992 お客様のコメント
質問 1:
Which service should HipLocal use to enable access to internal apps?
A. Cloud Identity-Aware Proxy
B. Cloud Armor
C. Virtual Private Cloud
D. Cloud VPN
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
質問 2:
You are using Cloud Build build to promote a Docker image to Development, Test, and Production environments. You need to ensure that the same Docker image is deployed to each of these environments.
How should you identify the Docker image in your build?
A. Use the latest Docker image tag.
B. Use a semantic version Docker image tag.
C. Use a unique Docker image name.
D. Use the digest of the Docker image.
正解:B
質問 3:
You have an ecommerce application hosted in Google Kubernetes Engine (GKE) that receives external requests and forwards them to third-party APIs external to Google Cloud. The third-party APIs are responsible for credit card processing, shipping, and inventory management using the process shown in the diagram.
Your customers are reporting that the ecommerce application is running slowly at unpredictable times. The application doesn't report any metrics You need to determine the cause of the inconsistent performance What should you do?
A. Install the OpenTelemetry library for your respective language, and instrument your application.
B. Modify your application to read and forward the x-Cloud-Trace-context header when it calls the downstream services D Enable Managed Service for Prometheus on the GKE cluster to gather application metrics.
C. Install the Ops Agent inside your container and configure it to gather application metrics.
正解:A
質問 4:
For this question refer to the HipLocal case study.
HipLocal wants to reduce the latency of their services for users in global locations. They have created read replicas of their database in locations where their users reside and configured their service to read traffic using those replicas. How should they further reduce latency for all database interactions with the least amount of effort?
A. Migrate the database to Firestore in Datastore mode and use it to serve all global user traffic.
B. Migrate the database to Cloud Spanner and use it to serve all global user traffic.
C. Migrate the services to Google Kubernetes Engine and use a load balancer service to better scale the application.
D. Migrate the database to Bigtable and use it to serve all global user traffic.
正解:C
質問 5:
Your company has created an application that uploads a report to a Cloud Storage bucket. When the report is uploaded to the bucket, you want to publish a message to a Cloud Pub/Sub topic. You want to implement a solution that will take a small amount to effort to implement. What should you do?
A. Create an application deployed in a Google Kubernetes Engine cluster to receive the file; when it is received, publish a message to the Cloud Pub/Sub topic.
B. Create an App Engine application to receive the file; when it is received, publish a message to the Cloud Pub/Sub topic.
C. Configure the Cloud Storage bucket to trigger Cloud Pub/Sub notifications when objects are modified.
D. Create a Cloud Function that is triggered by the Cloud Storage bucket. In the Cloud Function, publish a message to the Cloud Pub/Sub topic.
正解:D
解説: (Pass4Test メンバーにのみ表示されます)
質問 6:
You are a SaaS provider deploying dedicated blogging software to customers in your Google Kubernetes Engine (GKE) cluster. You want to configure a secure multi-tenant platform to ensure that each customer has access to only their own blog and can't affect the workloads of other customers. What should you do?
A. Enable Application-layer Secrets on the GKE cluster to protect the cluster.
B. Use GKE Audit Logging to identify malicious containers and delete them on discovery.
C. Build a custom image of the blogging software and use Binary Authorization to prevent untrusted image deployments.
D. Deploy a namespace per tenant and use Network Policies in each blog deployment.
正解:D
解説: (Pass4Test メンバーにのみ表示されます)
質問 7:
You are working on a new application that is deployed on Cloud Run and uses Cloud Functions Each time new features are added, new Cloud Functions and Cloud Run services are deployed You use ENV variables to keep track of the services and enable interservice communication but the maintenance of the ENV variables has become difficult. You want to implement dynamic discovery in a scalable way. What should you do?
A. Create a Service Directory Namespace Use API calls to register the services during deployment, and query during runtime.
B. Deploy Hashicorp Consul on a single Compute Engine Instance Register the services with Consul during deployment and query during runtime
C. Rename the Cloud Functions and Cloud Run services endpoints using a well-documented naming convention
D. Configure your microservices to use the Cloud Run Admin and Cloud Functions APIs to query for deployed Cloud Run services and Cloud Functions in the Google Cloud project.
正解:D
質問 8:
Which service should HipLocal use for their public APIs?
A. Shielded Virtual Machines
B. Cloud Armor
C. Cloud Functions
D. Cloud Endpoints
正解:A
Which service should HipLocal use to enable access to internal apps?
A. Cloud Identity-Aware Proxy
B. Cloud Armor
C. Virtual Private Cloud
D. Cloud VPN
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
質問 2:
You are using Cloud Build build to promote a Docker image to Development, Test, and Production environments. You need to ensure that the same Docker image is deployed to each of these environments.
How should you identify the Docker image in your build?
A. Use the latest Docker image tag.
B. Use a semantic version Docker image tag.
C. Use a unique Docker image name.
D. Use the digest of the Docker image.
正解:B
質問 3:
You have an ecommerce application hosted in Google Kubernetes Engine (GKE) that receives external requests and forwards them to third-party APIs external to Google Cloud. The third-party APIs are responsible for credit card processing, shipping, and inventory management using the process shown in the diagram.
Your customers are reporting that the ecommerce application is running slowly at unpredictable times. The application doesn't report any metrics You need to determine the cause of the inconsistent performance What should you do?
A. Install the OpenTelemetry library for your respective language, and instrument your application.
B. Modify your application to read and forward the x-Cloud-Trace-context header when it calls the downstream services D Enable Managed Service for Prometheus on the GKE cluster to gather application metrics.
C. Install the Ops Agent inside your container and configure it to gather application metrics.
正解:A
質問 4:
For this question refer to the HipLocal case study.
HipLocal wants to reduce the latency of their services for users in global locations. They have created read replicas of their database in locations where their users reside and configured their service to read traffic using those replicas. How should they further reduce latency for all database interactions with the least amount of effort?
A. Migrate the database to Firestore in Datastore mode and use it to serve all global user traffic.
B. Migrate the database to Cloud Spanner and use it to serve all global user traffic.
C. Migrate the services to Google Kubernetes Engine and use a load balancer service to better scale the application.
D. Migrate the database to Bigtable and use it to serve all global user traffic.
正解:C
質問 5:
Your company has created an application that uploads a report to a Cloud Storage bucket. When the report is uploaded to the bucket, you want to publish a message to a Cloud Pub/Sub topic. You want to implement a solution that will take a small amount to effort to implement. What should you do?
A. Create an application deployed in a Google Kubernetes Engine cluster to receive the file; when it is received, publish a message to the Cloud Pub/Sub topic.
B. Create an App Engine application to receive the file; when it is received, publish a message to the Cloud Pub/Sub topic.
C. Configure the Cloud Storage bucket to trigger Cloud Pub/Sub notifications when objects are modified.
D. Create a Cloud Function that is triggered by the Cloud Storage bucket. In the Cloud Function, publish a message to the Cloud Pub/Sub topic.
正解:D
解説: (Pass4Test メンバーにのみ表示されます)
質問 6:
You are a SaaS provider deploying dedicated blogging software to customers in your Google Kubernetes Engine (GKE) cluster. You want to configure a secure multi-tenant platform to ensure that each customer has access to only their own blog and can't affect the workloads of other customers. What should you do?
A. Enable Application-layer Secrets on the GKE cluster to protect the cluster.
B. Use GKE Audit Logging to identify malicious containers and delete them on discovery.
C. Build a custom image of the blogging software and use Binary Authorization to prevent untrusted image deployments.
D. Deploy a namespace per tenant and use Network Policies in each blog deployment.
正解:D
解説: (Pass4Test メンバーにのみ表示されます)
質問 7:
You are working on a new application that is deployed on Cloud Run and uses Cloud Functions Each time new features are added, new Cloud Functions and Cloud Run services are deployed You use ENV variables to keep track of the services and enable interservice communication but the maintenance of the ENV variables has become difficult. You want to implement dynamic discovery in a scalable way. What should you do?
A. Create a Service Directory Namespace Use API calls to register the services during deployment, and query during runtime.
B. Deploy Hashicorp Consul on a single Compute Engine Instance Register the services with Consul during deployment and query during runtime
C. Rename the Cloud Functions and Cloud Run services endpoints using a well-documented naming convention
D. Configure your microservices to use the Cloud Run Admin and Cloud Functions APIs to query for deployed Cloud Run services and Cloud Functions in the Google Cloud project.
正解:D
質問 8:
Which service should HipLocal use for their public APIs?
A. Shielded Virtual Machines
B. Cloud Armor
C. Cloud Functions
D. Cloud Endpoints
正解:A
Hisamoto -
今時のアプリを利用した過去問演習にも対応。これで十分だとは思います