← Back to exam page

Professional-Cloud-Network-Engineer Professional Cloud Network Engineer

Loading demo links...

Showing 4–6 of 10 questions

Question 4

You have recently been put in charge of managing identity and access management for your organization. You have several projects and want to use scripting and automation wherever possible. You want to grant the editor role to a project member.

Which two methods can you use to accomplish this? (Choose two.)

Select all that apply, then click Submit answer.

  • GetIamPolicy() via REST API

  • setIamPolicy() via REST API

  • gcloud pubsub add-iam-policy-binding Sprojectname --member user:Susername --role roles/editor

  • gcloud projects add-iam-policy-binding Sprojectname --member user:Susername --role roles/editor

  • Enter an email address in the Add members field, and select the desired role from the drop-down menu in the GCP Console.
Question 5

Your company is working with a partner to provide a solution for a customer. Both your company and the partner organization are using GCP. There are applications in the partner's network that need access to some resources in your company's VPC. There is no CIDR overlap between the VPCs.

Which two solutions can you implement to achieve the desired results without compromising the security? (Choose two.)

Select all that apply, then click Submit answer.

  • VPC peering

  • Shared VPC

  • Cloud VPN

  • Dedicated Interconnect

  • Cloud NAT
Question 6

Your organization is deploying a single project for 3 separate departments. Two of these departments require network connectivity between each other, but the third department should remain in isolation. Your design should create separate network administrative domains between these departments. You want to minimize operational overhead.

How should you design the topology?

Select an option, then click Submit answer.

  • Create a Shared VPC Host Project and the respective Service Projects for each of the 3 separate departments.

  • Create 3 separate VPCs, and use Cloud VPN to establish connectivity between the two appropriate VPCs.

  • Create 3 separate VPCs, and use VPC peering to establish connectivity between the two appropriate VPCs.

  • Create a single project, and deploy specific firewall rules. Use network tags to isolate access between the departments.