You are using a single Cloud SQL instance to serve your application from a specific zone. You want to
introduce high availability. What should you do?

A.

Create a read replica instance in a different region

B.

Create a failover replica instance in a different region

C.

Create a read replica instance in the same region, but in a different zone

D.

Create a failover replica instance in the same region, but in a different zone

You are running a cluster on Kubernetes Engine to serve a web application. Users are reporting that a specific
part of the application is not responding anymore. You notice that all pods of your deployment keep restarting after 2 seconds. The application writes logs to standard output. You want to inspect the logs to find the cause of the issue. Which approach can you take?

A.

Review the Stackdriver logs for each Compute Engine instance that is serving as a node in the cluster.

B.

Review the Stackdriver logs for the specific Kubernetes Engine container that is serving the
unresponsive part of the application.

C.

Connect to the cluster using gcloud credentials and connect to a container in one of the pods to read the
logs. 

D.

Review the Serial Port logs for each Compute Engine instance that is serving as a node in the cluster.

You are migrating your on-premises solution to Google Cloud in several phases. You will use Cloud VPN to maintain a connection between your on-premises systems and Google Cloud until the migration is completed. You want to make sure all your on-premises systems remain reachable during this period. How should you organize your networking in Google Cloud?

A.

Use the same IP range on Google Cloud as you use on-premises

B.

Use the same IP range on Google Cloud as you use on-premises for your primary IP range and use a
secondary range that does not overlap with the range you use on-premises

C.

Use an IP range on Google Cloud that does not overlap with the range you use on-premises

D.

Use an IP range on Google Cloud that does not overlap with the range you use on-premises for your
primary IP range and use a secondary range with the same IP range as you use on-premises

Move your data onto a Transfer Appliance. Use a Transfer Appliance Rehydrator to decrypt the data
into Cloud Storage.

A.

Move your data onto a Transfer Appliance. Use Cloud Dataprep to decrypt the data into Cloud Storage

B.

Install gsutil on each server that contains data. Use resumable transfers to upload the data into Cloud
Storage.

C.

Install gsutil on each server containing data. Use streaming transfers to upload the data into Cloud
Storage.

You have developed an application using Cloud ML Engine that recognizes famous paintings from uploaded images. You want to test the application and allow specific people to upload images for the next 24 hours. Not all users have a Google Account. How should you have users upload images?

A.

Have users upload the images to Cloud Storage. Protect the bucket with a password that expires after 24
hours.

B.

Have users upload the images to Cloud Storage using a signed URL that expires after 24 hours.

C.

Create an App Engine web application where users can upload images. Configure App Engine to disable
the application after 24 hours. Authenticate users via Cloud Identity.

D.

Create an App Engine web application where users can upload images for the next 24 hours.
Authenticate users via Cloud Identity.

Your company wants to start using Google Cloud resources but wants to retain their on-premises Active
Directory domain controller for identity management. What should you do?

A.

Use the Admin Directory API to authenticate against the Active Directory domain controller.

B.

Use Google Cloud Directory Sync to synchronize Active Directory usernames with cloud identities and
configure SAML SSO.

C.

Use Cloud Identity-Aware Proxy configured to use the on-premises Active Directory domain controller
as an identity provider.

D.

Use Compute Engine to create an Active Directory (AD) domain controller that is a replica of the
onpremises AD domain controller using Google Cloud Directory Sync.

You have deployed an application to Kubernetes Engine, and are using the Cloud SQL proxy container to
make the Cloud SQL database available to the services running on Kubernetes. You are notified that the
application is reporting database connection issues. Your company policies require a post-mortem. What
should you do?

A.

Use gcloud sql instances restart.

B.

Validate that the Service Account used by the Cloud SQL proxy container still has the Cloud Build
Editor role.

C.

In the GCP Console, navigate to Stackdriver Logging. Consult logs for Kubernetes Engine and Cloud
SQL.

D.

In the GCP Console, navigate to Cloud SQL. Restore the latest backup. Use kubectl to restart all pods

You have an outage in your Compute Engine managed instance group: all instance keep restarting after 5
seconds. You have a health check configured, but autoscaling is disabled. Your colleague, who is a Linux
expert, offered to look into the issue. You need to make sure that he can access the VMs. What should you do? 

A.

Grant your colleague the IAM role of project Viewer

B.

Perform a rolling restart on the instance group

C.

Disable the health check for the instance group. Add his SSH key to the project-wide SSH keys

D.

Disable autoscaling for the instance group. Add his SSH key to the project-wide SSH Keys

You have an application deployed on Kubernetes Engine using a Deployment named echo-deployment. Thedeployment is exposed using a Service called echo-service. You need to perform an update to the applicationwith minimal downtime to the application. What should you do?

A.

Use kubectl set image deployment/echo-deployment <new-image>

B.

Use the rolling update functionality of the Instance Group behind the Kubernetes cluster

C.

Update the deployment yaml file with the new container image. Use kubectl delete deployment/
echo-deployment and kubectl create –f <yaml-file>

D.

Update the service yaml file which the new container image. Use kubectl delete service/echoservice
and kubectl create –f <yaml-file>

The development team has provided you with a Kubernetes Deployment file. You have no infrastructure yet and need to deploy the application. What should you do?

A.

Use gcloud to create a Kubernetes cluster. Use Deployment Manager to create the deployment.

B.

Use gcloud to create a Kubernetes cluster. Use kubectl to create the deployment.

C.

Use kubectl to create a Kubernetes cluster. Use Deployment Manager to create the deployment.

D.

Use kubectl to create a Kubernetes cluster. Use kubectl to create the deployment.