• Home
  • Blogs
  • Nov 23, 2023 Reliable Study Materials for Associate-Cloud-Engineer Exam Success For Sure [Q38-Q54]

Nov 23, 2023 Reliable Study Materials for Associate-Cloud-Engineer Exam Success For Sure [Q38-Q54]

Share

Nov 23, 2023 Reliable Study Materials for Associate-Cloud-Engineer Exam Success For Sure

100% Latest Most updated Associate-Cloud-Engineer Questions and Answers


To be eligible for the Google Associate-Cloud-Engineer Certification Exam, you need to have a basic understanding of cloud computing concepts and be familiar with GCP services. You should also have experience using GCP to deploy, manage, and operate applications. Associate-Cloud-Engineer exam consists of multiple-choice and multiple-select questions and is administered online.


The Google Associate Cloud Engineer certification is designed to measure the candidates’ fundamental skills required to perform the deployment, monitoring, and maintenance of projects on Google Cloud. This certificate is a good starting point for those individuals who are new to Cloud and can be used as a stepping stone to the professional-level certifications of this vendor. To get certified, the applicants are required to complete one exam. The qualifying test measures the ability of the specialists to perform the following tasks: setting up the Cloud solution environment; planning and configuring Cloud solutions; deploying and implementing Cloud solutions; ensuring the effective operation of Cloud solutions; and configuring access & security.

 

NEW QUESTION # 38
You need to select and configure compute resources for a set of batch processing jobs. These jobs take around 2 hours to complete and are run nightly. You want to minimize service costs.
What should you do?

  • A. Select Google Kubernetes Engine. Use a three-node cluster with micro instance types.
  • B. Select Compute Engine. Use preemptible VM instances of the appropriate standard machine type.
  • C. Select Compute Engine. Use VM instance types that support micro bursting.
  • D. Select Google Kubernetes Engine. Use a single-node cluster with a small instance type.

Answer: B


NEW QUESTION # 39
You are assigned to maintain a Google Kubernetes Engine (GKE) cluster named dev that was deployed on Google Cloud. You want to manage the GKE configuration using the command line interface (CLI). You have just downloaded and installed the Cloud SDK. You want to ensure that future CLI commands by default address this specific cluster. What should you do?

  • A. Create a file called gke.default in the ~/.gcloud folder that contains the cluster name.
  • B. Create a file called defaults.json in the ~/.gcloud folder that contains the cluster name.
  • C. Use the command gcloud config set container/cluster dev.
  • D. Use the command gcloud container clusters update dev.

Answer: C

Explanation:
To set a default cluster for gcloud commands, run the following command: gcloud config set container/cluster CLUSTER_NAME https://cloud.google.com/kubernetes-engine/docs/how-to/managing-clusters?hl=en


NEW QUESTION # 40
Your engineers need to pass database credentials to a Kubernetes Pod. The YAML they're using looks similar to the following:
apiVersion: "extensions/v1beta1"
kind: "Deployment"
metadata:
name: "products-service"
namespace: "default"
labels:
app: "products-service"
spec:
replicas: 3
selector:
matchLabels:
app: "products-service"
template:
metadata:
labels:
app: "products-service"
spec:
containers:
- name: "products"
image: "gcr.io/find-seller-app-dev/products:latest"
env:
- name: "database_user"
value: "admin"
- name: "database_password"
value: "TheB3stP@ssW0rd"
What is Google's recommended best practice for working with sensitive information inside of Kubernetes?

  • A. Use an environment variable.
  • B. Mount the credentials in a volume.
  • C. Store the credentials in a Secret.
  • D. Store the credentials in a ConfigMap.

Answer: C


NEW QUESTION # 41
You will have several applications running on different Compute Engine instances in the same project. You want to specify at a more granular level the service account each instance uses when calling Google Cloud APIs. What should you do?

  • A. When creating the instances, assign the name of each Service Account as instance metadata
  • B. When creating the instances, specify a Service Account for each instance
  • C. After starting the instances, use gcloud compute instances update to specify a Service Account for each instance
  • D. After starting the instances, use gcloud compute instances update to assign the name of the relevant Service Account as instance metadata

Answer: B

Explanation:
When you create an instance using the gcloud command-line tool or the Google Cloud Console, you can specify which service account the instance uses when calling Google Cloud APIs.
https://cloud.google.com/compute/docs/access/service-
accounts#associating_a_service_account_to_an_instance


NEW QUESTION # 42
Your company implemented BigQuery as an enterprise data warehouse. Users from multiple business units run queries on this data warehouse. However, you notice that query costs for BigQuery are very high, and you need to control costs. Which two methods should you use? (Choose two.)

  • A. Split your BigQuery data warehouse into multiple data warehouses for each business unit.
  • B. Apply a user- or project-level custom query quota for BigQuery data warehouse.
  • C. Create separate copies of your BigQuery data warehouse for each business unit.
  • D. Change your BigQuery query model from on-demand to flat rate. Apply the appropriate number of slots to each Project.
  • E. Split the users from business units to multiple projects.

Answer: B,D

Explanation:
https://cloud.google.com/bigquery/docs/custom-quotas https://cloud.google.com/bigquery/pricing#flat_rate_pricing


NEW QUESTION # 43
You have an application on a general-purpose Compute Engine instance that is experiencing excessive disk read throttling on its Zonal SSD Persistent Disk. The application primarily reads large files from disk. The disk size is currently 350 GB. You want to provide the maximum amount of throughput while minimizing costs. What should you do?

  • A. Migrate to use a Local SSD on the instance.
  • B. Increase the size of the disk to 1 TB.
  • C. Migrate to use a Regional SSD on the instance.
  • D. Increase the allocated CPU to the instance.

Answer: A

Explanation:
Explanation/Reference: https://cloud.google.com/compute/docs/disks/performance


NEW QUESTION # 44
Your manager needs you to test out the latest version of MS-SQL on a Windows instance. You've created the VM and need to connect into the instance. What steps should you follow to connect to the instance?

  • A. Generate a Windows password in the console, then use a client capable of communicating via RDP and provide the credentials.
  • B. Generate a Windows password in the console, then use the RDP button to connect in through the console.
  • C. Connect in with your own RDP client using your Google Cloud username and password.
  • D. From the console click the SSH button to automatically connect.

Answer: A,D


NEW QUESTION # 45
You have an object in a Cloud Storage bucket that you want to share with an external company.
The object contains sensitive data. You want access to the content to be removed after four hours. The external company does not have a Google account to which you can grant specific user-based access privileges. You want to use the most secure method that requires the fewest steps. What should you do?

  • A. Configure the storage bucket as a static website and furnish the object's URL to the company.
    Delete the object from the storage bucket after four hours.
  • B. Set object access to `public' and use object lifecycle management to remove the object after four hours.
  • C. Create a new Cloud Storage bucket specifically for the external company to access.
    Copy the object to that bucket. Delete the bucket after four hours have passed.
  • D. Create a signed URL with a four-hour expiration and share the URL with the company.

Answer: D


NEW QUESTION # 46
You have a Compute Engine instance hosting an application used between 9 AM and 6 PM on weekdays. You want to back up this instance daily for disaster recovery purposes. You want to keep the backups for 30 days. You want the Google-recommended solution with the least management overhead and the least number of services. What should you do?

  • A. 1. Create a bash script in the instance that copies the content of the disk to Cloud Storage.
    2. Create a bash script in the instance that deletes data older than 30 days in the backup Cloud Storage bucket.
    3. Configure the instance's crontab to execute these scripts daily at 1:00 AM.
  • B. 1. Update your instances' metadata to add the following value: snapshot-schedule: 0 1 * * *
    2. Update your instances' metadata to add the following value: snapshot-retention: 30
  • C. 1. Create a Cloud Function that creates a snapshot of your instance's disk.
    2. Create a Cloud Function that deletes snapshots that are older than 30 days.
    3. Use Cloud Scheduler to trigger both Cloud Functions daily at 1:00 AM.
  • D. 1. In the Cloud Console, go to the Compute Engine Disks page and select your instance's disk.
    2. In the Snapshot Schedule section, select Create Schedule and configure the following parameters:
    - Schedule frequency: Daily
    - Start time: 1:00 AM ?2:00 AM
    - Autodelete snapshots after 30 days

Answer: D


NEW QUESTION # 47
You are migrating a production-critical on-premises application that requires 96 vCPUs to perform its task. You want to make sure the application runs in a similar environment on GCP. What should you do?

  • A. Create the VM using Compute Engine default settings. Use gcloud to modify the running instance to have 96 vCPUs.
  • B. When creating the VM, use Intel Skylake as the CPU platform.
  • C. When creating the VM, use machine type n1-standard-96.
  • D. Start the VM using Compute Engine default settings, and adjust as you go based on Rightsizing Recommendations.

Answer: C

Explanation:
N1 machine series have up to 96 vCPUs, 6.5 GB of memory per vCPU, and are available on Intel Sandy Bridge, Ivy Bridge, Haswell, Broadwell, and Skylake CPU platforms.
https://cloud.google.com/compute/docs/machine-types


NEW QUESTION # 48
Your company has workloads running on Compute Engine and on-premises. The Google Cloud Virtual Private Cloud (VPC) is connected to your WAN over a Virtual Private Network (VPN). You need to deploy a new Compute Engine instance and ensure that no public Internet traffic can be routed to it. What should you do?

  • A. Create the instance with Private Google Access enabled.
  • B. Create a route on the VPC to route all traffic to the instance over the VPN tunnel.
  • C. Create a deny-all egress firewall rule on the VPC network.
  • D. Create the instance without a public IP address.

Answer: D

Explanation:
Private Google Access allows access to the external IP addresses. which is against the requirements.


NEW QUESTION # 49
You want to configure 10 Compute Engine instances for availability when maintenance occurs. Your requirements state that these instances should attempt to automatically restart if they crash. Also, the instances should be highly available including during system maintenance. What should you do?

  • A. Create an instance group for the instance. Verify that the 'Advanced creation options' setting for 'do not retry machine creation' is set to off.
  • B. Create an instance template for the instances. Set 'Automatic Restart' to off. Set 'On-host maintenance' to Terminate VM instances. Add the instance template to an instance group.
  • C. Create an instance template for the instances. Set the 'Automatic Restart' to on. Set the 'On-host maintenance' to Migrate VM instance. Add the instance template to an instance group.
  • D. Create an instance group for the instances. Set the 'Autohealing' health check to healthy (HTTP).

Answer: B


NEW QUESTION # 50
You've created a new firewall rule to allow incoming traffic on port 22, using a target tag of "dev-ssh". You tried to connect to one of your instances, and you're still unable to connect. What steps do you need to take to resolve the problem?

  • A. Use source tags in place of the target tags.
  • B. Run the gcloud firewall-rules refresh command.
  • C. Apply a network tag of "dev-ssh" to the instance you're trying to connect into and test again.
  • D. Reboot the instances for the firewall rule to take effect.

Answer: C


NEW QUESTION # 51
You created a Kubernetes deployment by running kubectl run nginx image=nginx labels=app=prod. Your Kubernetes cluster is also used by a number of other deployments. How can you find the identifier of the pods for this nginx deployment?

  • A. kubectl get deployments -output=pods
  • B. gcloud list gke-deployments -filter={pod }
  • C. kubectl get pods -I "app=prod"
  • D. gcloud get pods -selector="app=prod"

Answer: C

Explanation:
Explanation
This command correctly lists pods that have the label app=prod. When creating the deployment, we used the label app=prod so listing pods that have this label retrieve the pods belonging to nginx deployments. You can list pods by using Kubernetes CLI kubectl get pods.
Ref: https://kubernetes.io/docs/tasks/access-application-cluster/list-all-running-container-images/ Ref: https://kubernetes.io/docs/tasks/access-application-cluster/list-all-running-container-images/#list-containers


NEW QUESTION # 52
Which of the following is a valid use case for Flow Logs?

  • A. Network forensics.
  • B. Serving as a UDP relay.
  • C. Blocking instances from communicating over certain ports.
  • D. Proxying SSL traffic.

Answer: A


NEW QUESTION # 53
You want to configure autohealing for network load balancing for a group of Compute Engine instances that run in multiple zones, using the fewest possible steps. You need to configure re-creation of VMs if they are unresponsive after 3 attempts of 10 seconds each. What should you do?

  • A. Create a managed instance group. Set the Autohealing health check to healthy (HTTP).
  • B. Create an HTTP load balancer with a backend configuration that references an existing instance group. Define a balancing mode and set the maximum RPS to 10.
  • C. Create a managed instance group. Verify that the autoscaling setting is on.
  • D. Create an HTTP load balancer with a backend configuration that references an existing instance group. Set the health check to healthy (HTTP).

Answer: D


NEW QUESTION # 54
......


Google Associate-Cloud-Engineer exam is an entry-level exam that assesses the candidates' abilities to use GCP services to build secure and scalable cloud solutions. Associate-Cloud-Engineer exam covers a wide range of topics such as cloud architecture, compute and storage, networking, security, and operations. Associate-Cloud-Engineer exam also focuses on real-world scenarios that test the candidates' problem-solving skills.

 

New Google Associate-Cloud-Engineer Dumps & Questions: https://pass4sure.exam-killer.com/Associate-Cloud-Engineer-valid-questions.html

Related Blogs

more
Google Associate-Cloud-Engineer Certification Practice Exam

Our latest test questions will provide the best valid and accurate knowledge for you and give you right reference. You will successfully pass your actual test with the help of our high quality and high hit-rate pass4sure study torrent.

Latest Update

Useful Links

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Copyright © 2026 EXAM-KILLER.COM. All rights reserved. All trademarks are the property of their respective owners and we don't provide actual questions from any vendor. Privacy Policy