[Nov 25, 2022] Dumps Collection Professional-Cloud-DevOps-Engineer Test Engine Dumps Training With 82 Questions [Q42-Q63]

[Nov 25, 2022] Dumps Collection Professional-Cloud-DevOps-Engineer Test Engine Dumps Training With 82 Questions

Google Professional-Cloud-DevOps-Engineer Dumps - 100% Cover Real Exam Questions

Preparation Process

The best way to prepare for the Google Professional Cloud DevOps Engineer certification exam is to explore the training tools offered on its official website. The candidates can start their preparation process by reviewing the topics in the study guide. This will give them an idea of what they need to cover studying for the test and plan their learning time properly.

The official platform recommends that the potential individuals complete the Professional DevOps Engineer learning path, which includes in-person classes, online training, and hands-on labs for a better understating of the exam content. The courses within this path cover each aspect of the certification test in depth improving the candidates’ chances of passing the exam at the first attempt. Apart from the learning path, the applicants can take advantage of additional resources such as Google Cloud documentation and Google Cloud solutions. There is also the option of signing up for a dedicated webinar to learn valuable prep tips from the Google experts. At the end of your preparation, use the official sample questions to familiarize yourself with the format of exam questions and check the level of readiness.

What is the duration, language, and format of Google Professional Cloud DevOps Engineer Exam

• Number of Questions: 50-60
• Length of Examination: 120 minutes
• Format: Multiple choices, multiple select
• Passing score: 80%
• Language: English

 

NEW QUESTION 42
You support a multi-region web service running on Google Kubernetes Engine (GKE) behind a Global HTTP'S Cloud Load Balancer (CLB). For legacy reasons, user requests first go through a third-party Content Delivery Network (CDN). which then routes traffic to the CLB. You have already implemented an availability Service Level Indicator (SLI) at the CLB level. However, you want to increase coverage in case of a potential load balancer misconfiguration. CDN failure, or other global networking catastrophe. Where should you measure this new SLI?
Choose 2 answers

• A. Your application servers' logs
• B. A synthetic client that periodically sends simulated user requests
• C. Instrumentation coded directly in the client
• D. GKE health checks for your application servers
• E. Metrics exported from the application servers

Answer: B,C

 

NEW QUESTION 43
Your company is developing applications that are deployed on Google Kubernetes Engine (GKE). Each team manages a different application. You need to create the development and production environments for each team, while minimizing costs. Different teams should not be able to access other teams' environments. What should you do?

• A. Create one GCP Project per team. In each project, create a cluster with a Kubernetes namespace for Development and one for Production. Grant the teams IAM access to their respective clusters.
• B. Create one GCP Project per team. In each project, create a cluster for Development and one for Production. Grant the teams IAM access to their respective clusters.
• C. Create a Development and a Production GKE cluster in separate projects. In each cluster, create a Kubernetes namespace per team, and then configure Identity Aware Proxy so that each team can only access its own namespace.
• D. Create a Development and a Production GKE cluster in separate projects. In each cluster, create a Kubernetes namespace per team, and then configure Kubernetes Role-based access control (RBAC) so that each team can only access its own namespace.

Answer: D

Explanation:
https://cloud.google.com/architecture/prep-kubernetes-engine-for-prod#roles_and_groups

 

NEW QUESTION 44
You deploy a new release of an internal application during a weekend maintenance window when there is minimal user tragic. After the window ends, you learn that one of the new features isn't working as expected in the production environment. After an extended outage, you roll back the new release and deploy a fix. You want to modify your release process to reduce the mean time to recovery so you can avoid extended outages in the future. What should you do? (Choose two.)

• A. Before merging new code, require 2 different peers to review the code changes.
• B. Adopt the blue/green deployment strategy when releasing new code via a CD server.
• C. Configure a CI server. Add a suite of unit tests to your code and have your CI server run them on commit and verify any changes.
• D. Integrate a code linting tool to validate coding standards before any code is accepted into the repository.
• E. Require developers to run automated integration tests on their local development environments before release.

Answer: A,D

 

NEW QUESTION 45
You currently store the virtual machine (VM) utilization logs in Stackdriver. You need to provide an easy-to- share interactive VM utilization dashboard that is updated in real time and contains information aggregated on a quarterly basis. You want to use Google Cloud Platform solutions. What should you do?

• A. 1. Export VM utilization logs from Stackdriver to a Cloud Storage bucket.
  2. Enable the Cloud Storage API to pull the logs programmatically.
  3. Build a custom data visualization application.
  4. Display the pulled logs in a custom dashboard.
• B. 1. Export VM utilization logs from Stackdriver to BigQuery.
  2. Create a dashboard in Data Studio.
  3. Share the dashboard with your stakeholders.
• C. 1. Export VM utilization logs from Stackdriver to BigQuery.
  2. From BigQuery, export the logs to a CSV file.
  3. Import the CSV file into Google Sheets.
  4. Build a dashboard in Google Sheets and share it with your stakeholders.
• D. 1. Export VM utilization logs from Stackdriver to Cloud Pub/Sub.
  2. From Cloud Pub/Sub, send the logs to a Security Information and Event Management (SIEM) system.
  3. Build the dashboards in the SIEM system and share with your stakeholders.

Answer: B

 

NEW QUESTION 46
You have a pool of application servers running on Compute Engine. You need to provide a secure solution that requires the least amount of configuration and allows developers to easily access application logs for troubleshooting. How would you implement the solution on GCP?

• A. Deploy the Stackdriver monitoring agent to the application servers.
  * Give the developers the IAM Monitoring Viewer role to access Stackdriver and view metrics.
• B. Deploy the Stackdriver logging agent to the application servers.
  * Give the developers the IAM Logs Viewer role to access Stackdriver and view logs.
• C. Deploy the Stackdriver logging agent to the application servers.
  * Give the developers the IAM Logs Private Logs Viewer role to access Stackdriver and view logs.
• D. Install the gsutil command line tool on your application servers.
  * Write a script using gsutil to upload your application log to a Cloud Storage bucket, and then schedule it to run via cron every 5 minutes.
  * Give the developers IAM Object Viewer access to view the logs in the specified bucket.

Answer: D

 

NEW QUESTION 47
You are responsible for creating and modifying the Terraform templates that define your Infrastructure. Because two new engineers will also be working on the same code, you need to define a process and adopt a tool that will prevent you from overwriting each other's code. You also want to ensure that you capture all updates in the latest version. What should you do?

• A. Store your code in a Git-based version control system.
  * Establish a process that includes code reviews by peers and unit testing to ensure integrity and functionality before integration of code.
  * Establish a process where the fully integrated code in the repository becomes the latest master version.
• B. Store your code as text files in Google Drive in a defined folder structure that organizes the files.
  * At the end of each day. confirm that all changes have been captured in the files within the folder structure.
  * Rename the folder structure with a predefined naming convention that increments the version.
• C. Store your code in a Git-based version control system.
  * Establish a process that allows developers to merge their own changes at the end of each day.
  * Package and upload code lo a versioned Cloud Storage bucket as the latest master version.
• D. Store your code as text files in Google Drive in a defined folder structure that organizes the files.
  * At the end of each day, confirm that all changes have been captured in the files within the folder structure and create a new .zip archive with a predefined naming convention.
  * Upload the .zip archive to a versioned Cloud Storage bucket and accept it as the latest version.

Answer: A

 

NEW QUESTION 48
You support a multi-region web service running on Google Kubernetes Engine (GKE) behind a Global HTTP'S Cloud Load Balancer (CLB). For legacy reasons, user requests first go through a third-party Content Delivery Network (CDN). which then routes traffic to the CLB. You have already implemented an availability Service Level Indicator (SLI) at the CLB level. However, you want to increase coverage in case of a potential load balancer misconfiguration. CDN failure, or other global networking catastrophe. Where should you measure this new SLI?
Choose 2 answers

• A. Your application servers' logs
• B. GKE health checks for your application servers
• C. A synthetic client that periodically sends simulated user requests
• D. Instrumentation coded directly in the client
• E. Metrics exported from the application servers

Answer: B,C

 

NEW QUESTION 49
You support a high-traffic web application with a microservice architecture. The home page of the application displays multiple widgets containing content such as the current weather, stock prices, and news headlines. The main serving thread makes a call to a dedicated microservice for each widget and then lays out the homepage for the user. The microservices occasionally fail; when that happens, the serving thread serves the homepage with some missing content. Users of the application are unhappy if this degraded mode occurs too frequently, but they would rather have some content served instead of no content at all. You want to set a Service Level Objective (SLO) to ensure that the user experience does not degrade too much. What Service Level Indicator {SLI) should you use to measure this?

• A. A quality SLI: the ratio of non-degraded responses to total responses
• B. An availability SLI: the ratio of healthy microservices to the total number of microservices
• C. A freshness SLI: the proportion of widgets that have been updated within the last 10 minutes
• D. A latency SLI: the ratio of microservice calls that complete in under 100 ms to the total number of microservice calls

Answer: D

 

NEW QUESTION 50
Your application runs on Google Cloud Platform (GCP). You need to implement Jenkins for deploying application releases to GCP. You want to streamline the release process, lower operational toil, and keep user data secure. What should you do?

• A. Implement Jenkins on local workstations.
• B. Implement Jenkins on Compute Engine virtual machines.
• C. Implement Jenkins on Kubernetes on-premises
• D. Implement Jenkins on Google Cloud Functions.

Answer: B

Explanation:
Your application runs on Google Cloud Platform (GCP). You need to implement Jenkins for deploying application releases to GCP. You want to streamline the release process, lower operational toil, and keep user data secure. What should you do?
https://plugins.jenkins.io/google-compute-engine/

 

NEW QUESTION 51
You are managing the production deployment to a set of Google Kubernetes Engine (GKE) clusters. You want to make sure only images which are successfully built by your trusted CI/CD pipeline are deployed to production. What should you do?

• A. Enable Vulnerability Analysis on the Container Registry.
• B. Set up the Kubernetes Engine clusters as private clusters.
• C. Enable Cloud Security Scanner on the clusters.
• D. Set up the Kubernetes Engine clusters with Binary Authorization.

Answer: A

 

NEW QUESTION 52
You are deploying an application that needs to access sensitive information. You need to ensure that this information is encrypted and the risk of exposure is minimal if a breach occurs. What should you do?

• A. Store the encryption keys in Cloud Key Management Service (KMS) and rotate the keys frequently
• B. Inject the secret at the time of instance creation via an encrypted configuration management system.
• C. Leverage a continuous build pipeline that produces multiple versions of the secret for each instance of the application.
• D. Integrate the application with a Single sign-on (SSO) system and do not expose secrets to the application

Answer: A

 

NEW QUESTION 53
You are part of an organization that follows SRE practices and principles. You are taking over the management of a new service from the Development Team, and you conduct a Production Readiness Review (PRR). After the PRR analysis phase, you determine that the service cannot currently meet its Service Level Objectives (SLOs). You want to ensure that the service can meet its SLOs in production. What should you do next?

• A. Bring the service into production with no SLOs and build them when you have collected operational data.
• B. Identify recommended reliability improvements to the service to be completed before handover.
• C. Adjust the SLO targets to be achievable by the service so you can bring it into production.
• D. Notify the development team that they will have to provide production support for the service.

Answer: B

 

NEW QUESTION 54
You use Cloud Build to build your application. You want to reduce the build time while minimizing cost and development effort. What should you do?

• A. Use larger Cloud Build virtual machines (VMs) by using the machine-type option.
• B. Run multiple Jenkins agents to parallelize the build.
• C. Use Cloud Storage to cache intermediate artifacts.
• D. Use multiple smaller build steps to minimize execution time.

Answer: D

Explanation:
https://cloud.google.com/storage/docs/best-practices
. https://cloud.google.com/build/docs/speeding-up-builds#caching_directories_with_google_cloud_storage Caching directories with Google Cloud Storage To increase the speed of a build, reuse the results from a previous build. You can copy the results of a previous build to a Google Cloud Storage bucket, use the results for faster calculation, and then copy the new results back to the bucket. Use this method when your build takes a long time and produces a small number of files that does not take time to copy to and from Google Cloud Storage.
upvoted 2 times

 

NEW QUESTION 55
Some of your production services are running in Google Kubernetes Engine (GKE) in the eu-west-1 region. Your build system runs in the us-west-1 region. You want to push the container images from your build system to a scalable registry to maximize the bandwidth for transferring the images to the cluster. What should you do?

• A. Push the images to Google Container Registry (GCR) using the us.gcr.io hostname.
• B. Push the images to Google Container Registry (GCR) using the gcr.io hostname.
• C. Push the images to a private image registry running on a Compute Engine instance in the eu-west-1 region.
• D. Push the images to Google Container Registry (GCR) using the eu.gcr.io hostname.

Answer: A

 

NEW QUESTION 56
You are managing the production deployment to a set of Google Kubernetes Engine (GKE) clusters. You want to make sure only images which are successfully built by your trusted CI/CD pipeline are deployed to production. What should you do?

• A. Set up the Kubernetes Engine clusters with Binary Authorization.
• B. Set up the Kubernetes Engine clusters as private clusters.
• C. Enable Vulnerability Analysis on the Container Registry.
• D. Enable Cloud Security Scanner on the clusters.

Answer: A

Explanation:
https://cloud.google.com/binary-authorization/docs/overview

 

NEW QUESTION 57
You are running an application on Compute Engine and collecting logs through Stackdriver. You discover that some personally identifiable information (PII) is leaking into certain log entry fields. You want to prevent these fields from being written in new log entries as quickly as possible. What should you do?

• A. Wait for the application developers to patch the application, and then verify that the log entries are no longer exposing PII.
• B. Stage log entries to Cloud Storage, and then trigger a Cloud Function to remove the fields and write the entries to Stackdriver via the Stackdriver Logging API.
• C. Use the fluent-plugin-record-reformer Fluentd output plugin to remove the fields from the log entries in flight.
• D. Use the filter-record-transformer Fluentd filter plugin to remove the fields from the log entries in flight.

Answer: D

 

NEW QUESTION 58
You support a high-traffic web application and want to ensure that the home page loads in a timely manner. As a first step, you decide to implement a Service Level Indicator (SLI) to represent home page request latency with an acceptable page load time set to 100 ms. What is the Google-recommended way of calculating this SLI?

• A. Buckelize Ihe request latencies into ranges, and then compute the percentile at 100 ms.
• B. Count the number of home page requests that load in under 100 ms. and then divide by the total number of all web application requests.
• C. Count the number of home page requests that load in under 100 ms, and then divide by the total number of home page requests.
• D. Bucketize the request latencies into ranges, and then compute the median and 90th percentiles.

Answer: C

 

NEW QUESTION 59
You are working with a government agency that requires you to archive application logs for seven years. You need to configure Stackdriver to export and store the logs while minimizing costs of storage. What should you do?

• A. Create an export in Stackdriver and configure Cloud Pub/Sub to store logs in permanent storage for seven years.
• B. Create a sink in Stackdriver, name it, create a bucket on Cloud Storage for storing archived logs, and then select the bucket as the log export destination.
• C. Create a Cloud Storage bucket and develop your application to send logs directly to the bucket.
• D. Develop an App Engine application that pulls the logs from Stackdriver and saves them in BigQuery.

Answer: B

Explanation:
https://cloud.google.com/logging/docs/routing/overview

 

NEW QUESTION 60
Your company follows Site Reliability Engineering practices. You are the Incident Commander for a new. customer-impacting incident. You need to immediately assign two incident management roles to assist you in an effective incident response. What roles should you assign?
Choose 2 answers

• A. Customer Impact Assessor
• B. Engineering Lead
• C. Operations Lead
• D. External Customer Communications Lead
• E. Communications Lead

Answer: C,E

Explanation:
https://sre.google/workbook/incident-response/
"The main roles in incident response are the Incident Commander (IC), Communications Lead (CL), and Operations or Ops Lead (OL)."

 

NEW QUESTION 61
You have a pool of application servers running on Compute Engine. You need to provide a secure solution that requires the least amount of configuration and allows developers to easily access application logs for troubleshooting. How would you implement the solution on GCP?

• A. * Deploy the Stackdriver monitoring agent to the application servers.
  * Give the developers the IAM Monitoring Viewer role to access Stackdriver and view metrics.
• B. * Install the gsutil command line tool on your application servers.
  * Write a script using gsutil to upload your application log to a Cloud Storage bucket, and then schedule it to run via cron every 5 minutes.
  * Give the developers the IAM Object Viewer access to view the logs in the specified bucket.
• C. * Deploy the Stackdriver logging agent to the application servers.
  * Give the developers the IAM Logs Private Logs Viewer role to access Stackdriver and view logs.
• D. * Deploy the Stackdriver logging agent to the application servers.
  * Give the developers the IAM Logs Viewer role to access Stackdriver and view logs.

Answer: C

 

NEW QUESTION 62
You have a set of applications running on a Google Kubernetes Engine (GKE) cluster, and you are using Stackdriver Kubernetes Engine Monitoring. You are bringing a new containerized application required by your company into production. This application is written by a third party and cannot be modified or reconfigured. The application writes its log information to /var/log/app_messages.log, and you want to send these log entries to Stackdriver Logging. What should you do?

• A. Write a script to tail the log file within the pod and write entries to standard output. Run the script as a sidecar container with the application's pod. Configure a shared volume between the containers to allow the script to have read access to /var/log in the application container.
• B. Use the default Stackdriver Kubernetes Engine Monitoring agent configuration.
• C. Deploy a Fluentd daemonset to GKE. Then create a customized input and output configuration to tail the log file in the application's pods and write to Slackdriver Logging.
• D. Install Kubernetes on Google Compute Engine (GCE> and redeploy your applications. Then customize the built-in Stackdriver Logging configuration to tail the log file in the application's pods and write to Stackdriver Logging.

Answer: C

 

NEW QUESTION 63
......

Realistic ExamTorrent Professional-Cloud-DevOps-Engineer Dumps PDF - 100% Passing Guarantee: https://prep4sure.examtorrent.com/Professional-Cloud-DevOps-Engineer-exam-papers.html