Google Cloud

Google Cloud Certified – Associate Cloud Engineer

PR000260
Popular Trending

Validate your skills as an Associate Cloud Engineer with exam code PR000260 in Google Cloud.

498 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 301–310 of 498

Q301

Which service would you use for implementing CI/CD in Google Cloud?

  • A Cloud Build
  • B Cloud Storage
  • C App Engine
  • D Cloud Functions
Explanation Cloud Build is specifically designed for CI/CD workflows, while the others serve different purposes.
Q302

A company needs to store large datasets, but wants to access and analyze the data in real-time. Which cloud storage option should they choose?

  • A Cloud Storage
  • B BigQuery
  • C Cloud SQL
  • D Cloud Datastore
Explanation BigQuery is optimized for analytics on large datasets, whereas the others are less suited for real-time analytics.
Q303

You are configuring IAM roles for a project. What happens if two roles grant contradictory permissions?

  • A The most permissive role is chosen.
  • B The least permissive role is effective.
  • C IAM denies all access in conflict.
  • D Conflicting permissions are ignored.
Explanation IAM evaluates all roles and grants the union of the permissions, giving priority to the most permissive settings.
Q304

Which service provides scalable, insulated computing resources?

  • A Compute Engine
  • B Cloud Functions
  • C Cloud Storage
  • D BigQuery
Explanation Compute Engine provides scalable virtual machines, while others serve different functions related to serverless, storage, or data analytics.
Q305

A company needs to securely share files with external partners. What should they use?

  • A Cloud Storage Signed URLs
  • B Google Drive Share Links
  • C Cloud Pub/Sub
  • D Cloud DNS
Explanation Cloud Storage Signed URLs allow secure, time-limited access, while others either lack security features or serve different purposes.
Q306

You are configuring IAM roles for an application accessing Pub/Sub. What should you avoid?

  • A Least privilege principle
  • B Using predefined roles
  • C Assigning too many permissions
  • D Custom roles for specific needs
Explanation Assigning too many permissions violates security best practices, whereas the others enhance security and management.
Q307

Which Google Cloud service provides serverless computing capabilities?

  • A Cloud Functions
  • B Compute Engine
  • C Kubernetes Engine
  • D App Engine
Explanation Cloud Functions allow you to run code in response to events without managing servers; other options involve managing infrastructure.
Q308

A company needs to ensure that only specific users can access certain GCS buckets. What should they implement?

  • A IAM Roles
  • B Storage Transfer Service
  • C VPC Peering
  • D Cloud CDN
Explanation IAM Roles provide fine-grained access control; the other options do not manage user permissions directly.
Q309

You are configuring a firewall rule in Google Cloud. What happens when you set the action to 'allow' but the priority is lower than another conflicting 'deny' rule?

  • A Allow rule overrides deny rule
  • B Both rules are applied
  • C Deny rule takes precedence
  • D Traffic is rejected completely
Explanation In Google Cloud, the highest priority rule processes first, so a deny rule with a higher priority will block the traffic.
Q310

Which service helps with automatic scaling of applications?

  • A Google Kubernetes Engine
  • B Cloud Storage
  • C Cloud Functions
  • D Pub/Sub
Explanation Google Kubernetes Engine automatically scales containerized applications based on demand; others do not have this capability.