Check Real Google Cloud-Digital-Leader Exam Question for Free (2023)
Get Ready to Boost your Prepare for your Cloud-Digital-Leader Exam with 306 Questions
NEW QUESTION 41
An organization wants to build an entirely new infrastructure and applications in the cloud.
Which application modernization approach should the organization use?
- A. Invent in brownfield.
- B. Change their application, and then move it to the cloud.
- C. Move the application to the cloud, and then change it.
- D. Invent in greenfield.
Answer: D
Explanation:
A Greenfield approach is a brand-new implementation , where companies then add their needed configurations and customizations. This approach provides a clean slate to start from, does not carry over needless customizations and technical debt, and provides a solid foundation for business process re-engineering.
A greenfield deployment is the design, installation and configuration of computer infrastructure where none existed before, for example, in a new office. In contrast, a brownfield deployment is an upgrade or addition to existing infrastructure using legacy components.
NEW QUESTION 42
Your organization stores highly sensitive data on-premises that cannot be sent over the public internet. The data must be processed both on-premises and in the cloud.
What should your organization do?
- A. Create a Cloud VPN tunnel between Google Cloud and your data center
- B. Order a Partner Interconnect connection with your network provider
- C. Enable Private Google Access in your Google Cloud VPC network
- D. Configure Identity-Aware Proxy (IAP) in your Google Cloud VPC network
Answer: B
Explanation:
After the service provider provisions your connection, you can start passing traffic between your networks by using the service provider's network.
NEW QUESTION 43
Your organization runs all its workloads on Compute Engine virtual machine instances. Your organization has a security requirement: the virtual machines are not allowed to access the public internet. The workloads running on those virtual machines need to access BigQuery and Cloud Storage, using their publicly accessible interfaces, without violating the security requirement.
Which Google Cloud product or feature should your organization use?
- A. Private Google Access
- B. Cloud NAT (network address translation)
- C. VPC internal load balancers
- D. Identity-Aware Proxy
Answer: B
NEW QUESTION 44
Your company's development team is building an application that will be deployed on Cloud Run. You are designing a CI/CD pipeline so that any new version of the application can be deployed in the fewest number of steps possible using the CI/CD pipeline you are designing. You need to select a storage location for the images of the application after the CI part of your pipeline has built them.
What should you do?
- A. Create a Compute Engine image containing the application
- B. Store the images in Cloud Storage
- C. Create a Compute Engine disk containing the application
- D. Store the images in Container Registry
Answer: D
NEW QUESTION 45
A Multiple projects within your organization have long-term VM usage. Based on current demand, they are able to project into the future and estimate how many VM hours they will use every year. Going in for a committed use contract seems sensible. How can you configure committed use easily across all the projects?
- A. Take a report of each project's use in the last year. Enable committed use on a per-project basis based on the previous year's numbers.
- B. Review the usage of resources by each project on a daily basis. Enable committed use for the following day based on that number, so that it gives maximum granularity without wastage.
- C. Share a Google Sheet and request each project team to send in their estimate. Enable committed use accordingly on a per-project basis.
- D. Enable committed use with discount sharing for the projects
Answer: D
Explanation:
Enable committed use discounts are applied to the project from which you purchased it. To share the discount across multiple projects linked to your Cloud Billing account, enable committed use discount sharing from the console. When you enable committed use discount sharing, all of your current active committed use dis-counts in all the projects under the same Cloud Billing account, including those you previously purchased and new ones you purchase in the future are shared across your Cloud Billing account. Your sustained use discounts are also pooled and shared across all projects within your Cloud Billing account.
NEW QUESTION 46
What cloud deployment model is generally deployed between organizations such as non-profits, hospitals or even enterprises that share similar requirements or interests?
- A. Hybrid
- B. Private
- C. Community
- D. Public
Answer: C
Explanation:
Community Cloud - The cloud infrastructure is planned for selective use by a particular community of consumers from organizations that have mutual interests like security needs, policy, and compliance considerations.
Reference link- https://csrc.nist.gov/glossary/term/community_cloud
NEW QUESTION 47
You have contracted a partner to conduct some medical trials. This is a limited, 2-month contract. At the end of each day, you are expecting about 10 Gbs of dat a. The data is highly sensitive. What networking option would you employ?
- A. Setup Dedicated Interconnect with your partner.
- B. As the name indicates, set up Partner Interconnect with your partner company.
- C. Setup Cloud VPN and create an IPsec VPN tunnel with your partner.
- D. Create a public IP for a VM and share that with your partners so that they can access it over the internet and share the data.
Answer: C
Explanation:
"Cloud VPN securely extends your peer network to Google's network through an IPsec VPN tunnel. Traffic is encrypted and travels between the two networks over the public internet. Cloud VPN is useful for low-volume data connections. For additional connection options, see the Hybrid Connectivity product page."
NEW QUESTION 48
Your organization is releasing its first publicly available application in Google Cloud. The application is critical to your business and customers and requires a 2-hour SLA.
How should your organization set up support to minimize costs?
- A. Enroll in Premium Support
- B. Enroll in Basic Support
- C. Enroll in Standard Support
- D. Enroll in Enhanced Support
Answer: D
Explanation:
Reference:
SecureAuth is dedicated to providing the industry-leading enhanced support ensuring the long term success of your SecureAuth SaaS IAM deployment
NEW QUESTION 49
Which of the following methods should you use when you require a dynamic way of provisioning VMs on Compute Engine when it is observed that the exact specifications will be in a dedicated configuration file and you want to follow Google's recommended practices.
- A. Cloud Composer
- B. Deployment Manager
- C. Managed Instance Group
- D. Unmanaged Instance Group
Answer: B
Explanation:
The question is about a dynamic way to provision VM, it can be achieved by a Deployment manager or by using terraform. MIG is creating multiple machines based on templates by load balancing
NEW QUESTION 50
Your organization needs to restrict access to a Cloud Storage bucket. Only employees who are based in Canada should be allowed to view the contents.
What is the most effective and efficient way to satisfy this requirement?
- A. Configure Google Cloud Armor to allow access to the bucket only from IP addresses based in Canada
- B. Deploy the Cloud Storage bucket to a Google Cloud region in Canada
- C. Create a group consisting of all Canada-based employees, and give the group access to the bucket
- D. Give each employee who is based in Canada access to the bucket
Answer: D
NEW QUESTION 51
Your company has multiple internal applications used by your employees. You also have to give access to certain vendors and contractors. What is a good option for you to adopt?
- A. Allow all users, especially contractors and vendors, to bring their own identities, like those at gmail.com.
- B. Keep the credentials separate for each application to reduce the blast radius in case of any issues.
- C. Use an external identity provider that is famous and popular like Facebook or Twitter; that way, even your vendors and contractors will have an account there.
- D. Use an IDaaS (Identity as a Service) product that can centrally manage authenti-cation and authorization for the applications.
Answer: D
Explanation:
IDaaS - identity providers managed by the company give better control over security and privacy. Security/access can be set granularly, while also being centralized. You don't have to manage multiple credentials.
NEW QUESTION 52
What are the network requirements for Private Google Access?
- A. Both A and B
- B. Your network must have appropriate routes for the destination IP ranges used by Google APIs and services.
- C. None of the Above
- D. Private Google Access automatically enables any API.
Answer: B
Explanation:
Network requirements for Private Google Access:
- Because Private Google Access is enabled on a per-subnet basis, you must use a VPC network. Legacy networks are not supported because they don't support subnets.
- Private Google Access does not automatically enable any API. You must separately enable the Google APIs you need to use via the APIs & services page in the Google Cloud Console.
- If you use the private.googleapis.com or the restricted.googleapis.com domain names, you'll need to create DNS records to direct traffic to the IP addresses associated with those domains.
- Your network must have appropriate routes for the destination IP ranges used by Google APIs and services. These routes must use the default internet gateway next hop. If you use the private.googleapis.com or the restricted.googleapis.com domain names, you only need one route (per domain). Otherwise, you'll need to create multiple routes.
- Egress firewalls must permit traffic to the IP address ranges used by Google APIs and services. The implied allow egress firewall rule satisfies this requirement. For other ways to meet the firewall requirement.
NEW QUESTION 53
How does Google Cloud ensure that customer data remains secure and private when at rest?
- A. By providing privacy reviews for critical customer applications
- B. By automatically locking files containing suspicious code
- C. By auditing platform privacy practices against industry standards
- D. By aggregating training data for customers within each industry
Answer: C
Explanation:
Google Cloud commitment to keep the data secure and private:
1. Org owns the data and not Google
2. Google does not sell data to 3rd parties
3. All customer data is encrypted by default
4. Google Cloud guards insider against your data
5. No backdoor access to any govt. entity
6. Google's privacy practices are audited against international standards
NEW QUESTION 54
When creating machine learning models, a key initial step is to identify the type of model required. One of these is the classification model. Which of these statements define a classification model?
- A. A type of machine learning model that outputs continuous (typically, floating-point) values. E.g. the predicted price of the house is $120,000.
- B. A type of machine learning model is a meta-model maker, which classifies algo-rithms based on the quality of their output.
- C. A type of classic model approach that is less used today and which has been re-placed by the regression model.
- D. A type of machine learning model for distinguishing among two or more discrete values. E.g. "book", "car".
Answer: D
Explanation:
A classification model classifies the incoming data into one or more discrete classes.
NEW QUESTION 55
You are working in a company where you need to store Terabytes of Image Data daily and process them e.g. Taking photos of the entire planet 24 hours every day with satellite and sending data to data centres to store and process it. Which of the following would be the best combination for your infrastructure.
You are working in a company where you need to store Terabytes of Image Data daily and process them e.g. Taking photos of the entire planet 24 hours every day with satellite and sending data to data centres to store and process it. Which of the following would be the best combination for your infrastructure.
- A. Google Cloud Storage & Google Cloud Compute Engines
- B. None of the Above
- C. Google Cloud Storage & Preemptible VMs.
- D. Bare Metal Solutions with Google Cloud Storage.
Answer: C
Explanation:
The above is a real world example of a company named Planet, where they sent around 80+ satellites to take pictures of earth every day, 24 hours. They run around 40,000 preemptible VMs concurrently.
Preemptible instances function like normal instances but have the following limitations:
Compute Engine might stop preemptible instances at any time due to system events. The probability that Compute Engine will stop a preemptible instance for a system event is generally low, but might vary from day to day and from zone to zone depending on current conditions.
Compute Engine always stops preemptible instances after they run for 24 hours. Certain actions reset this 24-hour counter.
Preemptible instances are finite Compute Engine resources, so they might not always be available.
Preemptible instances can't live migrate to a regular VM instance, or be set to automatically restart when there is a maintenance event.
Due to the above limitations, preemptible instances are not covered by any Service Level Agreement (and, for clarity, are excluded from the Compute Engine SLA).
The Google Cloud Free Tier credits for Compute Engine do not apply to preemptible instances.
Reference link- https://cloud.google.com/compute/docs/instances/preemptible
NEW QUESTION 56
You are a database manager working for a new product that will need millions of reading and writ-ing from the database, with zero downtime, key-value i.e. NoSQL features, no manual steps should be required to ensure consistency, repair data, synchronize writes and deletes, Which of the follow-ing database you choose?
- A. Cloud Firestore
- B. Cloud BigTable
- C. Cloud SQL
- D. Cloud Spanner
Answer: B
Explanation:
Cloud BigTable
Key features
High throughput at low latency
Bigtable is ideal for storing very large amounts of data in a key-value store and supports high read and write throughput at low latency for fast access to large amounts of data. Throughput scales linearly-you can increase QPS (queries per second) by adding Bigtable nodes. Bigtable is built with proven infrastructure that powers Google products used by billions such as Search and Maps.
Cluster resizing without downtime
Scale seamlessly from thousands to millions of reads/writes per second. Bigtable throughput can be dynamically adjusted by adding or removing cluster nodes without restarting, meaning you can increase the size of a Bigtable cluster for a few hours to handle a large load, then reduce the cluster's size again-all without any downtime.
Flexible, automated replication to optimize any workload
Write data once and automatically replicate where needed with eventual consistency-giving you control for high availability and isolation of reading and write workloads. No manual steps are needed to ensure consistency, repair data, or synchronize writes and deletes. Benefit from a high availability SLA of 99.999% for instances with multi-cluster routing across 3 or more regions (99.9% for single-cluster instances).
NEW QUESTION 57
An organization is migrating their business applications from on-premises to the cloud.
How could this impact their operations and personnel costs?
- A. Reduced on-premises infrastructure management costs
- B. Increased cloud hardware management costs
- C. Reduced cloud software licensing costs
- D. Increased on-premises hardware maintenance costs
Answer: A
NEW QUESTION 58
......
Google Cloud-Digital-Leader Exam Syllabus Topics:
| Topic | Details |
|---|---|
| Topic 1 |
|
| Topic 2 |
|
| Topic 3 |
|
| Topic 4 |
|
| Topic 5 |
|
| Topic 6 |
|
| Topic 7 |
|
| Topic 8 |
|
| Topic 9 |
|
| Topic 10 |
|
| Topic 11 |
|
Use Free Cloud-Digital-Leader Exam Questions that Stimulates Actual EXAM : https://www.actualtests4sure.com/Cloud-Digital-Leader-test-questions.html
Get 100% Real Cloud-Digital-Leader Free Online Practice Test: https://drive.google.com/open?id=1c0hzvdD6BXLXm56wDwhXyvngmL4LY0Lg
