Google Cloud

Google Cloud Certified – Professional Cloud Architect

PR000213
Popular Trending

Get certified as a Professional Cloud Architect with exam code PR000213 to validate your architectural skills in Google Cloud.

498 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 411–420 of 498

Q411

You are configuring IAM roles for your project. What happens if a user has both an IAM role and a denied permission?

  • A User still gets access
  • B User's access is completely denied
  • C User receives an error
  • D Role overrides denied permissions
Explanation A denied permission takes precedence over granted roles, blocking access.
Q412

Which service is used for serverless computing on Google Cloud?

  • A Cloud Functions
  • B Cloud Run
  • C App Engine
  • D Compute Engine
Explanation Cloud Functions is specifically designed for serverless architecture, while others provide different levels of control or management.
Q413

A company needs to migrate its on-premises database to Google Cloud. Which database service is recommended for high compatibility with relational databases?

  • A Datastore
  • B Cloud SQL
  • C Bigtable
  • D FireStore
Explanation Cloud SQL is designed for relational databases, making it the best choice for compatibility.
Q414

You are configuring VPC Service Controls for your Google Cloud project. What happens when you enable perimeter security?

  • A Data transfer is only within the perimeter.
  • B Access is only allowed to project owners.
  • C External services gain full access.
  • D APIs are completely disabled outside.
Explanation Enabling perimeter security restricts data transfer, allowing it only within defined boundaries.
Q415

Which service is best for managing multiple Kubernetes clusters?

  • A Google Kubernetes Engine (GKE)
  • B Cloud Run
  • C Cloud Functions
  • D App Engine
Explanation GKE is specifically designed for managing Kubernetes clusters, while the others are not oriented for this purpose.
Q416

A company needs to securely share data among multiple teams in Google Cloud. What should they use?

  • A Cloud Pub/Sub
  • B Cloud Storage with IAM
  • C BigQuery
  • D Cloud SQL
Explanation Cloud Storage with IAM allows fine-grained access control, which is ideal for secure data sharing.
Q417

What happens when you enable VPC Flow Logs for a subnet?

  • A Increased network latency
  • B Network traffic is logged
  • C All traffic is blocked
  • D Server-level auditing
Explanation Enabling VPC Flow Logs captures and logs network traffic information, while the other options are incorrect regarding the functionality.
Q418

Which Google Cloud service is best for storing unstructured data?

  • A Google Cloud Storage
  • B Cloud SQL
  • C BigQuery
  • D Cloud Spanner
Explanation Google Cloud Storage is designed for unstructured data, while the others focus on structured relational data or analytics.
Q419

A company needs to regularly analyze log data in near real-time. Which option should they choose?

  • A Cloud Pub/Sub
  • B Cloud Functions
  • C Dataflow
  • D Cloud Datastore
Explanation Dataflow enables near real-time data processing and analytics, while the others serve different purposes.
Q420

What happens when you provision an instance with a preemptible VM?

  • A It cannot be stopped.
  • B It may be deleted anytime.
  • C It has a guaranteed uptime.
  • D It costs more than regular VMs.
Explanation Preemptible VMs can be terminated by Google Cloud at any time, unlike standard instances.