- Home
- Google Associate Cloud Engineer Exam
- Google.Associate-Cloud-Engineer.v2025-05-19.q153
- Question 1
Valid Associate-Cloud-Engineer Dumps shared by ExamDiscuss.com for Helping Passing Associate-Cloud-Engineer Exam! ExamDiscuss.com now offer the newest Associate-Cloud-Engineer exam dumps, the ExamDiscuss.com Associate-Cloud-Engineer exam questions have been updated and answers have been corrected get the newest ExamDiscuss.com Associate-Cloud-Engineer dumps with Test Engine here:
Access Associate-Cloud-Engineer Dumps Premium Version
(328 Q&As Dumps, 35%OFF Special Discount Code: freecram)
Next Question >>
Question 1/153
Your company is moving its continuous integration and delivery (CI/CD) pipeline to Compute Engine instances. The pipeline will manage the entire cloud infrastructure through code. How can you ensure that the pipeline has appropriate permissions while your system is following security best practices?
Correct Answer: B
The best option is to attach a single service account to the compute instances and add minimal rights to the service account. Then, allow the service account to impersonate a Cloud Identity user with elevated permissions to create, update, or delete resources. This way, the service account can use short-lived access tokens to authenticate to Google Cloud APIs without needing to manage service account keys. This option follows the principle of least privilege and reduces the risk of credential leakage and misuse.
Option A is not recommended because it requires human intervention, which can slow down the CI/CD pipeline and introduce human errors. Option C is not secure because it grants all required IAM permissions to a single service account, which can increase the impact of a compromised key. Option D is not cost-effective because it requires creating and managing multiple service accounts and keys, as well as using a secret manager service.
Option A is not recommended because it requires human intervention, which can slow down the CI/CD pipeline and introduce human errors. Option C is not secure because it grants all required IAM permissions to a single service account, which can increase the impact of a compromised key. Option D is not cost-effective because it requires creating and managing multiple service accounts and keys, as well as using a secret manager service.
- Question List (153q)
- Question 1: Your company is moving its continuous integration and delive...
- Question 2: You have a workload running on Compute Engine that is critic...
- Question 3: You want to permanently delete a Pub/Sub topic managed by Co...
- Question 4: You have just created a new project which will be used to de...
- Question 5: Your company runs one batch process in an on-premises server...
- Question 6: You have a website hosted on App Engine standard environment...
- Question 7: You are deploying an application to a Compute Engine VM in a...
- Question 8: You have developed a containerized web application that will...
- Question 9: You need to migrate invoice documents stored on-premises to ...
- Question 10: You recently discovered that your developers are using many ...
- Question 11: You are configuring service accounts for an application that...
- Question 12: You have several hundred microservice applications running i...
- Question 13: You are configuring service accounts for an application that...
- Question 14: You have a number of applications that have bursty workloads...
- Question 15: You have an application running in Google Kubernetes Engine ...
- Question 16: Your VMs are running in a subnet that has a subnet mask of 2...
- Question 17: (You are deploying an application to Google Kubernetes Engin...
- Question 18: You are deploying a web application using Compute Engine. Yo...
- Question 19: You are hosting an application on bare-metal servers in your...
- Question 20: You just installed the Google Cloud CLI on your new corporat...
- Question 21: (You are developing an internet of things (IoT) application ...
- Question 22: Your company has a 3-tier solution running on Compute Engine...
- Question 23: Your continuous integration and delivery (CI/CD) server can'...
- Question 24: Your application development team has created Docker images ...
- Question 25: You want to add a new auditor to a Google Cloud Platform pro...
- Question 26: Your company uses a large number of Google Cloud services ce...
- Question 27: Your company implemented BigQuery as an enterprise data ware...
- Question 28: Your application stores files on Cloud Storage by using the ...
- Question 29: You are the organization and billing administrator for your ...
- Question 30: You are in charge of provisioning access for all Google Clou...
- Question 31: All development (dev) teams in your organization are located...
- Question 32: Your company requires all developers to have the same permis...
- Question 33: Your management has asked an external auditor to review all ...
- Question 34: You are building a new version of an application hosted in a...
- Question 35: You have created an application that is packaged into a Dock...
- Question 36: You have an object in a Cloud Storage bucket that you want t...
- Question 37: You are building a data lake on Google Cloud for your Intern...
- Question 38: You are building a pipeline to process time-series data. Whi...
- Question 39: Your company has a single sign-on (SSO) identity provider th...
- Question 40: Your company uses BigQuery to store and analyze data. Upon s...
- Question 41: You have 32 GB of data in a single file that you need to upl...
- Question 42: You want to send and consume Cloud Pub/Sub messages from you...
- Question 43: You are planning to migrate the following on-premises data m...
- Question 44: Users of your application are complaining of slowness when l...
- Question 45: You have a batch workload that runs every night and uses a l...
- Question 46: You are deploying a production application on Compute Engine...
- Question 47: You are responsible for a web application on Compute Engine....
- Question 48: Your application is running on Google Cloud in a managed ins...
- Question 49: Your projects incurred more costs than you expected last mon...
- Question 50: You are working in a team that has developed a new applicati...
- Question 51: Your company has a Google Cloud Platform project that uses B...
- Question 52: You need to monitor resources that are distributed over diff...
- Question 53: You need to create an autoscaling managed instance group for...
- Question 54: You need to produce a list of the enabled Google Cloud Platf...
- Question 55: You are about to deploy a new Enterprise Resource Planning (...
- Question 56: You need a dynamic way of provisioning VMs on Compute Engine...
- Question 57: You need to verify that a Google Cloud Platform service acco...
- Question 58: You installed the Google Cloud CLI on your workstation and s...
- Question 59: You created a Google Cloud Platform project with an App Engi...
- Question 60: Your company is moving from an on-premises environment to Go...
- Question 61: Your company's security vulnerability management policy wont...
- Question 62: You are migrating a business critical application from your ...
- Question 63: You are running multiple VPC-native Google Kubernetes Engine...
- Question 64: You created a Kubernetes deployment by running kubectl run n...
- Question 65: (You are migrating your company's on-premises compute resour...
- Question 66: Your team has developed a stateless application which requir...
- Question 67: The DevOps group in your organization needs full control of ...
- Question 68: You need to configure optimal data storage for files stored ...
- Question 69: You are developing a financial trading application that will...
- Question 70: You are developing a new web application that will be deploy...
- Question 71: (You are managing an application deployed on Cloud Run. The ...
- Question 72: You are monitoring an application and receive user feedback ...
- Question 73: You have been asked to set up the billing configuration for ...
- Question 74: You are working for a startup that was officially registered...
- Question 75: A team of data scientists infrequently needs to use a Google...
- Question 76: You want to enable your development team to deploy new featu...
- Question 77: Your web application is hosted on Cloud Run and needs to que...
- Question 78: You have a VM instance running in a VPC with single-stack su...
- Question 79: You are working with a Cloud SQL MySQL database at your comp...
- Question 80: After a recent security incident, your startup company wants...
- Question 81: You need to create a Compute Engine instance in a new projec...
- Question 82: You are hosting an application from Compute Engine virtual m...
- Question 83: You have an application on a general-purpose Compute Engine ...
- Question 84: You need to manage a Cloud Spanner Instance for best query p...
- Question 85: You deployed an LDAP server on Compute Engine that is reacha...
- Question 86: You manage an App Engine Service that aggregates and visuali...
- Question 87: You recently deployed a new version of an application to App...
- Question 88: You need to create a new billing account and then link it wi...
- Question 89: You have a project for your App Engine application that serv...
- Question 90: You need to extract text from audio files by using the Speec...
- Question 91: You are the project owner of a GCP project and want to deleg...
- Question 92: You have a Bigtable instance that consists of three nodes th...
- Question 93: You need to deploy an application in Google Cloud using savo...
- Question 94: You are running a web application on Cloud Run for a few hun...
- Question 95: You are storing sensitive information in a Cloud Storage buc...
- Question 96: Your organization has user identities in Active Directory. Y...
- Question 97: You are building an application that processes data files up...
- Question 98: You are creating a Google Kubernetes Engine (GKE) cluster wi...
- Question 99: You have an application that receives SSL-encrypted TCP traf...
- Question 100: You want to run a single caching HTTP reverse proxy on GCP f...
- Question 101: You want to host your video encoding software on Compute Eng...
- Question 102: You want to add a new auditor to a Google Cloud Platform pro...
- Question 103: Your preview application, deployed on a single-zone Google K...
- Question 104: You are working with a user to set up an application in a ne...
- Question 105: You want to find out when users were added to Cloud Spanner ...
- Question 106: You want to configure autohealing for network load balancing...
- Question 107: Your company wants to migrate their on-premises workloads to...
- Question 108: You are setting up a Windows VM on Compute Engine and want t...
- Question 109: You have an application that runs on Compute Engine VM insta...
- Question 110: You have a single binary application that you want to run on...
- Question 111: You have been asked to set up Object Lifecycle Management fo...
- Question 112: Your organization has three existing Google Cloud projects. ...
- Question 113: You have deployed multiple Linux instances on Compute Engine...
- Question 114: You host a static website on Cloud Storage. Recently, you be...
- Question 115: Your organization uses G Suite for communication and collabo...
- Question 116: A colleague handed over a Google Cloud project for you to ma...
- Question 117: Your team is building a website that handles votes from a la...
- Question 118: You have a Compute Engine instance hosting an application us...
- Question 119: Your organization needs to grant users access to query datas...
- Question 120: You have two subnets (subnet-a and subnet-b) in the default ...
- Question 121: You need to create a custom IAM role for use with a GCP serv...
- Question 122: You have designed a solution on Google Cloud Platform (GCP) ...
- Question 123: You are managing a project for the Business Intelligence (BI...
- Question 124: You have been asked to create robust Virtual Private Network...
- Question 125: Your existing application running in Google Kubernetes Engin...
- Question 126: You need to set a budget alert for use of Compute Engineer s...
- Question 127: You need to create a copy of a custom Compute Engine virtual...
- Question 128: Your coworker has helped you set up several configurations f...
- Question 129: Your company has developed a new application that consists o...
- Question 130: You have an instance group that you want to load balance. Yo...
- Question 131: (You are deploying a web application using Compute Engine. Y...
- Question 132: You manage three Google Cloud projects with the Cloud Monito...
- Question 133: You want to enable your development team to deploy new featu...
- Question 134: Your company publishes large files on an Apache web server t...
- Question 135: Your company has embraced a hybrid cloud strategy where some...
- Question 136: Your company is running a three-tier web application on virt...
- Question 137: Your company developed a mobile game that is deployed on Goo...
- Question 138: Your company is moving its entire workload to Compute Engine...
- Question 139: You have an on-premises data analytics set of binaries that ...
- Question 140: For analysis purposes, you need to send all the logs from al...
- Question 141: You are deploying an application to App Engine. You want the...
- Question 142: (Your digital media company stores a large number of video f...
- Question 143: You have a virtual machine that is currently configured with...
- Question 144: You have a development project with appropriate IAM roles de...
- Question 145: You need to assign a Cloud Identity and Access Management (C...
- Question 146: Your company has an internal application for managing transa...
- Question 147: Your manager asks you to deploy a workload to a Kubernetes c...
- Question 148: You need to set up permissions for a set of Compute Engine i...
- Question 149: Your Dataproc cluster runs in a single Virtual Private Cloud...
- Question 150: Your company's infrastructure is on-premises, but all machin...
- Question 151: You need to enable traffic between multiple groups of Comput...
- Question 152: You are running a data warehouse on BigQuery. A partner comp...
- Question 153: (Your company was recently impacted by a service disruption ...
[×]
Download PDF File
Enter your email address to download Google.Associate-Cloud-Engineer.v2025-05-19.q153.pdf