Google Cloud Digital Leader Practice Exam (2022.06.03)

[GCP ]Google Cloud Certified:Foundational Cloud Digital Leader
Written by E.G -
on 8月 1, 2022

Ace Your Google Cloud Digital Leader with Practice Exams.

Google Cloud Certified – Google Cloud Digital Leader Practice Exam (Q 25)

Question 1

Your manager wants to restrict communication of all virtual machines with internet access with resources in another network or with a resource outside Compute Engine.
It’s expected that different teams will create new folders and projects in the near future.
How would you restrict all virtual machines from having an external IP address?

  • A. Define an organization policy on all existing folders to define a constraint to restrict virtual machine instances from having an external IP address.
  • B. Define an organization policy at the root organization node to restrict virtual machine instances from having an external IP address.
  • C. Communicate with the different teams and agree that each time a virtual machine is created, it must be configured without an external IP address.
  • D. Define an organization policy on all existing projects to restrict virtual machine instances from having an external IP address.

Correct Answer: B

Question 2

Your organization wants to be sure that its expenditures on cloud services are in line with the budget.
Which two Google Cloud cost management features help your organization gain greater visibility into its cloud resource costs? (Choose two.)

  • A. Resource labels
  • B. Sustained use discounts
  • C. Financial governance policies
  • D. Payments profile
  • F. Billing dashboards

Correct Answer: A, C

Question 3

Your organization is migrating to Google Cloud. As part of that effort, it needs to move terabytes of data from on-premises file servers to Cloud Storage.
Your organization wants the migration process to be automated and to be managed by Google. Your organization has an existing Dedicated Interconnect connection that it wants to use.
Which Google Cloud product or feature should your organization use?

  • A. BigQuery Data Transfer Service
  • B. Transfer Appliance
  • C. Storage Transfer Service
  • D. Migrate for Anthos

Correct Answer: C

Question 4

As your organization increases its release velocity, the VM-based application upgrades take a long time to perform rolling updates due to OS boot times.
You need to make the application deployments faster.
What should your organization do?

  • A. Convert your applications into containers.
  • B. Increase the resources of your VMs.
  • C. Automate your upgrade rollouts.
  • D. Migrate your VMs to the cloud, and add more resources to them.

Correct Answer: C

Question 5

Your company needs to segment Google Cloud resources used by each team from the others.
The teams’ efforts are changing frequently, and you need to reduce operational risk and maintain cost visibility.
Which approach does Google recommend?

  • A. One organization per team.
  • B. One project that contains all of each team’s resources.
  • C. One project per team.
  • D.One top-level folder per team.

Correct Answer: C

Question 6

What is the difference between Standard and Coldline storage?

  • A. Coldline storage is for data for which a slow transfer rate is acceptable.
  • B. Standard and Coldline storage use different APIs.
  • C. Coldline storage is for infrequently accessed data.
  • D. Standard and Coldline storage have different durability guarantees.

Correct Answer: C

Question 7

Your organization uses Active Directory to authenticate users.
Users Google account access must be removed when their Active Directory account is terminated.How should your organization meet this requirement?

  • A. Configure two-factor authentication in the Google domain.
  • B. Configure single sign-on in the Google domain.
  • C. Configure BeyondCorp and Identity-Aware Proxy in the Google domain.
  • D. Remove the Google account from all IAM policies.

Correct Answer: B

Question 8

Your organization needs to establish private network connectivity between its on-premises network and its workloads running in Google Cloud.
You need to be able to set up the connection as soon as possible.
Which Google Cloud product or feature should you use?

  • A. Cloud Interconnect
  • B. Direct Peering
  • C. Cloud VPN
  • D. Cloud CDN

Correct Answer: C

Private Google Access for on-premises hosts provides a way for on-premises systems to connect to Google APIs and services by routing traffic through a Cloud VPN tunnel.

Question 9

You are migrating workloads to the cloud.
The goal of the migration is to serve customers worldwide as quickly as possible. According to local regulations, certain data is required to be stored in a specific geographic area, and it can be served worldwide. You need to design the architecture and deployment for your workloads.
What should you do?

  • A. Select a public cloud provider that is only active in the required geographic area.
  • B. Select a private cloud provider that globally replicates data storage for fast data access.
  • C. Select a public cloud provider that guarantees data location in the required geographic area.
  • D. Select a private cloud provider that is only active in the required geographic area.

Correct Answer: D

Many companies choose private cloud over public cloud because private cloud is an easier way (or the only way) to meet their regulatory compliance requirements. Others choose private cloud because their workloads deal with confidential documents, intellectual property, personally identifiable information (PII), medical records, financial data, or other sensitive data.

Question 10

Which Google Cloud product is designed to reduce the risks of handling personally identifiable information (PII)?

  • A. Google Cloud Armor
  • B. Cloud Data Loss Prevention
  • C. Secret Manager
  • D. Cloud Storage

Correct Answer: B

Question 11

Each of the three cloud service models – infrastructure as a service (IaaS), platform as a service (PaaS), and software as a service (SaaS) – offers benefits between flexibility and levels of management by the cloud provider and the customer.
Why would SaaS be the right choice of service model?

  • A. You want a balance between flexibility for the customer and the level of management by the cloud provider.
  • B. You want to minimize the level of management by the customer.
  • C. You want to maximize flexibility for the customer.
  • D. You want to be able to shift your emphasis between flexibility and management by the cloud provider as business needs change.

Correct Answer: B

Benefits of SaaS
The main benefit of SaaS is that it offloads all infrastructure and application management to the SaaS vendor.

Question 12

You are a program manager within a Software as a Service (SaaS) company that offers rendering software for animation studios.
Your team needs the ability to allow scenes to be scheduled at will and to be interrupted at any time to restart later. Any individual scene rendering takes less than 12 hours to complete, and there is no service-level agreement (SLA) for the completion time for all scenes. Results will be stored in a global Cloud Storage bucket. The computer resources are not bound to any single geographical location. This software needs to run on Google Cloud in a cost-optimized way.
What should you do?

  • A. Create a reservation for the minimum number of Compute Engine instances you will use.
  • B. Start more instances with fewer virtual centralized processing units (vCPUs) instead of fewer instances with more vCPUs.
  • C. Deploy the application on Compute Engine using preemptible instances.
  • D. Develop the application so it can run in an unmanaged instance group.

Correct Answer: C

Question 13

How do Migrate for Compute Engine and Migrate for Anthos differ?

  • A. Migrate for Anthos migrates to containers, and Migrate for Compute Engine migrates to virtual machines.
  • B. Migrate for Compute Engine charges for ingress, but Migrate for Anthos does not.
  • C. Migrate for Compute Engine is closed source, and Migrate for Anthos is open source.
  • D. Unlike Migrate for Anthos, Migrate for Compute Engine assumes that the migration source is VMware vSphere.

Correct Answer: A

Question 14

Your organization runs all its workloads on Compute Engine virtual machine instances.
Your organization has a security requirement: the virtual machines are not allowed to access the public internet. The workloads running on those virtual machines need to access BigQuery and Cloud Storage, using their publicly accessible interfaces, without violating the security requirement.
Which Google Cloud product or feature should your organization use?

  • A. Private Google Access
  • B. VPC internal load balancers
  • C. Identity-Aware Proxy
  • D. Cloud NAT (network address translation)

Correct Answer: D

Question 15

Your organization needs to restrict access to a Cloud Storage bucket.
Only employees who are based in Canada should be allowed to view the contents.
What is the most effective and efficient way to satisfy this requirement?

  • A. Configure Google Cloud Armor to allow access to the bucket only from IP addresses based in Canada.
  • B. Create a group consisting of all Canada-based employees, and give the group access to the bucket.
  • C. Deploy the Cloud Storage bucket to a Google Cloud region in Canada.
  • D. Give each employee who is based in Canada access to the bucket.

Correct Answer: B

Question 16

Your company is running the majority of its workloads in a co-located data center.
The workloads are running on virtual machines (VMs) on top of a hypervisor and use either Linux or Windows server editions. As part of your company’s transformation strategy, you need to modernize workloads as much as possible by adopting cloud-native technologies. You need to migrate the workloads into Google Cloud.
What should you do?

  • A. Migrate the workloads using Migrate for Compute Engine.
  • B. Export the VMs into VMDK format, and import them into Google Cloud VMware Engine.
  • C. Migrate the workloads using Migrate for Anthos.
  • D. Export the VMs into VMDK format, and import them into Compute Engine.

Correct Answer: C

Question 17

Your organization needs a large amount of extra computing power within the next two weeks.
After those two weeks, the need for the additional resources will end.
Which is the most cost-effective approach?

  • A. Purchase multiple physical computers and scale workload across them.
  • B. Purchase one very powerful physical computer.
  • C. Start a very powerful virtual machine without using a committed use discount.
  • D. Use a committed use discount to reserve a very powerful virtual machine.

Correct Answer: C

Question 18

You are currently managing workloads running on Windows Server for which your company owns the licenses.
Your workloads are only needed during working hours, which allows you to shut down the instances during the weekend. Your Windows Server licenses are up for renewal in a month, and you want to optimize your license cost.
What should you do?

  • A. Migrate the workloads to Compute Engine with a bring-your-own-license (BYOL) model.
  • B. Renew your licenses for an additional period of 2 years. Negotiate a cost reduction by committing to an automatic renewal of the licenses at the end of the 2 year period.
  • C. Migrate the workloads to Compute Engine with a pay-as-you-go (PAYG) model.
  • D. Renew your licenses for an additional period of 3 years. Renew your licenses for an additional period of 3 years. Negotiate a cost reduction with your current hosting provider wherein infrastructure cost is reduced when workloads are not in use.

Correct Answer: A

Question 19

Your organization wants to run a container-based application on Google Cloud.
This application is expected to increase in complexity. You have a security need for fine-grained control of traffic between the containers. You also have an operational need to exercise fine-grained control over the application’s scaling policies.
What Google Cloud product or feature should your organization use?

  • A. App Engine
  • B. Cloud Run
  • C. Compute Engine virtual machines
  • D. Google Kubernetes Engine cluster

Correct Answer: B

Question 20

Your company has recently acquired three growing startups in three different countries.
You want to reduce overhead in infrastructure management and keep your costs low without sacrificing security and quality of service to your customers.
How should you meet these requirements?

  • A. Host all your subsidiaries’ services together with your existing services on the public cloud.
  • B. Build a homogenous infrastructure at each subsidiary, and invest in training their engineers.
  • C. Build a homogenous infrastructure at each subsidiary, and invest in hiring more engineers.
  • D. Host all your subsidiaries’ services on-premises together with your existing services.

Correct Answer:A

Question 21

Your organization wants to migrate your on-premises environment to Google Cloud.
The on-premises environment consists of containers and virtual machine instances.
Which Google Cloud products can help to migrate the container images and the virtual machine disks?

  • A. Compute Engine and Filestore
  • B. Artifact Registry and Cloud Storage
  • C. Dataflow and BigQuery
  • D. Pub/Sub and Cloud Storage

Correct Answer: A

Question 22

Which Google Cloud product or feature makes specific recommendations based on security risks and compliance violations?

  • A. Google Cloud Armor
  • B. Cloud Deployment Manager
  • C. Google Cloud firewalls
  • D. Security Command Center

Correct Answer: D

Question 23

Your organization is defining the resource hierarchy for its new application in Google Cloud.
You need separate development and production environments. The production environment will be deployed in Compute Engine in two regions.
Which structure should your organization choose?

  • A. Create one project for the development environment and one project for the production environment.
  • B. Create a single project for all environments. Use labels to segregate resources by environment.
  • C. Create a single project for all environments. Use tags to segregate resources by environment.
  • D. Create two projects for the development environment and two projects for the production environment (one for each region).

Correct Answer: D

Question 24

Your team is publishing research results and needs to make large amounts of data available to other researchers within the professional community and the public at minimum cost.
How should you host the data?

  • A. Use a Cloud Storage bucket and provide Signed URLs for the data files.
  • B. Use a Cloud Storage bucket and set up a Cloud Interconnect connection to allow access to the data.
  • C. Host the data on-premises. and set up a Cloud Interconnect connection to allow access to the data.
  • D. Use a Cloud Storage bucket and enable “Requester Pays.”

Correct Answer: D

Question 25

Your organization wants to migrate its data management solutions to Google Cloud because it needs to dynamically scale up or down and to run transactional SQL queries against historical data at scale.
Which Google Cloud product or service should your organization use?

  • A. BigQuery
  • B. Cloud Spanner
  • C. Cloud Bigtable
  • D. Pub/Sub

Correct Answer: B

Categories:

Google Cloud Platform

Tags:

Google Cloud Digital Leader

Comments are closed