CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Google
  5. Google Associate Cloud Engineer

Free Google Associate Cloud Engineer Exam Braindumps (page: 27)

Page 26 of 74
PDF with 290 Questions

You need to host an application on a Compute Engine instance in a project shared with other teams. You want to prevent the other teams from accidentally causing downtime on that application.
Which feature should you use?

  1. Use a Shielded VM.
  2. Use a Preemptible VM.
  3. Use a sole-tenant node.
  4. Enable deletion protection on the instance.

Answer(s): D

Explanation:

As part of your workload, there might be certain VM instances that are critical to running your application or services, such as an instance running a SQL server, a server used as a license manager, and so on. These VM instances might need to stay running indefinitely so you need a way to protect these VMs from being deleted. By setting the deletionProtection flag, a VM instance can be protected from accidental deletion. If a user attempts to delete a VM instance for which you have set the deletionProtection flag, the request fails. Only a user that has been granted a role with compute.instances.create permission can reset the flag to allow the resource to be deleted. Ref: https://cloud.google.com/compute/docs/instances/preventing-accidental-vm-deletion



Your organization needs to grant users access to query datasets in BigQuery but prevent them from accidentally deleting the datasets. You want a solution that follows Google-recommended practices.

What should you do?

  1. Add users to roles/bigquery user role only, instead of roles/bigquery dataOwner.
  2. Add users to roles/bigquery dataEditor role only, instead of roles/bigquery dataOwner.
  3. Create a custom role by removing delete permissions, and add users to that role only.
  4. Create a custom role by removing delete permissions. Add users to the group, and then add the group to the custom role.

Answer(s): D

Explanation:

https://cloud.google.com/bigquery/docs/access-control#custom_roles Custom roles enable you to enforce the principle of least privilege, ensuring that the user and service accounts in your organization have only the permissions essential to performing their intended functions.



You have a developer laptop with the Cloud SDK installed on Ubuntu. The Cloud SDK was installed from the Google Cloud Ubuntu package repository. You want to test your application locally on your laptop with Cloud Datastore.
What should you do?

  1. Export Cloud Datastore data using gcloud datastore export.
  2. Create a Cloud Datastore index using gcloud datastore indexes create.
  3. Install the google-cloud-sdk-datastore-emulator component using the apt get install command.
  4. Install the cloud-datastore-emulator component using the gcloud components install command.

Answer(s): D

Explanation:

The Datastore emulator provides local emulation of the production Datastore environment. You can use the emulator to develop and test your application locally Ref: https://cloud.google.com/datastore/docs/tools/datastore-emulator



Your company set up a complex organizational structure on Google Could Platform. The structure includes hundreds of folders and projects. Only a few team members should be able to view the hierarchical structure. You need to assign minimum permissions to these team members and you want to follow Google-recommended practices.
What should you do?

  1. Add the users to roles/browser role.
  2. Add the users to roles/iam.roleViewer role.
  3. Add the users to a group, and add this group to roles/browser role.
  4. Add the users to a group, and add this group to roles/iam.roleViewer role.

Answer(s): C

Explanation:

We need to apply the GCP Best practices. roles/browser Browser Read access to browse the hierarchy for a project, including the folder, organization, and IAM policy. This role doesn't include permission to view resources in the project. https://cloud.google.com/iam/docs/understanding-roles






Post your Comments and Discuss Google Google Associate Cloud Engineer exam with other Community members:

Google Associate Cloud Engineer Discussions & Posts