Google Cloud

Google Cloud Certified – Associate Cloud Engineer

PR000260
Popular Trending

Validate your skills as an Associate Cloud Engineer with exam code PR000260 in Google Cloud.

498 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 71–80 of 498

Q71

A company needs to analyze large datasets with high throughput on Google Cloud. Which service is the most suitable?

  • A Cloud Storage
  • B BigQuery
  • C Dataflow
  • D Cloud Pub/Sub
Explanation BigQuery is optimized for large-scale analytics, unlike the others which focus on storage or messaging.
Q72

You are configuring IAM roles in Google Cloud and want to restrict access to a specific resource. What is the best practice?

  • A Use predefined roles only
  • B Assign roles at the project level
  • C Create custom roles as needed
  • D Avoid using IAM roles
Explanation Creating custom roles allows for precise access control tailored to specific resource needs, whereas the other options can lead to excessive permissions.
Q73

Which service is best for scalable messaging on Google Cloud?

  • A Cloud Pub/Sub
  • B Cloud Functions
  • C Cloud Tasks
  • D Cloud Storage
Explanation Cloud Pub/Sub is designed for scalable messaging while the others serve different purposes.
Q74

A company needs to implement VPC peering between two projects. What must be done first?

  • A Enable the IAM role
  • B Create a new VPC
  • C Share project IDs
  • D Configure IP ranges
Explanation IP ranges must not overlap for VPC peering to work properly, while the others are prerequisites that may vary.
Q75

You are configuring Cloud Identity-Aware Proxy. What happens if you disable a user's access?

  • A Access to all apps disabled
  • B Cloud IAP settings reset
  • C Audit logs are cleared
  • D User can access logs still
Explanation Disabling a user's access from IAP removes their access to all apps protected by IAP, whereas other options are incorrect actions or implications.
Q76

Which Google Cloud service is best for running serverless applications?

  • A Cloud Functions
  • B Compute Engine
  • C Cloud Run
  • D App Engine
Explanation Cloud Functions allows for event-driven code execution without managing servers; Compute Engine offers VMs, Cloud Run is for containers, and App Engine is also serverless for web apps.
Q77

A company needs to store sensitive user data securely. Which storage option should they consider?

  • A Google Drive
  • B Cloud Storage with encryption
  • C BigQuery without encryption
  • D Persistent Disk with public access
Explanation Cloud Storage with encryption ensures data is securely stored, while the other options either lack security or allow public access.
Q78

What happens when a GCP network firewall rule is set to DENY all?

  • A Only HTTP traffic is allowed
  • B All traffic is blocked
  • C Default rules are prioritized
  • D Only internal traffic is allowed
Explanation A DENY all rule blocks all traffic unless overridden by another rule; the other options output inconsistent behavior regarding traffic management.
Q79

Which service should you use for serverless analytics?

  • A BigQuery
  • B Compute Engine
  • C Kubernetes Engine
  • D Cloud Functions
Explanation BigQuery is designed for serverless analytics, while the others are compute services.
Q80

A company needs to securely share files across a multi-cloud environment. Which Google Cloud service should they use?

  • A Cloud Storage
  • B Cloud Pub/Sub
  • C BigQuery
  • D Cloud Datastore
Explanation Cloud Storage allows secure file sharing, unlike the others which serve different purposes.