Core Infrastructure Quizes

Question 1

Choose the correct completion: Services and APIs are enabled on a per-__________ basis.

a) Billing account
b) Organisation
c) Project
d) Folder

Answer 1

c) Project

Question 2

True or false: Google manages every aspect of Google Cloud Platform customers’ security.

Answer 2

False

Google Cloud Platform manages the lower layers of the security stack, such as physical security, and gives customers tools for managing the higher layers.

Question 3

Your company has two GCP projects, and you want them to share policies. What is the less error-prone way to set this up?

a) Duplicate all the policies on one project onto the other.
b) Place both projects into a folder, and define the policies on the folder.

Answer 3

B)

Question 4

When would you choose to have an organization node? (Choose all that are correct. Choose 2 responses.)

a) When you want to create folders.
b) When you want to organize resources into projects.
c) When you want to apply organization-wide policies centrally.
d) There is no choice; organization nodes are mandatory.

Answer 4

A) & C)

A) Folders require an organization node. Organization nodes are optional, but if you want to create folders, having one is mandatory.
C) Organization nodes let you apply policies centrally. Organization nodes are optional, but if you want to define policies that apply to all the projects in your organization, having one is mandatory.

Question 5

Order these IAM role types from broadest to finest-grained.

a) Primitive roles, predefined roles, custom roles
b) Custom roles, predefined roles, primitive roles
c) Predefined roles, custom roles, primitive roles

Answer 5

a)

Question 6

Can IAM policies that are implemented higher in the resource hierarchy take away access that is granted by lower-level policies?

Answer 6

No

Question 7

True or False: In Google Cloud IAM: if a policy applied at the project level gives you Owner permissions, your access to an individual resource in that project might be restricted to View permission if someone applies a more restrictive policy directly to that resource.

Answer 7

False
Policies are a union of those applied on resource itself and those inherited from higher levels in the hierarchy. If a parent policy is less restrictive, it overrides a more restrictive policy applied on the resource. If a parent policy is more restrictive, it does not override a less restrictive policy applied on the resource. Therefore, access granted at a higher level in the hierarchy cannot be taken away by policies applied at a lower level in the hierarchy.

Question 8

True or False: All Google Cloud Platform resources are associated with a project.

Answer 8

True

All Google Cloud Platform resources are associated with a project.

Question 9

Service accounts are used to provide which of the following? (Choose all that are correct. Choose 3 responses.)

a) A way to restrict the actions a resource (such as a VM) can perform
b) A way to allow users to act with service account permissions
c) Authentication between Google Cloud Platform services
d) A set of predefined permissions

Answer 9

a) b) c)

Question 10

How do GCP customers and Google Cloud Platform divide responsibility for security?

a) Google takes care of the higher parts of the stack, and customers are responsible for the lower parts.
b) All aspects of security are the customer’s responsibility.
c) All aspects of security are Google’s responsibility.
d) Google takes care of the lower parts of the stack, and customers are responsible for the higher parts.

Answer 10

d)

Question 11

Which of these values is globally unique, permanent, and unchangeable, but chosen by the customer?

a) The project number
b) The project name
c) The project’s billing credit-card number
d) The project ID

Answer 11

d)

Question 12

Consider a single hierarchy of GCP resources. Which of these situations is possible? (Choose all that are correct. Choose 3 responses.)

a) There are two or more organization nodes
b) There is an organization node, and there is at least one folder.
c) There is no organization node, but there is at least one folder.
d) There is an organization node, and there are no folders.
e) There is no organization node, and there are no folders.

Answer 12

b) d) & e)

Question 13

What is the difference between IAM primitive roles and IAM predefined roles?

a) Primitive roles affect all resources in a GCP project. Predefined roles apply to a particular service in a project.
b) Primitive roles only apply to the owner of the GCP project. Predefined roles can be associated with any user.
c) Primitive roles are changeable once assigned. Predefined roles can never be changed.
d) Primitive roles can only be granted to single users. Predefined roles can be associated with a group.
e) Primitive roles only allow viewing, creating, and deleting resources. Predefined roles allow any modification.

Answer 13

a)

Question 14

Which statement is true about billing for solutions deployed using Cloud Marketplace (formerly known as Cloud Launcher)?

a) You pay only for the underlying GCP resources you use, with the possible addition of extra fees for commercially licensed software.
b) You pay only for the underlying GCP resources you use; Google pays the license fees for commercially licensed software.
c) Cloud Marketplace solutions are always free.
d) After a trial period, each Cloud Marketplace solution assesses a fixed recurring monthly fee.

Answer 14

a)

Question 15

True or false? In Google Cloud VPCs, subnets have regional scope.

Answer 15

True
VPC subnets can span the zones that make up a region. This is beneficial because your solutions can incorporate fault tolerance without complicating your network topology.

Question 16

True or false: If you increase the size of a subnet in a custom VPC network, the IP addresses of virtual machines already on that subnet might be affected.

Answer 16

False
You can dynamically increase the size of a subnet in a custom network by expanding the range of IP addresses allocated to it. Doing that doesn’t affect already configured VMs.

Question 17

True or false: You can create Compute Engine virtual machines from the command line.

Answer 17

True
It’s advantageous to create virtual machines from a command line when you want their configurations to be scripted and repeatable. The gcloud command, provided by Google Cloud as part of the GCP SDK, can create virtual machines with parameters you specify.

Question 18

What is the main reason customers choose Preemptible VMs?

Answer 18

To reduce cost.

The per-hour price of preemptible VMs incorporates a substantial discount.

Question 19

True or False: Google Cloud Load Balancing allows you to balance HTTP-based traffic across multiple Compute Engine regions.

Answer 19

True

With global Cloud Load Balancing, your application presents a single front-end to the world.

Question 20

Which statement is true about Google VPC networks and subnets?

a) Networks are global; subnets are zonal
b) Networks are global; subnets are regional
c) Networks are regional; subnets are zonal
d) Networks and subnets are global

Answer 20

b)

Question 21

An application running in a Compute Engine virtual machine needs high-performance scratch space. Which type of storage meets this need?

a) Standard persistent
b) Local standard
c) Local SSD
d) SSD persistent

Answer 21

c)

Question 22

Choose an application that would be suitable for running in a Preemptible VM.

a) A batch job that can be checkpointed and restarted
b) A batch job that cannot be checkpointed and restarted
c) An interactive website
d) An online relational database

Answer 22

a)

Question 23

How do Compute Engine customers choose between big VMs and many VMs?

a) Use big VMs for fault tolerance and elasticity; use many VMs for in-memory databases and CPU-intensive analytics
b) Use big VMs for in-memory databases and CPU-intensive analytics; use many VMs for fault tolerance and elasticity

Answer 23

b)

Question 24

How do VPC routers and firewalls work?

a) They are managed by Google as a built-in feature.
b) Customers provision virtual machines and run their routers and firewalls in them.
c) They are managed by Google in virtual machines, which customers may tune or turn off.
d) They are managed by Google in virtual machines, which customers may never modify.

Answer 24

a)

Question 25

A GCP customer wants to load-balance traffic among the back-end VMs that form part of a multi-tier application. Which load-balancing option should this customer choose?

a) The global TCP proxy
b) The regional internal load balancer
c) The global SSL proxy
d) The regional load balancer
e) The global HTTP(S) load balancer

Answer 25

b)

Question 26

For which of these interconnect options is a Service Level Agreement available?

a) VPNs with Cloud Router
b) Direct Peering
c) Carrier Peering
d) Dedicated Interconnect

Answer 26

d)

Question 27

Your Cloud Storage objects live in buckets. Which of these characteristics do you define on a per-bucket basis? Choose all that are correct (3 correct answers).

a) A globally-unique name
b) An encryption-at-rest setting (on or off)
c) A default file type for the objects in the bucket
d) A geographic location
e) A default storage class

Answer 27

a) d) e)

Question 28

True or false: Cloud Storage is well suited to providing the root file system of a Linux virtual machine.

Answer 28

False
Cloud Storage is object storage rather than file storage. Compute Engine virtual machines use Persistent Disk storage to contain their file systems.

Question 29

Why would a customer consider the Coldline storage class?

a) To save money on storing frequently accessed data.
b) To use the Coldline Storage API.
c) To save money on storing infrequently accessed data.
d) To improve security.

Answer 29

c)

Question 30

True or false: Each table in NoSQL databases such as Cloud Bigtable has a single schema that is enforced by the database engine itself.

Answer 30

False
NoSQL databases such as Cloud Bigtable are suitable when all items in the database needn’t have their integrity checked by a database schema. Why not? Maybe you want your database items to contain variable fields, or maybe because you simply want your application to manage database integrity.

Question 31

Some developers think of Cloud Bigtable as a persistent hashtable. What does that mean?

a) Each item in the database consists of exactly the same fields, and can be looked up based on a variety of keys.
b) Each item in the database can be sparsely populated, and is looked up with a single key.

Answer 31

b)

Question 32

Which database service can scale to higher database sizes?

a) Cloud SQL
b) Cloud Spanner

Answer 32

B)
Cloud Spanner can scale to petabyte database sizes, while Cloud SQL is limited by the size of the database instances you choose. At the time this quiz was created, the maximum was 10,230 GB.

Question 33

Which database service presents a MySQL or PostgreSQL interface to clients?

a) Cloud SQL
b) Cloud Spanner

Answer 33

A)
Each Cloud SQL database is configured at creation time for either MySQL or PostgreSQL. Cloud Spanner uses ANSI SQL 2011 with extensions.

Question 34

Which database service offers transactional consistency at global scale?

a) Cloud SQL
b) Cloud Spanner

Answer 34

B)

Cloud Spanner offers transactional consistency at global scale.

Question 35

How are Cloud Datastore and Cloud Bigtable alike? Choose all that are correct (2 correct answers)
A) They are both highly scalable.
B) They both have a free daily quota.
C) They both offer SQL-like queries.
D) They are both NoSQL databases.

Answer 35

A) & D)

Question 36

True or false: Cloud Datastore databases can span App Engine and Compute Engine applications.

Answer 36

True

Question 37

You are developing an application that transcodes large video files. Which storage option is the best choice for your application?
A) Cloud Datastore
B) Cloud Spanner
C) Cloud Storage
D) Google Drive

Answer 37

C)

Question 38

You manufacture devices with sensors and need to stream huge amounts of data from these devices to a storage option in the cloud. Which Google Cloud Platform storage option is the best choice for your application?
A) Cloud Datastore
B) Cloud Bigtable
C) Cloud Spanner
D) BigQuery

Answer 38

B)

Question 39

Which statement is true about objects in Cloud Storage?
A) They are immutable, and new versions overwrite old unless you turn on versioning.
B) They can be edited in place.
C) They are immutable, and versioned by default.
D) They are immutable unless you turn on versioning.

Answer 39

A)

Question 40

You are building a small application. If possible, you’d like this application’s data storage to be at no additional charge. Which service has a free daily quota, separate from any free trials?

Answer 40

Cloud Datastore

Question 41

How do the Nearline and Coldline storage classes differ from Multi-regional and Regional? Choose all that are correct (2 responses).
A) Data in Nearline and Coldline is not retrievable immediately.
B) Nearline and Coldline have lower durability.
C) Nearline and Coldline assess additional retrieval fees.
D) Nearline and Coldline use a differently-architected API.
E) Nearline and Coldline assess lower storage fees.

Answer 41

C) & E)

Question 42

Your application needs a relational database, and it expects to talk to MySQL. Which storage option is the best choice for your application?

Answer 42

Cloud SQL

Question 43

Your application needs to store data with strong transactional consistency, and you want seamless scaling up. Which storage option is the best choice for your application?

Answer 43

Cloud Spanner

Question 44

Which GCP storage service is often the ingestion point for data being moved into the cloud, and is frequently the long-term storage location for data?

Answer 44

Cloud Storage

Question 45

True or false: each container has its own instance of an operating system.

Answer 45

False
Containers start much faster than virtual machines and use fewer resources, because each container does not have its own instance of the operating system.

Question 46

Containers are loosely coupled to their environments. What does that mean? Choose all the statements that are true. (3 correct answers)
A) Containers abstract away unimportant details of their environments.
B) Containers don’t require any particular runtime binary.
C) Deploying a containerized application consumes less resources and is less error-prone than deploying an application in virtual machines.
D) Containers are easy to move around.
E) Containers package your application into equally sized components.

Answer 46

A) C) & D)

Question 47

What is a Kubernetes pod?

Answer 47

A group of containers.
In Kubernetes, a group of one or more containers is called a pod. Containers in a pod are deployed together. They are started, stopped, and replicated as a group.

The simplest workload that Kubernetes can deploy is a pod that consists only of a single container.

Question 48

What is a Kubernetes cluster?

Answer 48

A group of machines where Kubernetes can schedule workloads.
A Kubernetes cluster is a group of machines where Kubernetes can schedule containers in pods. The machines in the cluster are called “nodes.”

Question 49

Where do the resources used to build Kubernetes Engine clusters come from?
A) App Engine
B) Bare-metal servers
C) Compute Engine

Answer 49

C)
Because the resources used to build Kubernetes Engine clusters come from Compute Engine, Kubernetes Engine gets to take advantage of Compute Engine’s and Google VPC’s capabilities.

Question 50

True or false: Google keeps Kubernetes Engine refreshed with successive versions of Kubernetes.

Answer 50

True
The Kubernetes Engine team periodically performs automatic upgrades of your cluster master to newer stable versions of Kubernetes, and you can enable automatic node upgrades too.

Question 51

Identify two reasons for deploying applications using containers. (Choose 2 responses.)
A) Simpler to migrate workloads
B) No need to allocate resources in which to run containers
C) Tight coupling between applications and operating systems
D) Consistency across development, testing, production environments

Answer 51

A & D

Question 52

True or False: Kubernetes allows you to manage container clusters in multiple cloud providers.

Answer 52

True

Question 53

True or False: Google Cloud Platform provides a secure, high-speed container image storage service for use with Kubernetes Engine.

Answer 53

True

Question 54

In Kubernetes, what does “pod” refer to?
A) A group of containers that work together
B) A group of clusters that work together
C) A popular management subsystem
D) A popular logging subsystem

Answer 54

A)

Question 55

Does Google Cloud Platform offer its own tool for building containers (other than the ordinary docker command)?

Answer 55

Yes; the GCP-provided tool is an option, but customers may choose not use it.

Question 56

Where do your Kubernetes Engine workloads run?
A) In clusters implemented using App Engine
B) In clusters implemented using Cloud Functions
C) In clusters built from Compute Engine virtual machines
D) In clusters that are built into GCP, not separately manageable

Answer 56

C)

Question 57

True or false: App Engine is a better choice for a web application than for long-running batch processing.

Answer 57

True
App Engine will scale your application automatically in response to the amount of traffic it receives. That’s why App Engine is especially suited for applications where the workload is highly variable, like a web application.

Question 58

True or false: App Engine just runs applications; it doesn’t offer any services to the applications it runs.

Answer 58

False
App Engine offers NoSQL databases, in-memory caching, load balancing, health checks, logging, and user authentication to applications running in it.

Question 59

Which of these criteria would make you choose App Engine Flexible Environment, rather than Standard Environment, for your application? Choose all that are correct (2 correct responses).
A) Daily free usage quota
B) Ability to ssh in
C) Wider range of choices for application language
D) Finer-grained scaling

Answer 59

B) & C)
App Engine Flexible Environment lets you ssh into the virtual machines in which your application runs.

At the time of this writing, App Engine Standard Environment supports Java, Python, PHP, and Go, but in the Flexible Environment, you upload your own runtime to run code in a language of your choice.

Question 60

True or false: App Engine Flexible Environment applications let their owners control the geographic region where they run.

Answer 60

True

You get to choose which region your applications run in.

Question 61

Which statements are true about App Engine? Choose all that are true (2 correct answers).
A) It is possible for an App Engine application’s daily billing to drop to zero.
B) Developers who write for App Engine do not need to code their applications in any particular way to use the service.
C) App Engine manages the hardware and networking infrastructure required to run your code.
D) App Engine charges you based on the resources you pre-allocate rather than based on the resources you use.
E) App Engine requires you to supply or code your own application load balancing and logging services.

Answer 61

A) & C)

Question 62

Name 3 advantages of using the App Engine Flexible Environment over App Engine Standard. Choose all that are true (3 correct answers).
A) Your application can write to local disk
B) You can install third-party binaries
C) You can SSH in to your application
D) Google provides automatic in-place security patches
E) Your application can execute code in background threads

Answer 62

A & B & C

Question 63

Name 3 advantages of using the App Engine Standard Environment over App Engine Flexible. Choose all that are true (3 correct answers).
A) Google provides and maintains runtime binaries
B) Scaling is finer-grained
C) You can install third-party binaries
D) Billing can drop to zero if your application is idle
E) You can choose any programming language

Answer 63

A & B & D

Question 64

You want to do business analytics and billing on a customer-facing API. Which GCP service should you choose?
A) Apigee Edge
B) Cloud Endpoints

Answer 64

Apigee Edge

Question 65

You want to support developers who are building services in GCP through API logging and monitoring. Which GCP service should you choose?
A) Cloud Endpoints
B) Apigee Edge

Answer 65

Cloud Endpoints

Question 66

You want to gradually decompose a pre-existing monolithic application, not implemented in GCP, into microservices. Which GCP service should you choose?
A) Apigee Edge
B) Cloud Endpoints

Answer 66

Apigee Edge

Question 67

Why would a developer choose to store source code in Cloud Source Repositories? Choose all the answers that are correct (2 correct answers).
A) To reduce work
B) To have total control over the hosting infrastructure
C) To keep code private to a GCP project

Answer 67

A & C
Cloud Source Repositories manages the hosting infrastructure for you.
Cloud Source Repositories integrates with Google Cloud IAM.

Question 68

Why might a GCP customer choose to use Cloud Source Repositories?
A) They don’t want to host their own git instance, and they don’t want to integrate with IAM permissions.
B) They want to host and manage their own git instance, and they want to integrate with IAM permissions.
C) They want to host and manage their own git instance, and they don’t want to integrate with IAM permissions.
D) They don’t want to host their own git instance, and they want to integrate with IAM permissions.

Answer 68

D)

Question 69

Why might a GCP customer choose to use Cloud Functions?
A) Cloud Functions is the primary way to run Node.js applications in GCP.
B) Their application contains event-driven code that they don’t want to have to provision compute resources for.
C) Their application has a legacy monolithic structure that they want to break apart into microservices with little developer effort.
D) Cloud Functions is a free service for hosting compute operations.

Answer 69

B)

Question 70

Why might a GCP customer choose to use Deployment Manager?
A) Deployment Manager is an infrastructure management system for Kubernetes pods.
B) Deployment Manager is a version control system for your GCP infrastructure layout.
C) Deployment Manager enforces maximum resource utilization and spending limits on your GCP resources.
D) Deployment Manager is an infrastructure management system for GCP resources.

Answer 70

D)

Question 71

You want to define alerts on your GCP resources, such as when health checks fail. Which is the best GCP product to use?
A) Stackdriver Monitoring
B) Cloud Functions
C) Stackdriver Trace
D) Deployment Manager
E) Stackdriver Debugger

Answer 71

A)

Question 72

Which statements are true about Stackdriver Logging? Choose all that are true (2 statements)
A) Stackdriver Logging lets you define uptime checks.
B) Stackdriver Logging requires that you store your logs in BigQuery or Cloud Storage.
C) Stackdriver Logging lets you view logs from your applications, and filter and search on them.
D) Stackdriver Logging requires the use of a third-party monitoring agent.
E) Stackdriver Logging lets you define metrics based on your logs.

Answer 72

C & E

Question 73

Name two use cases for Google Cloud Dataproc (Select 2 answers).
A) Data mining and analysis in datasets of known size
B) Manage data that arrives in realtime
C) Migrate on-premises Hadoop jobs to the cloud
D) Manage datasets of unpredictable size

Answer 73

A & C

Question 74

Name two use cases for Google Cloud Dataflow (Select 2 answers).
A) Manual resource management
B) Reserved compute instances
C) Orchestration
D) Extract, Transform, and Load (ETL)

Answer 74

C & D

Question 75

Name three use cases for the Google Cloud Machine Learning Platform (Select 3 answers).
A) Sentiment analysis
B) Fraud detection
C) Content personalization
D) Query architecture
E) Data preparation

Answer 75

A & B & C

Question 76

Which statements are true about BigQuery? Choose all that are true (2 statements).
A) BigQuery requires that you provision database instances ahead of use.
B) BigQuery lets you run fast SQL queries against large databases.
C) BigQuery is a good choice for online transaction processing.
D) BigQuery is a good choice for data analytics warehousing.
E) Once in BigQuery, data is not accessible from other GCP services.

Answer 76

B & D

Question 77

Name three use cases for Cloud Pub/Sub (Select 3 answers).
A) Storage of binary web content
B) Internet of Things applications
C) Analyzing streaming data
D) Decoupling systems
E) Executing ad-hoc SQL queries

Answer 77

B & C & D

Question 78

What is TensorFlow?

Answer 78

An open-source software library that’s useful for building machine learning applications

Question 79

What does the Cloud Natural Language API do?

Answer 79

It analyzes text to reveal its structure and meaning.

Question 80

Which of the following does not allow you to interact with Google Cloud?
A) Google Cloud Console
B) REST-based API
C) Cloud Explorer
D) Cloud Shell

Answer 80

C) Cloud Explorer
That’s correct! There are four ways you can interact with Google Cloud: There’s the Cloud Console, Cloud Shell and the Cloud SDK, the APIs, and the Cloud Mobile App. The Cloud Explorer is not a Google Cloud tool.

Question 81

What is the difference between the Google Cloud Console and Cloud Shell?
A) There is no difference as these tools are 100% identical.
B) Cloud Shell is a locally installed tool, while the Cloud Console is a temporary virtual machine.
C) The Cloud Console is a command-line tool, while Cloud Shell is a graphical user interface
D) Cloud Shell is a command-line tool, while the Cloud Console is a graphical user interface

Answer 81

D)
The Cloud Console is a graphical user interface and Cloud Shell is a command-line tool. Both tools allow you to interact with Google Cloud. Even though the Cloud Console can do things Cloud Shell can’t do and vice-versa, don’t think of them as alternatives, but think of them as one extremely flexible and powerful interface.