Google Cloud

Google Cloud Certified – Professional Cloud Architect

PR000213
Popular Trending

Get certified as a Professional Cloud Architect with exam code PR000213 to validate your architectural skills in Google Cloud.

498 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 141–150 of 498

Q141

You are configuring IAM roles for a project where multiple teams need fine-grained access. What is the best practice?

  • A Use predefined roles only
  • B Grant roles to individual users
  • C Create custom roles as needed
  • D Assign owner role to all
Explanation Custom roles fit specific needs better than predefined roles; others can lead to excessive access or mismanagement.
Q142

Which Google Cloud service can be used for hybrid cloud networking?

  • A Cloud Interconnect
  • B Cloud Pub/Sub
  • C Cloud Functions
  • D Cloud Storage
Explanation Cloud Interconnect provides dedicated connections for hybrid setups, while others serve different purposes.
Q143

A company needs to process large streams of data in real-time. Which service should they use?

  • A Cloud Functions
  • B Dataflow
  • C BigQuery
  • D Cloud SQL
Explanation Dataflow is designed for real-time data processing, unlike the other options, which suit different scenarios.
Q144

You are configuring IAM policies. What happens if a user belongs to multiple groups with conflicting permissions?

  • A Most permissive policy applied
  • B Least permissive policy applied
  • C Deny policy takes precedence
  • D Conflict policy cannot be set
Explanation IAM applies the most permissive policy and roles for users, making option A correct.
Q145

Which service provides managed Kubernetes in Google Cloud?

  • A Google Kubernetes Engine (GKE)
  • B Cloud Functions
  • C Cloud Run
  • D Compute Engine
Explanation Google Kubernetes Engine (GKE) manages Kubernetes clusters, unlike the other services.
Q146

A company wants to restrict access to their Google Cloud resources based on IP addresses. Which IAM feature should they use?

  • A Service Accounts
  • B Access Context Manager
  • C IAM Roles
  • D Resource Quotas
Explanation Access Context Manager allows IP-based access control, while the others do not.
Q147

You are configuring a Dataflow job with autoscaling enabled. What happens when resource usage increases significantly?

  • A Dataflow automatically stops jobs
  • B Dataflow allocates more resources
  • C Dataflow limits the job's capacity
  • D Dataflow does nothing
Explanation Dataflow defaults to autoscaling to handle increased load, unlike the other options.
Q148

Which service is best for deploying microservices on GCP?

  • A Google Kubernetes Engine
  • B Cloud Functions
  • C Cloud Run
  • D App Engine
Explanation Google Kubernetes Engine is optimized for managing and orchestrating containerized applications, which is ideal for microservices.
Q149

A company needs to secure API access to a microservice. What is the best approach?

  • A Use API keys for access control
  • B Implement OAuth 2.0
  • C Limit by IP address
  • D Deploy in a private VPC
Explanation OAuth 2.0 provides a robust framework for secure API access management, which is preferred over API keys alone.
Q150

What happens when you delete a Cloud Storage bucket with retention policy enabled?

  • A Bucket gets deleted immediately
  • B Objects are deleted immediately
  • C Retention policy is ignored
  • D Bucket can’t be deleted until retention period ends
Explanation A bucket with a retention policy cannot be deleted until all its objects are compliant with the policy.