Professional-Cloud-Developer Sample Questions Answers

Cloud Spanner

Cloud Datastore

Cloud Memorystore as a cache

Separate Cloud SQL clusters for each region

Migrate the database to Bigtable and use it to serve all global user traffic.

Migrate the database to Cloud Spanner and use it to serve all global user traffic.

Migrate the database to Firestore in Datastore mode and use it to serve all global user traffic.

Migrate the services to Google Kubernetes Engine and use a load balancer service to better scale the application.

Create a service account and download its key. Use the key to authenticate to Cloud Key Management Service (KMS) to obtain the database credentials.

Create a service account and download its key. Use the key to authenticate to Cloud Key Management Service (KMS) to obtain a key used to decrypt the database credentials.

Create a service account and grant it the roles/iam.serviceAccountUser role. Impersonate as this account and authenticate using the Cloud SQL Proxy.

Grant the roles/secretmanager.secretAccessor role to the Compute Engine service account. Store and access the database credentials with the Secret Manager API.

Create manual subnets.

Create an auto mode subnet.

Create multiple peered VPCs.

Provision a single instance for NAT.

Use local SSDs to store state.

Put a memcache layer in front of MySQL.

Move the state storage to Cloud Spanner.

Replace the MySQL instance with Cloud SQL.

Block all traffic on port 443.

Allow all traffic into the network.

Allow traffic on port 443 for a specific tag.

Allow all traffic on port 443 into the network.

Take frequent snapshots of all of the VMs.

Install the Stackdriver Logging agent on the VMs.

Install the Stackdriver Monitoring agent on the VMs.

Use Stackdriver Trace to look for performance bottlenecks.

Use Google Kubernetes Engine (GKE) to run the application as a microservice. Run the MySQL database on a dedicated GKE node.

Use multiple Compute Engine instances to run MySQL to store state information. Use a Google Cloud-managed load balancer to distribute the load between instances. Use managed instance groups for scaling.

Use Memorystore to store session information and CloudSQL to store state information. Use a Google Cloud-managed load balancer to distribute the load between instances. Use managed instance groups for scaling.

Use a Cloud Storage bucket to serve the application as a static website, and use another Cloud Storage bucket to store user state information.

Use the Cloud Data Loss Prevention API for redaction of the review dataset.

Use the Cloud Data Loss Prevention API for de-identification of the review dataset.

Use the Cloud Natural Language Processing API for redaction of the review dataset.

Use the Cloud Natural Language Processing API for de-identification of the review dataset.

Instrument your microservices by installing the OpenTelemetry tracing package Update your application code to send traces to Trace for inspection and analysis Create an analysis report on Trace to analyze user requests

Configure GKE workload metrics using kubect1 Select all Pods to send their metrics to Cloud Monitoring. Create a custom dashboard of application metrics in Cloud Monitoring to determine performance bottlenecks of your GKE cluster

Install tcpdump on your GKE nodes. Run tcpdump to capture network traffic over an extended period of time to collect data Analyze the data files using Wireshark to determine the cause of high latency

Update your microservices to log HTTP request methods and URL paths to STDOUT Use the logs router to send container logs to Cloud Logging Create filters in Cloud Logging to evaluate the latency of user requests across different methods and URL paths.

Package each component in a separate container. Implement readiness and liveness probes.

Package the application in a single container. Use a process management tool to manage each component.

Package each component in a separate container. Use a script to orchestrate the launch of the components.

Package the application in a single container. Use a bash script as an entrypoint to the container, and then spawn each component as a background job.

Grant your user account the roles/storage.objectCreator role for the Cloud Storage bucket.

Grant your user account the roles/iam.serviceAccountUser role for the service-PROJECTA@gcf-adminrobot.

iam.gserviceaccount.com service account.

Grant the service-PROJECTA@gcf-admin-robot.iam.gserviceaccount.com service account the roles/

storage.objectCreator role for the Cloud Storage bucket.

Enable the Cloud Storage API in project B.

Download the binary from the internet during the build process.

Build a custom cloud builder image and reference the image in your build steps.

Include the binary in your Cloud Source Repositories repository and reference it in your build scripts.

Ask to have the binary added to the Cloud Build environment by filing a feature request against the Cloud

Build public Issue Tracker.

Write an exponential backoff process around the client library call.

Write a one-second wait time backoff process around the client library call.

Design a retry button in the application and ask users to click if the error occurs.

Create a queue for the object and inform the users that the application will try again in 10 minutes.

Google Cloud Armor

Debugger

Web Security Scanner

Error Reporting

Cloud Profiler

Cloud Monitoring

Cloud Trace

Cloud Logging

Cloud Armor

Cloud Functions

Cloud Endpoints

Shielded Virtual Machines

Cloud VPN

Cloud Armor

Virtual Private Cloud

Cloud Identity-Aware Proxy

Create an API key. Use the API key to interact with Google Cloud.

Use the default compute service account to interact with Google Cloud.

Create a service account for the application. Export and deploy the private key for the application. Use the service account to interact with Google Cloud.

Create a service account for the application and for each Google Cloud API used by the application. Export and deploy the private keys used by the application. Use the service account with one Google Cloud API to interact with Google Cloud.

BigQuery

Cloud SQL

Cloud Spanner

Cloud Datastore

Use the current single instance MySQL on Compute Engine and several read-only MySQL servers on

Compute Engine.

Use the current single instance MySQL on Compute Engine, and replicate the data to Cloud SQL in an

external master configuration.

Replace the current single instance MySQL instance with Cloud SQL, and configure high availability.

Replace the current single instance MySQL instance with Cloud SQL, and Google provides redundancy

without further configuration.

Create new Cloud SQL instances in Europe and North America for testing and deployment. Provide developers with local MySQL instances to conduct testing on the application changes.

Migrate data to Bigtable. Instruct the development teams to use the Cloud SDK to emulate a local Bigtable development environment.

Move from Cloud SQL to MySQL hosted on Compute Engine. Replicate hosts across regions in the Americas and Europe. Provide developers with local MySQL instances to conduct testing on the application changes.

Migrate data to Firestore in Native mode and set up instan

Enable the Error Reporting API on the project.

Grant the instance full access to all Cloud APIs.

Configure the application log file as a custom source.

Create a Stackdriver Logs Export Sink with a filter that matches the application's log entries.

Terraform and kubeadm

Docker Compose and dockerd

Minikube and Skaffold

kaniko and Tekton

Cloud SQL

Cloud Storage

Cloud Spanner

Cloud Datastore/Firestore

Set the Max Surge to 100%.

Set the Update mode to Opportunistic.

Set the Maximum Unavailable to 100%.

Set the Minimum Wait time to 0 seconds.

Use Zipkin collector to gather data.

Use Fluentd agent to gather data.

Use Stackdriver Trace to generate reports.

Use Stackdriver Debugger to generate report.

Use Stackdriver Profiler to generate report.

Firestore in Native mode

Cloud Storage using an object read

Cloud SQL using a SQL SELECT statement

Firestore in Datastore mode using a global query

Trigger a Spinnaker pipeline configured as an A/B test of your new code and, if it is successful, deploy the container to production.

Trigger a Spinnaker pipeline configured as a canary test of your new code and, if it is successful, deploy the container to production.

Trigger another Cloud Build job that uses the Kubernetes CLI tools to deploy your new container to your GKE cluster, where you can perform a canary test.

Trigger another Cloud Build job that uses the Kubernetes CLI tools to deploy your new container to your GKE cluster, where you can perform a shadow test.

Reserve a static external IP address and assign it to an HTTP(S) load balancing service's forwarding rule.

Clients should use this IP address to connect to the service.

Reserve a static external IP address and assign it to an HTTP(S) load balancing service's forwarding rule.

Then, define an A record in Cloud DNS. Clients should use the name of the A record to connect to the

service.

Ensure that clients use Compute Engine internal DNS by connecting to the instance name with the url

https://[INSTANCE_NAME].[ZONE] .c.[PROJECT_ID].internal/.

Ensure that clients use Compute Engine internal DNS by connecting to the instance name with the url

https://[API_NAME]/[API_VERSION] /.

Enable Identity-Aware Proxy in your project. Secure function access using its permissions.

Create a service account with the Cloud Functions Viewer role. Use that service account to invoke the function.

Create a service account with the Cloud Functions Invoker role. Use that service account to invoke the function.

Create an OAuth 2.0 client ID for your calling service in the same project as the function you want to secure. Use those credentials to invoke the function.

Migrate the Product catalog, which has integrations to the frontend and product database.

Migrate Payment processing, which has integrations to the frontend, order database, and third-party payment vendor.

Migrate Order fulfillment, which has integrations to the order database, inventory system, and third-party shipping vendor.

Migrate the Shopping cart, which has integrations to the frontend, cart database, inventory system, and payment processing system.

Create a service to publish messages, and deploy the Pub/Sub emulator. Generate random content in the publishing service, and publish to the emulator.

Create a service to publish messages to your application. Collect the messages from Pub/Sub in production, and replay them through the publishing service.

Create a service to publish messages, and deploy the Pub/Sub emulator. Collect the messages from Pub/Sub in production, and publish them to the emulator.

Create a service to publish messages, and deploy the Pub/Sub emulator. Publish a standard set of testing messages from the publishing service to the emulator.

Provision Cloud KMS in its own project.

Do not assign an owner to the Cloud KMS project.

Provision Cloud KMS in the project where the keys are being used.

Grant the roles/cloudkms.admin role to the owner of the project where the keys from Cloud KMS are being used.

Grant an owner role for the Cloud KMS project to a different user than the owner of the project where the keys from Cloud KMS are being used.

App Engine backed by Cloud Storage

Compute Engine backed by Persistent Disk

Transfer Appliance backed by Cloud Filestore

Cloud Content Delivery Network (CDN) backed by Cloud Storage