Google Cloud

Google Cloud Certified – Professional Cloud Architect

PR000213
Popular Trending

Get certified as a Professional Cloud Architect with exam code PR000213 to validate your architectural skills in Google Cloud.

498 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 51–60 of 498

Q51

You are configuring IAM roles for a project. What happens if a user has multiple roles assigned with conflicting permissions?

  • A We use the most permissive role
  • B Only the highest role is effective
  • C Conflicting permissions cancel each other
  • D It results in an error
Explanation The most permissive role applies when there are conflicting permissions; the others misunderstand IAM behavior.
Q52

Which Google Cloud service allows you to manage containerized applications?

  • A Cloud Functions
  • B Cloud Run
  • C Cloud Build
  • D Google Kubernetes Engine
Explanation Google Kubernetes Engine is specifically designed for orchestrating containerized apps, while the others serve different purposes.
Q53

A company needs to analyze streaming data in real time. Which Google Cloud service should they use?

  • A BigQuery
  • B Dataflow
  • C Cloud Pub/Sub
  • D Dataproc
Explanation Dataflow is designed specifically for real-time stream processing, whereas BigQuery and Dataproc focus on batch processing.
Q54

You are configuring IAM roles for a new project. What risk does assigning overly broad permissions pose?

  • A Improves security management
  • B Increases the attack surface
  • C Limits resource accessibility
  • D Facilitates project collaboration
Explanation Broad permissions can expose sensitive resources to unauthorized access, increasing security risks.
Q55

Which service provides managed Kubernetes in Google Cloud?

  • A Google Kubernetes Engine
  • B Cloud Functions
  • C App Engine
  • D Cloud Run
Explanation Google Kubernetes Engine is the managed service for Kubernetes deployment, while the others serve different purposes.
Q56

A company needs to analyze large sets of streaming data in real-time. Which Google Cloud service should they use?

  • A Cloud Pub/Sub
  • B BigQuery
  • C Dataflow
  • D Cloud Storage
Explanation Dataflow is designed for real-time streaming data processing, while the others perform different functions.
Q57

You are configuring IAM roles for a project. What happens if you assign a role to a user at the organization level?

  • A Role applies only to the project
  • B Role applies to all resources
  • C User loses existing permissions
  • D Role must be re-assigned at the project
Explanation Assigning a role at the organization level grants access across all resources within that organization.
Q58

Which service should you use for managing containerized applications?

  • A Cloud Functions
  • B Cloud Run
  • C Cloud Storage
  • D Cloud Pub/Sub
Explanation Cloud Run is specifically designed for managing containerized applications, while the others serve different purposes.
Q59

A company needs to ensure that only users from specific IP addresses can access their Google Cloud resources. What should they implement?

  • A IAM Policies
  • B Firewall Rules
  • C VPC Peering
  • D Service Accounts
Explanation Firewall Rules are used to control access to resources based on IP address, while the others don't restrict by IP.
Q60

You are configuring an instance group with autoscaling policies. What happens when the CPU usage exceeds 80% for five minutes?

  • A Instances are removed from the group
  • B Autoscaler adds new instances
  • C No changes occur
  • D Instance types are changed
Explanation The autoscaler adds new instances to handle increased load, while other options misrepresent autoscaling functionality.