← Back to exam page

Professional-Cloud-Developer Professional Cloud Developer

Loading demo links...

Showing 1–3 of 15 questions

Question 1

You are deploying your applications on Compute Engine. One of your Compute Engine instances failed to launch. What should you do? (Choose two.)

Select all that apply, then click Submit answer.

  • Determine whether your file system is corrupted.

  • Access Compute Engine as a different SSH user.

  • Troubleshoot firewall rules or routes on an instance.

  • Check whether your instance boot disk is completely full.

  • Check whether network traffic to or from your instance is being dropped.
Question 2

You are designing a resource-sharing policy for applications used by different teams in a Google Kubernetes Engine cluster. You need to ensure that all applications can access the resources needed to run. What should you do? (Choose two.)

Select all that apply, then click Submit answer.

  • Specify the resource limits and requests in the object specifications.

  • Create a namespace for each team, and attach resource quotas to each namespace.

  • Create a LimitRange to specify the default compute resource requirements for each namespace.

  • Create a Kubernetes service account (KSA) for each application, and assign each KSA to the namespace.

  • Use the Anthos Policy Controller to enforce label annotations on all namespaces. Use taints and tolerations to allow resource sharing for namespaces.
Question 3

You are developing a microservice-based application that will run on Google Kubernetes Engine (GKE). Some of the services need to access different Google Cloud APIs. How should you set up authentication of these services in the cluster following Google-recommended best practices? (Choose two.)

Select all that apply, then click Submit answer.

  • Use the service account attached to the GKE node.

  • Enable Workload Identity in the cluster via the gcloud command-line tool.

  • Access the Google service account keys from a secret management service.

  • Store the Google service account keys in a central secret management service.

  • Use gcloud to bind the Kubernetes service account and the Google service account using roles/iam.workloadIdentity.