Google Cloud

Google Cloud Certified – Associate Cloud Engineer

PR000260
Popular Trending

Validate your skills as an Associate Cloud Engineer with exam code PR000260 in Google Cloud.

498 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 51–60 of 498

Q51

You are configuring a service account for an application but notice it has excessive permissions. What should you do?

  • A Delete the service account
  • B Suspend the service account
  • C Review and apply least privilege
  • D Enable logging on the service account
Explanation Applying least privilege minimizes security risks; others do not enhance security effectively.
Q52

A company needs to run an application in multiple regions for redundancy. Which Google Cloud service should they use?

  • A Cloud Load Balancing
  • B Google Kubernetes Engine
  • C Cloud Functions
  • D BigQuery
Explanation Cloud Load Balancing distributes traffic across multiple regions for redundancy, while the others serve different purposes.
Q53

You are configuring a Compute Engine instance to allow SSH access. Which firewall rule must be enabled?

  • A Allow HTTPS traffic
  • B Allow SSH traffic
  • C Allow ICMP traffic
  • D Allow HTTP traffic
Explanation Only 'Allow SSH traffic' enables SSH access, others relate to web traffic or network diagnostics.
Q54

What happens when an IAM policy is applied to a project?

  • A Immediate change for all resources
  • B No effect until resources are created
  • C Overrides all existing permissions
  • D Enhances security status only
Explanation Applying an IAM policy immediately affects all resources; others incorrectly describe timing or effects.
Q55

Which service provides managed Kubernetes clusters?

  • A Google Kubernetes Engine
  • B Cloud Functions
  • C App Engine
  • D Cloud Run
Explanation Google Kubernetes Engine is designed for this purpose, while others are focused on different deployments or functions.
Q56

What happens when a Compute Engine instance's boot disk is deleted?

  • A Instance loses all data
  • B Instance stops functioning
  • C Instance continues without issues
  • D New boot disk is created automatically
Explanation Deleting the boot disk stops instance functionality; new boot disks must be created separately.
Q57

You are configuring IAM roles. What does the 'viewer' role permit?

  • A Modify resources
  • B View resources only
  • C Create new resources
  • D Delete existing resources
Explanation The 'viewer' role only allows viewing of resources without modifications.
Q58

Which service allows you to manage service accounts?

  • A IAM
  • B Cloud Run
  • C BigQuery
  • D Cloud Functions
Explanation IAM is responsible for managing identities, including service accounts; others are services using those accounts.
Q59

A company needs to connect on-premises systems with Google Cloud. Which tool should they use?

  • A Cloud VPN
  • B Cloud Storage
  • C Pub/Sub
  • D BigQuery
Explanation Cloud VPN provides a secure connection for on-premises systems; others don’t offer direct connectivity solutions.
Q60

What happens when you delete a Google Cloud Storage bucket?

  • A It is permanently removed.
  • B All data is retained temporarily.
  • C Access will be revoked only.
  • D Notifications are sent to users.
Explanation Deleting a bucket permanently removes it and its contents; temporary retention or notifications do not occur by default.