Google Cloud

Google Cloud Certified – Professional Cloud Architect

PR000213
Popular Trending

Get certified as a Professional Cloud Architect with exam code PR000213 to validate your architectural skills in Google Cloud.

498 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 261–270 of 498

Q261

You are configuring IAM policies. What happens when you combine a deny rule with an allow rule?

  • A Allow takes precedence
  • B Deny takes precedence
  • C Both rules are ignored
  • D No access granted
Explanation Deny rules always take precedence over allow; hence, access is denied despite allow rules.
Q262

Which service allows for real-time analytics on streaming data?

  • A BigQuery
  • B Cloud Dataflow
  • C Cloud Pub/Sub
  • D Cloud Storage
Explanation Cloud Dataflow is designed for processing streaming data in real-time, unlike the others which serve different purposes.
Q263

A company needs to implement a strong authentication mechanism while connecting to Google Cloud resources. What should they leverage?

  • A Cloud SQL
  • B Identity-Aware Proxy
  • C Cloud Functions
  • D App Engine
Explanation Identity-Aware Proxy provides strong authentication by controlling access, while others do not primarily focus on authentication.
Q264

You are configuring a Google Kubernetes Engine (GKE) cluster with Autopilot mode. What happens when you reach the cluster's resource limits?

  • A Cluster auto-scales additional nodes
  • B Pods may be throttled or evicted
  • C No changes, existing pods run fine
  • D Cluster goes into maintenance mode
Explanation Pods can be throttled or evicted when resources are maxed out, while the other options are incorrect regarding Autopilot behavior.
Q265

Which service allows for scalable data analytics on streaming data?

  • A Dataflow
  • B Cloud Functions
  • C Cloud Storage
  • D Compute Engine
Explanation Dataflow is designed for processing real-time data streams, while the others do not focus on analytics directly.
Q266

A company needs to ensure its virtual machines are immutable after deployment. What should they implement?

  • A Instance templates
  • B Persistent disks
  • C Cloud Functions
  • D Snapshots
Explanation Instance templates create consistent, repeatable VM configurations, ensuring immutability. The other options focus more on storage rather than configuration management.
Q267

You are configuring IAM policies for a GCP project. What happens if a user has roles defined at both the project and organization level?

  • A Higher privileges from organization only
  • B Merged permissions from both levels
  • C Project roles override organization roles
  • D User gets no permissions
Explanation Permissions are cumulative, combining both project and organization roles, while the other options misrepresent IAM behavior.
Q268

Which service provides serverless event-driven compute?

  • A Cloud Functions
  • B Cloud Run
  • C Compute Engine
  • D Kubernetes Engine
Explanation Cloud Functions allows you to execute code in response to events on a serverless platform, while other options require managing infrastructure.
Q269

A company needs to efficiently manage IAM permissions for thousands of users. What is the best approach?

  • A Use IAM roles and groups
  • B Assign permissions individually
  • C Create new projects per user
  • D Utilize service accounts
Explanation Using IAM roles and groups allows for easier management of permissions compared to assigning them individually.
Q270

What happens when you set a Cloud Storage bucket's permissions to 'Public'?

  • A Only the owner accesses it
  • B All users can view files
  • C Files remain private
  • D Only the project can access
Explanation Setting a bucket's permissions to 'Public' allows all users to access and view the files within it.