• Home
  • Articles
  • Get The Important Preparation Guide With Associate-Cloud-Engineer Dumps [Q65-Q89]

Get The Important Preparation Guide With Associate-Cloud-Engineer Dumps [Q65-Q89]

Share

Get The Important Preparation Guide With Associate-Cloud-Engineer Dumps

Get Totally Free Updates on Associate-Cloud-Engineer Dumps PDF Questions

NEW QUESTION 65
You received a JSON file that contained a private key of a Service Account in order to get access to several resources in a Google Cloud project. You downloaded and installed the Cloud SDK and want to use this private key for authentication and authorization when performing gcloud commands. What should you do?

  • A. Place the private key file in your home directory and rename it to
    "GOOGLE_APPLICATION_CREDENTIALS".
  • B. Use the command gcloud auth loginand point it to the private key.
  • C. Place the private key file in the installation directory of the Cloud SDK and rename it to "credentials.json".
  • D. Use the command gcloud auth activate-service-accountand point it to the private key.

Answer: D

Explanation:
Explanation/Reference: https://cloud.google.com/sdk/docs/authorizing

 

NEW QUESTION 66
You need to manage a Cloud Spanner Instance for best query performance. Your instance in production runs in a single Google Cloud region. You need to improve performance in the shortest amount of time. You want to follow Google best practices for service configuration. What should you do?

  • A. Create an alert in Cloud Monitoring to alert when the percentage of high priority CPU utilization reaches 65%.
    Use database query statistics to identity queries that result in high CPU usage, and then rewrite those queries to optimize their resource usage.
  • B. Create an alert in Cloud Monitoring to alert when the percentage of high priority CPU utilization reaches 45%.
    If you exceed this threshold, add nodes lo your instance.
  • C. Create an alert in Cloud Monitoring to alert when the percentage of high priority CPU utilization reaches 65%.
    If you exceed this threshold, add nodes to your instance
  • D. Create an alert in Cloud Monitoring to alert when the percentage ot high priority CPU utilization reaches 45%.
    Use database query statistics to identify queries that result in high CPU usage, and then rewrite those queries to optimize their resource usage

Answer: B

 

NEW QUESTION 67
You have a virtual machine that is currently configured with 2 vCPUs and 4 GB of memory. It is running out of memory. You want to upgrade the virtual machine to have 8 GB of memory.
What should you do?

  • A. Stop the VM, change the machine type to n1-standard-8, and start the VM.
  • B. Rely on live migration to move the workload to a machine with more memory.
  • C. Use gcloud to add metadata to the VM. Set the key to required-memory-sizeand the value to
    8 GB.
  • D. Stop the VM, increase the memory to 8 GB, and start the VM.

Answer: D

 

NEW QUESTION 68
You need to create a new billing account and then link it with an existing Google Cloud Platform project.
What should you do?

  • A. Verify that you are Billing Administrator for the billing account.
    Create a new project and link the new project to the existing billing account.
  • B. Verify that you are Billing Administrator for the billing account.
    Update the existing project to link it to the existing billing account.
  • C. Verify that you are Project Billing Manager for the GCP project.
    Create a new billing account and link the new billing account to the existing project.
  • D. Verify that you are Project Billing Manager for the GCP project.
    Update the existing project to link it to the existing billing account.

Answer: D

Explanation:
Both the roles cannot create a new billing account.
So we assume the account is already created.
Now we have to attached existing project to existing account. So it could not be B and C as they want roles to create new account which is not possible.
Both A & D are confusing because the Project Billing Manager can link & unlink a project from a billing account while a Billing Account Admin can link & unlink projects while managing user roles on the billing account. I'd go with A because option D refers to a Billing Admin and there's nothing like a Billing Admin only a Billing Account Admin.
https://cloud.google.com/billing/docs/how-to/billing-access

 

NEW QUESTION 69
Your company runs its Linux workloads on Compute Engine instances. Your company will be working with a new operations partner that does not use Google Accounts. You need to grant access to the instances to your operations partner so they can maintain the installed tooling. What should you do?

  • A. Enable Cloud IAP for the Compute Engine instances, and add the operations partner as a Cloud IAP Tunnel User.
  • B. Set up Cloud VPN between your Google Cloud VPC and the internal network of the operations partner.
  • C. Tag all the instances with the same network tag. Create a firewall rule in the VPC to grant TCP access on port 22 for traffic from the operations partner to instances with the network tag.
  • D. Ask the operations partner to generate SSH key pairs, and add the public keys to the VM instances.

Answer: C

 

NEW QUESTION 70
Your company uses a large number of Google Cloud services centralized in a single project. All teams have specific projects for testing and development. The DevOps team needs access to all of the production services in order to perform their job. You want to prevent Google Cloud product changes from broadening their permissions in the future. You want to follow Google-recommended practices. What should you do?

  • A. Create a custom role that combines the required permissions. Grant the DevOps team the custom role on the production project.
  • B. Grant all members of the DevOps team the role of Project Editor on the organization level.
  • C. Create a custom role that combines the required permissions. Grant the DevOps team the custom role on the organization level.
  • D. Grant all members of the DevOps team the role of Project Editor on the production project.

Answer: D

 

NEW QUESTION 71
You need to create a new billing account and then link it with an existing Google Cloud Platform project.
What should you do?

  • A. Verify that you are Billing Administrator for the billing account. Create a new project and link the new project to the existing billing account.
  • B. Verify that you are Billing Administrator for the billing account. Update the existing project to link it to the existing billing account.
  • C. Verify that you are Project Billing Manager for the GCP project. Update the existing project to link it to the existing billing account.
  • D. Verify that you are Project Billing Manager for the GCP project. Create a new billing account and link the new billing account to the existing project.

Answer: A

 

NEW QUESTION 72
You are analyzing Google Cloud Platform service costs from three separate projects. You want to use this information to create service cost estimates by service type, daily and monthly, for the next six months using standard query syntax. What should you do?

  • A. Export your bill to a Cloud Storage bucket, and then import into Google Sheets for analysis.
  • B. Export your transactions to a local file and perform analysis with a desktop tool.
  • C. Export your bill to a Cloud Storage bucket and then import into Cloud Bigtable for analysis.
  • D. Export your bill to a BigQuery dataset, and then write time window-based SQL queries for analysis.

Answer: D

 

NEW QUESTION 73
You are building a pipeline to process time-series data. Which Google Cloud Platform services should you put in boxes 1,2,3, and 4?

  • A. Cloud Pub/Sub, Cloud Dataflow, Cloud Datastore, BigQuery
  • B. Cloud Pub/Sub, Cloud Storage, BigQuery, Cloud Bigtable
  • C. Firebase Messages, Cloud Pub/Sub, Cloud Spanner, BigQuery
  • D. Cloud Pub/Sub, Cloud Dataflow, Cloud Bigtable, BigQuery

Answer: D

 

NEW QUESTION 74
You have a Google Cloud Platform account with access to both production and development projects. You need to create an automated process to list all compute instances in development and production projects on a daily basis. What should you do?

  • A. Create two configurations using gsutil config. Write a script that sets configurations as active, individually. For each configuration, use gsutil compute instances list to get a list of compute resources.
  • B. Go to GCP Console and export this information to Cloud SQL on a daily basis.
  • C. Create two configurations using gcloud config. Write a script that sets configurations as active, individually. For each configuration, use gcloud compute instances list to get a list of compute resources.
  • D. Go to Cloud Shell and export this information to Cloud Storage on a daily basis.

Answer: C

 

NEW QUESTION 75
You have an application that looks for its licensing server on the IP 10.0.3.21. You need to deploy the licensing server on Compute Engine. You do not want to change the configuration of the application and want the application to be able to reach the licensing server. What should you do?

  • A. Use the IP 10.0.3.21 as a custom ephemeral IP address and assign it to the licensing server.
  • B. Start the licensing server with an automatic ephemeral IP address, and then promote it to a static internal IP address.
  • C. Reserve the IP 10.0.3.21 as a static internal IP address using gcloud and assign it to the licensing server.
  • D. Reserve the IP 10.0.3.21 as a static public IP address using gcloud and assign it to the licensing server.

Answer: C

 

NEW QUESTION 76
You are building an application that stores relational data from users. Users across the globe will use this application. Your CTO is concerned about the scaling requirements because the size of the user base is unknown. You need to implement a database solution that can scale with your user growth with minimum configuration changes. Which storage solution should you use?

  • A. Cloud SQL
  • B. Cloud Spanner
  • C. Cloud Datastore
  • D. Cloud Firestore

Answer: B

 

NEW QUESTION 77
You created a Google Cloud Platform project with an App Engine application inside the project. You initially configured the application to be served from the us-central region. Now you want the application to be served from the asia-northeast1 region. What should you do?

  • A. Change the default region property setting in the existing GCP project to asia-northeast1.
  • B. Change the region property setting in the existing App Engine application from us-central to asia-northeast1.
  • C. Create a new GCP project and create an App Engine application inside this new project. Specify asia-northeast1 as the region to serve your application.
  • D. Create a second App Engine application in the existing GCP project and specify asia-northeast1 as the region to serve your application.

Answer: D

 

NEW QUESTION 78
You've just enabled an API for the developers. A couple of minutes later, one of the developers pastes a screenshot into Slack.
The screenshot indicates that the API isn't enabled. You can see that the project ID is correct. What is the most likely reason for this error?

  • A. The developer is using the wrong project.
  • B. The API hasn't completed the process to become fully enabled yet.
  • C. The developer didn't run the gcloud refresh api command.
  • D. The developer is trying to use the wrong API.

Answer: B

 

NEW QUESTION 79
You need to configure IAM access audit logging in BigQuery for external auditors. You want to follow Google-recommended practices. What should you do?

  • A. Add the auditors group to two new custom IAM roles.
  • B. Add the auditors group to the `logging.viewer' and `bigQuery.dataViewer' predefined IAM roles.
  • C. Add the auditor user accounts to the `logging.viewer' and `bigQuery.dataViewer' predefined IAM roles.
  • D. Add the auditor user accounts to two new custom IAM roles.

Answer: B

Explanation:
As per google best practices it is recommended to use predefined roles and create groups to control access to multiple users with same responsibility
https://cloud.google.com/docs/enterprise/best-practices-for-enterprise-organizations#groups-and- service-accounts .

 

NEW QUESTION 80
2. Your auditor wants to view your organization's use of data in Google Cloud. The auditor is most interested in auditing who accessed data in Cloud Storage buckets. You need to help the auditor access the data they need. What should you do?

  • A. Turn on Data Access Logs for the buckets they want to audit, and Then build a query in the log viewer that filters on Cloud Storage
  • B. Assign the appropriate permissions, and then use Cloud Monitoring to review metrics
  • C. Use the export logs API to provide the Admin Activity Audit Logs in the format they want
  • D. Assign the appropriate permissions, and then create a Data Studio report on Admin Activity Audit Logs

Answer: B

 

NEW QUESTION 81
You have production and test workloads that you want to deploy on Compute Engine. Production VMs need to be in a different subnet than the test VMs. All the VMs must be able to reach each other over internal IP without creating additional routes. You need to set up VPC and the 2 subnets. Which configuration meets these requirements?

  • A. Create 2 custom VPCs, each with a single subnet. Create each subnet is a different region and with a different CIDR range.
  • B. Create a single custom VPC with 2 subnets. Create each subnet in a different region and with a different CIDR range.
  • C. Create a single custom VPC with 2 subnets. Create each subnet in the same region and with the same CIDR range.
  • D. Create 2 custom VPCs, each with a single subnet. Create each subnet in the same region and with the same CIDR range.

Answer: B

 

NEW QUESTION 82
You have a Compute Engine instance hosting a production application. You want to receive an email if the instance consumes more than 90% of its CPU resources for more than 15 minutes. You want to use Google services. What should you do?

  • A. 1. Create a Stackdriver Workspace, and associate your Google Cloud Platform (GCP) project with it.
    2.Create an Alerting Policy in Stackdriver that uses the threshold as a trigger condition.
    3.Configure your email address in the notification channel.
  • B. 1. Create a Stackdriver Workspace, and associate your GCP project with it.
    2.Write a script that monitors the CPU usage and sends it as a custom metric to Stackdriver.
    3.Create an uptime check for the instance in Stackdriver.
  • C. 1. Create a consumer Gmail account.
    2.Write a script that monitors the CPU usage.
    3.When the CPU usage exceeds the threshold, have that script send an email using the Gmail account and smtp.gmail.com on port 25 as SMTP server.
  • D. 1. In Stackdriver Logging, create a logs-based metric to extract the CPU usage by using this regular expression: CPU Usage: ([0-9] {1,3})%
    2.In Stackdriver Monitoring, create an Alerting Policy based on this metric.
    3.Configure your email address in the notification channel.

Answer: D

 

NEW QUESTION 83
You are working with a user to set up an application in a new VPC behind a firewall. The user is concerned about data egress. You want to configure the fewest open egress ports. What should you do?

  • A. Set up a low-priority (65534) rule that blocks all egress and a high-priority rule (1000) that allows only the appropriate ports.
  • B. Set up a high-priority (1000) rule that pairs both ingress and egress ports.
  • C. Set up a high-priority (1000) rule that blocks all egress and a low-priority (65534) rule that allows only the appropriate ports.
  • D. Set up a high-priority (1000) rule to allow the appropriate ports.

Answer: C

 

NEW QUESTION 84
You are using Deployment Manager to create a Google Kubernetes Engine cluster. Using the same Deployment Manager deployment, you also want to create a DaemonSet in the kube-system namespace of the cluster. You want a solution that uses the fewest possible services. What should you do?

  • A. Use the Deployment Manager Runtime Configurator to create a new Config resource that contains the DaemonSet definition.
  • B. Add the cluster's API as a new Type Provider in Deployment Manager, and use the new type to create the DaemonSet.
  • C. In the cluster's definition in Deployment Manager, add a metadata that has kube-system as key and the DaemonSet manifest as value.
  • D. With Deployment Manager, create a Compute Engine instance with a startup script that uses kubectl to create the DaemonSet.

Answer: D

 

NEW QUESTION 85
You are hosting an application from Compute Engine virtual machines (VMs) in us-central1-a. You want to adjust your design to support the failure of a single Compute Engine zone, eliminate downtime, and minimize cost. What should you do?

  • A. - Perform regular backups of your application.
    - Create a Cloud Monitoring Alert and be notified if your application becomes unavailable.
    - Restore from backups when notified.
  • B. - Create an HTTP(S) Load Balancer.
    - Create one or more global forwarding rules to direct traffic to your VMs.
  • C. - Create a Managed Instance Group and specify us-central1-a as the zone.
    - Configure the Health Check with a short Health Interval.
  • D. - Create Compute Engine resources in us-central1-b.
    - Balance the load across both us-central1-a and us-central1-b.

Answer: B

Explanation:
Reference:
https://github.com/GoogleCloudPlatform/puppet-google-compute

 

NEW QUESTION 86
You are performing a monthly security check of your Google Cloud environment and want to know who has access to view data stored in your Google Cloud Project. What should you?

  • A. Enable Audit Logs for all APIs that are related to data storage.
  • B. Review the Identity-Aware Proxy settings for each resource.
  • C. Review the IAM permissions for any role that allows for data access.
  • D. Create a Data Loss Prevention job.

Answer: C

 

NEW QUESTION 87
You have downloaded and installed the gcloud command line interface (CLI) and have authenticated with your Google Account. Most of your Compute Engine instances in your project run in the europe-west1-d zone. You want to avoid having to specify this zone with each CLI command when managing these instances. What should you do?

  • A. Create a Metadata entry on the Compute Engine page with key compute/zone and value europe- west1-d
  • B. In the CLI installation directory, create a file called default.conf containing zone=europe-west1-d.
  • C. In the Settings page for Compute Engine under Default location, set the zone to europe-west1-d.
  • D. Set the europe-west1-d zone as the default zone using the gcloud config subcommand.

Answer: B

Explanation:
https://cloud.google.com/compute/docs/gcloud-compute

 

NEW QUESTION 88
Your team maintains the infrastructure for your organization. The current infrastructure requires changes. You need to share your proposed changes with the rest of the team. You want to follow Google's recommended best practices. What should you do?

  • A. Use Deployment Manager templates to describe the proposed changes and store them in a Cloud Storage bucket.
  • B. Apply the changes in a development environment, run gcloud compute instances list, and then save the output in Cloud Source Repositories.
  • C. Apply the changes in a development environment, run gcloud compute instances list, and then save the output in a shared Storage bucket.
  • D. Use Deployment Manager templates to describe the proposed changes and store them in Cloud Source Repositories.

Answer: D

 

NEW QUESTION 89
......

Prepare With Top Rated High-quality Associate-Cloud-Engineer Dumps For Success in Exam: https://pdfvce.trainingdumps.com/Associate-Cloud-Engineer-valid-vce-dumps.html

Related Articles

more
Google Associate-Cloud-Engineer Certification Practice Exam

Our VCE dumps & latest VCE torrent are all compiled by professionals, which is deserved to be relied on for your exam test. The valid training material and latest practice VCE can help you have a good knowledge of your coming exam.100% pass is our guarantee.

Latest Exam Collection

Useful Links

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Copyright © 2026 TrainingDumps NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy