct developers to not store secrets at rest.
Answer: A
NEW QUESTION 44
You have a CI/CD pipeline that uses Cloud Build to build new Docker images and push them to Docker Hub. You use Git for code versioning. After making a change in the Cloud Build YAML configuration, you notice that no new artifacts are being built by the pipeline. You need to resolve the issue following Site Reliability Engineering practices. What should you do?
- A. Run a Git compare between the previous and current Cloud Build Configuration files to find and fix the bug.
- B. Disable the CI pipeline and revert to manually building and pushing the artifacts.
- C. Change the CI pipeline to push the artifacts to Container Registry instead of Docker Hub.
- D. Upload the configuration YAML file to Cloud Storage and use Error Reporting to identify and fix the issue.
Answer: B
NEW QUESTION 45
You need to reduce the cost of virtual machines (VM| for your organization. After reviewing different options, you decide to leverage preemptible VM instances. Which application is suitable for preemptible VMs?
- A. The organization's public-facing website
- B. A distributed, eventually consistent NoSQL database cluster with sufficient quorum
- C. A scalable in-memory caching system
- D. A GPU-accelerated video rendering platform that retrieves and stores videos in a storage bucket
Answer: D
NEW QUESTION 46
You support an application running on App Engine. The application is used globally and accessed from various device types. You want to know the number of connections. You are using Stackdriver Monitoring for App Engine. What metric should you use?
- A. tcp_ssl_proxy/new_connections
- B. tcp_ssl_proxy/open_connections
- C. flex/connections/current
- D. (lex/jnstance/connections/current
Answer: C
NEW QUESTION 47
You support a high-traffic web application that runs on Google Cloud Platform (GCP). You need measure application reliability from a user perspective without making any engineering changes to it. What should you do? (Choose two.)
- A. Use current and historic Request Logs to trace customer interaction with the application.
- B. Modify the code to capture additional information for user interaction.
- C. Create new synthetic clients to simulate a user journey using the application.
- D. Review current application metrics and add new ones as needed.
- E. Analyze the web proxy logs only and capture response time of each request.
Answer: B,C
NEW QUESTION 48
You encountered a major service outage that affected all users of the service for multiple hours. After several hours of incident management, the service returned to normal, and user access was restored. You need to provide an incident summary to relevant stakeholders following the Site Reliability Engineering recommended practices. What should you do first?
- A. Develop a post-mortem to be distributed to stakeholders.
- B. Require the engineer responsible to write an apology email to all stakeholders.
- C. Call individual stakeholders lo explain what happened.
- D. Send the Incident State Document to all the stakeholders.
Answer: C
NEW QUESTION 49
Your company follows Site Reliability Engineering principles. You are writing a postmortem for an incident, triggered by a software change, that severely affected users. You want to prevent severe incidents from happening in the future. What should you do?
- A. Follow up with the employees who reviewed the changes and prescribe practices they should follow in the future.
- B. Ensure that test cases that catch errors of this type are run successfully before new software releases.
- C. Identify engineers responsible for the incident and escalate to their senior management.
- D. Design a policy that will require on-call teams to immediately call engineers and management to discuss a plan of action if an incident occurs.
Answer: A
NEW QUESTION 50
Your application services run in Google Kubernetes Engine (GKE). You want to make sure that only images from your centrally-managed Google Container Registry (GCR) image registry in the altostrat-images project can be deployed to the cluster while minimizing development time. What should you do?
- A. Add logic to the deployment pipeline to check that all manifests contain only images from gcr.io/altostrat-images.
- B. Add a tag to each image in gcr.io/altostrat-images and check that this tag is present when the image is deployed.
- C. Use a Binary Authorization policy that includes the whitelist name pattern gcr.io/attostrat-images/.
- D. Create a custom builder for Cloud Build that will only push images to gcr.io/altostrat-images.
Answer: B
NEW QUESTION 51
......
Authentic Best resources for Professional-Cloud-DevOps-Engineer: https://www.actualtestsit.com/Google/Professional-Cloud-DevOps-Engineer-exam-prep-dumps.html
Professional-Cloud-DevOps-Engineer Test Engine Practice Exam: https://drive.google.com/open?id=10A59v1Lk2xBRP5JvJERygC0O21Rv8s4O