GCP1 Flashcards
- You are currently designing a cloud application that your user base will
connect to without a gateway VPN. The company is wanting to ensure that
the application maintains user identity and context to guard access to the
applications and VMs. What would you recommend? (Select One)
A. Cloud VPN
B. Identity Aware Proxy (IAP)
C. Cloud NAT
D. Cloud Endpoints
Correct Answer(s): B: Identity Aware Proxy (IAP)
Explanation: IAP protects SSH and RDP access to your VMs hosted on
GCP. This is an effective whitelisting approach. Your VM instances don’t
even need public IP addresses. https://cloud.google.com/iap/
- The _______________________________resource represents the Access
Control Lists (ACLs) for buckets within Google Cloud Storage. ACLs let you
specify who has access to your data and to what extent. (Select One)
A. SetIAMPolicy
B. TestIAMPermissions
C. DefaultAccessControls
D. BucketAccessControls
Correct Answer(s): D: BucketAccessControls
Explanation: Buckets contain objects which can be accessed by their own
methods. In addition to the ACL property, buckets contain
bucketAccessControls, for use in fine-grained manipulation of an existing
bucket’s access controls.
- You have created several preemptible Linux virtual machine instances
using Google Compute Engine. You want to properly shut down your
application before the virtual machines are pre-empted (Shut off). (Select
One)
A. Create a shutdown script and use it as the value for a new metadata entry with the key shutdown-script in Deployment Manager
B. Create a shutdown script and use it as the value for a new metadata entry with the key shutdown script in the Cloud Platform Console when you create the new virtual machine instance
C. Create a shutdown script and use it as the value for a new log point entry with the key shutdown-script in the Cloud Platform Console when you create the new virtual machine instance
D. Create a shutdown script and use it as the value for a new metadata entry with the key shutdown-script and then use the Google Cloud Github for resources to complete.
Correct Answer(s): B: Create a shutdown script and use it as the value for a
new metadata entry with the key shutdown-script in the Cloud Platform
Console when you create the new virtual machine instance
Explanation: Create a shutdown script and use it as the value for a new
metadata entry with the key shutdown-script in the Cloud Platform Console
when you create the new virtual machine instance
https://cloud.google.com/compute/docs/shutdownscript
- The first step in Cloud Deployment manager is to create
what____________? (Select One)
A. Template
B. Configuration
C. Resources
D. Pipeline
Correct Answer(s): B: Configuration
Explanation: The first step in creating your deployment is to create a
configuration. A configuration is a list of resources, and their respective
properties, that will be part of your deployment.
https://cloud.google.com/deployment-manager/docs/step-by-stepguide/
create-a-configuration
5.
- When using the SDK, you want to ensure you set the current project for
your development environment. What would be the proper syntax in
gcloud? (Select One)
A. gcloud config set project projectname
B. gcloud config init project projectname
C. gcloud config set project –projectname
D. gcloud config init project –projectname
Correct Answer(s): D: gcloud config init project –projectname
Explanation: For the exam please ensure you reference the gcloud
commands for projects consistently. You can expect several questions on
these commands and syntaxes on the exam.
gcloud config set project projectname
https://cloud.google.com/sdk/gcloud/reference/config/set
- The Versioning Configuration feature in gsutil enables you to configure a
Google Cloud Storage bucket to keep old versions of objects.
The gsutil versioning command has two sub-commands. What are the two
subcommands? (Select Two)
A. Get
B. Set
C. List
D. Show
E. Put
Correct Answer(s): A, B: Get and Set
Explanation: Set The “set” sub-command requires an additional subcommand,
either “on” or “off”, which, respectively, will enable or disable
versioning for the specified bucket(s). Get The “get” sub-command gets the
versioning configuration for a bucket and displays whether or not it is
enabled.
https://cloud.google.com/storage/docs/gsutil/commands/versioning
- You would like to create a new Compute Engine instance called gcelab2 in
the zone us-central-c.
What is the proper command? (Select One)
A. gcloud compute instances create gcelab2 –zone uscentral1-c
B. gcloud compute instances make gcelab2 –zone us-central1-c
C. gcloud compute instances init gcelab2 –zone us-central1-c
D. gcloud compute instances init gcelab2 –region us-central1-c
Correct Answer(s): A gcloud compute instances create gcelab2 –zone uscentral1-c
Explanation: Creating a GCE instance is basic knowledge required for the
exam.
gcloud compute instances create gcelab2 –zone us-central1-c
https://cloud.google.com/sdk/gcloud/reference/version
- Logs are associated primarily with GCP ____________, although
_______________ can also have logs. (Select One)
A. Projects and Regions
B. Projects and Organizations
C. Zones and Regions
D. Projects and Zones
Correct Answer(s): B: Project, Organizations
Explanation: Logs are associated primarily with GCP projects, although
organizations can also have logs
https://cloud.google.com/logging/docs/basic-concepts
- Cloud Endpoints can be implemented in which languages?
(Select Two)
A. PHP
B. Rust
C. Go
D. Python
E. Java
Correct Answer(s): D, E: Python, Java
Explanation: Cloud Endpoints for the App Engine standard generation 1
environment historically used Endpoints Frameworks, which only supports
the Java 8 and Python 2.7 runtime environments.
https://cloud.google.com/endpoints/docs/choose-endpoints-option
