756 お客様のコメント
クリック」
質問 1:
An application development team has come to you for advice.They are planning to write and deploy an HTTP(S) API using Go 1.12. The API will have a very unpredictable workload and must remain reliable during peaks in traffic. They want to minimize operational overhead for this application. What approach should you recommend?
A. Develop an application with containers, and deploy to Google Kubernetes Engine (GKE)
B. Use a Managed Instance Group when deploying to Compute Engine
C. Develop the application for App Engine Flexible environment using a custom runtime
D. Develop the application for App Engine standard environment
正解:D
解説: (Pass4Test メンバーにのみ表示されます)
質問 2:
Your company runs several databases on a single MySQL instance. They need to take backups of a specific database at regular intervals. The backup activity needs to complete as quickly as possible and cannot be allowed to impact disk performance. How should you configure the storage?
A. Use gcsfuse to mount a Google Cloud Storage bucket as a volume directly on the instance and write backups to the mounted location using mysqldump
B. Mount a Local SSD volume as the backup location. After the backup is complete, use gsutil to move the backup to Google Cloud Storage.
C. Configure a cron job to use the gcloud tool to take regular backups using persistent disk snapshots.
D. Mount additional persistent disk volumes onto each virtual machine (VM) instance in a RAID10 array and use LVM to create snapshots to send to Cloud Storage.
正解:B
解説: (Pass4Test メンバーにのみ表示されます)
質問 3:
For this question, refer to the Dress4Win case study. You are responsible for the security of data stored in Cloud Storage for your company, Dress4Win. You have already created a set of Google Groups and assigned the appropriate users to those groups. You should use Google best practices and implement the simplest design to meet the requirements.
Considering Dress4Win's business and technical requirements, what should you do?
A. Assign custom IAM roles to the Google Groups you created in order to enforce security requirements.
Encrypt data with a customer-supplied encryption key when storing files in Cloud Storage.
B. Assign custom IAM roles to the Google Groups you created in order to enforce security requirements.
Enable default storage encryption before storing files in Cloud Storage.
C. Assign predefined IAM roles to the Google Groups you created in order to enforce security requirements.
Utilize Google's default encryption at rest when storing files in Cloud Storage.
D. Assign predefined IAM roles to the Google Groups you created in order to enforce security requirements. Ensure that the default Cloud KMS key is set before storing files in Cloud Storage.
正解:D
解説: (Pass4Test メンバーにのみ表示されます)
質問 4:
Auditors visit your teams every 12 months and ask to review all the Google Cloud Identity and Access Management (Cloud IAM) policy changes in the previous 12 months. You want to streamline and expedite the analysis and audit process. What should you do?
A. Create custom Google Stackdriver alerts and send them to the auditor.
B. Use cloud functions to transfer log entries to Google Cloud SQL and use ACLS and views to limit an auditor's view.
C. Enable Logging export to Google BigQuery and use ACLs and views to scope the data shared with the auditor.
D. Enable Google Cloud Storage (GCS) log export to audit logs Into a GCS bucket and delegate access to the bucket.
正解:D
解説: (Pass4Test メンバーにのみ表示されます)
質問 5:
Your company is migrating its on-premises data center into the cloud. As part of the migration, you want to integrate Kubernetes Engine for workload orchestration. Parts of your architecture must also be PCI DSScompliant.
Which of the following is most accurate?
A. Kubernetes Engine cannot be used under PCI DSS because it is considered shared hosting.
B. App Engine is the only compute platform on GCP that is certified for PCI DSS hosting.
C. All Google Cloud services are usable because Google Cloud Platform is certified PCI-compliant.
D. Kubernetes Engine and GCP provide the tools you need to build a PCI DSS-compliant environment.
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
質問 6:
You are deploying a PHP App Engine Standard service with SQL as the backend. You want to minimize the number of queries to the database.
What should you do?
A. Set the memcache service level to shared. Create a key called "cached-queries", and return database values from the key before using a query to Cloud SQL.
B. Set the memcache service level to shared. Create a cron task that runs every minute to save all expected queries to a key called "cached-queries".
C. Set the memcache service level to dedicated. Create a key from the hash of the query, and return database values from memcache before issuing a query to Cloud SQL.
D. Set the memcache service level to dedicated. Create a cron task that runs every minute to populate the cache with keys containing query results.
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
質問 7:
For this question, refer to the TerramEarth case study. TerramEarth has decided to store data files in Cloud Storage. You need to configure Cloud Storage lifecycle rule to store 1 year of data and minimize file storage cost.
Which two actions should you take?
A. Create a Cloud Storage lifecycle rule with Age: "30", Storage Class: "Standard", and Action: "Set to Coldline", and create a second GCS life-cycle rule with Age: "365", Storage Class: "Nearline", and Action: "Delete".
B. Create a Cloud Storage lifecycle rule with Age: "30", Storage Class: "Coldline", and Action: "Set to Nearline", and create a second GCS life-cycle rule with Age: "91", Storage Class: "Coldline", and Action: "Set to Nearline".
C. Create a Cloud Storage lifecycle rule with Age: "30", Storage Class: "Standard", and Action: "Set to Coldline", and create a second GCS life-cycle rule with Age: "365", Storage Class: "Coldline", and Action: "Delete".
D. Create a Cloud Storage lifecycle rule with Age: "90", Storage Class: "Standard", and Action: "Set to Nearline", and create a second GCS life-cycle rule with Age: "91", Storage Class: "Nearline", and Action: "Set to Coldline".
正解:C
An application development team has come to you for advice.They are planning to write and deploy an HTTP(S) API using Go 1.12. The API will have a very unpredictable workload and must remain reliable during peaks in traffic. They want to minimize operational overhead for this application. What approach should you recommend?
A. Develop an application with containers, and deploy to Google Kubernetes Engine (GKE)
B. Use a Managed Instance Group when deploying to Compute Engine
C. Develop the application for App Engine Flexible environment using a custom runtime
D. Develop the application for App Engine standard environment
正解:D
解説: (Pass4Test メンバーにのみ表示されます)
質問 2:
Your company runs several databases on a single MySQL instance. They need to take backups of a specific database at regular intervals. The backup activity needs to complete as quickly as possible and cannot be allowed to impact disk performance. How should you configure the storage?
A. Use gcsfuse to mount a Google Cloud Storage bucket as a volume directly on the instance and write backups to the mounted location using mysqldump
B. Mount a Local SSD volume as the backup location. After the backup is complete, use gsutil to move the backup to Google Cloud Storage.
C. Configure a cron job to use the gcloud tool to take regular backups using persistent disk snapshots.
D. Mount additional persistent disk volumes onto each virtual machine (VM) instance in a RAID10 array and use LVM to create snapshots to send to Cloud Storage.
正解:B
解説: (Pass4Test メンバーにのみ表示されます)
質問 3:
For this question, refer to the Dress4Win case study. You are responsible for the security of data stored in Cloud Storage for your company, Dress4Win. You have already created a set of Google Groups and assigned the appropriate users to those groups. You should use Google best practices and implement the simplest design to meet the requirements.
Considering Dress4Win's business and technical requirements, what should you do?
A. Assign custom IAM roles to the Google Groups you created in order to enforce security requirements.
Encrypt data with a customer-supplied encryption key when storing files in Cloud Storage.
B. Assign custom IAM roles to the Google Groups you created in order to enforce security requirements.
Enable default storage encryption before storing files in Cloud Storage.
C. Assign predefined IAM roles to the Google Groups you created in order to enforce security requirements.
Utilize Google's default encryption at rest when storing files in Cloud Storage.
D. Assign predefined IAM roles to the Google Groups you created in order to enforce security requirements. Ensure that the default Cloud KMS key is set before storing files in Cloud Storage.
正解:D
解説: (Pass4Test メンバーにのみ表示されます)
質問 4:
Auditors visit your teams every 12 months and ask to review all the Google Cloud Identity and Access Management (Cloud IAM) policy changes in the previous 12 months. You want to streamline and expedite the analysis and audit process. What should you do?
A. Create custom Google Stackdriver alerts and send them to the auditor.
B. Use cloud functions to transfer log entries to Google Cloud SQL and use ACLS and views to limit an auditor's view.
C. Enable Logging export to Google BigQuery and use ACLs and views to scope the data shared with the auditor.
D. Enable Google Cloud Storage (GCS) log export to audit logs Into a GCS bucket and delegate access to the bucket.
正解:D
解説: (Pass4Test メンバーにのみ表示されます)
質問 5:
Your company is migrating its on-premises data center into the cloud. As part of the migration, you want to integrate Kubernetes Engine for workload orchestration. Parts of your architecture must also be PCI DSScompliant.
Which of the following is most accurate?
A. Kubernetes Engine cannot be used under PCI DSS because it is considered shared hosting.
B. App Engine is the only compute platform on GCP that is certified for PCI DSS hosting.
C. All Google Cloud services are usable because Google Cloud Platform is certified PCI-compliant.
D. Kubernetes Engine and GCP provide the tools you need to build a PCI DSS-compliant environment.
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
質問 6:
You are deploying a PHP App Engine Standard service with SQL as the backend. You want to minimize the number of queries to the database.
What should you do?
A. Set the memcache service level to shared. Create a key called "cached-queries", and return database values from the key before using a query to Cloud SQL.
B. Set the memcache service level to shared. Create a cron task that runs every minute to save all expected queries to a key called "cached-queries".
C. Set the memcache service level to dedicated. Create a key from the hash of the query, and return database values from memcache before issuing a query to Cloud SQL.
D. Set the memcache service level to dedicated. Create a cron task that runs every minute to populate the cache with keys containing query results.
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
質問 7:
For this question, refer to the TerramEarth case study. TerramEarth has decided to store data files in Cloud Storage. You need to configure Cloud Storage lifecycle rule to store 1 year of data and minimize file storage cost.
Which two actions should you take?
A. Create a Cloud Storage lifecycle rule with Age: "30", Storage Class: "Standard", and Action: "Set to Coldline", and create a second GCS life-cycle rule with Age: "365", Storage Class: "Nearline", and Action: "Delete".
B. Create a Cloud Storage lifecycle rule with Age: "30", Storage Class: "Coldline", and Action: "Set to Nearline", and create a second GCS life-cycle rule with Age: "91", Storage Class: "Coldline", and Action: "Set to Nearline".
C. Create a Cloud Storage lifecycle rule with Age: "30", Storage Class: "Standard", and Action: "Set to Coldline", and create a second GCS life-cycle rule with Age: "365", Storage Class: "Coldline", and Action: "Delete".
D. Create a Cloud Storage lifecycle rule with Age: "90", Storage Class: "Standard", and Action: "Set to Nearline", and create a second GCS life-cycle rule with Age: "91", Storage Class: "Nearline", and Action: "Set to Coldline".
正解:C
麻见** -
Professional-Cloud-Architectにおける重要な知識を整理している。ありがたい。
素晴らしい問題集に出会いさせてもらったPass4Testに感謝しかないです。