Google Professional Cloud Architect Google Certified Professional – Cloud Architect (GCP) Online Training
Google Professional Cloud Architect Online Training
The questions for Professional Cloud Architect were last updated at Jul 23,2025.
- Exam Code: Professional Cloud Architect
- Exam Name: Google Certified Professional – Cloud Architect (GCP)
- Certification Provider: Google
- Latest update: Jul 23,2025
Your organization has a 3-tier web application deployed in the same network on Google Cloud Platform. Each tier (web, API, and database) scales independently of the others Network traffic should flow through the web to the API tier and then on to the database tier. Traffic should not flow between the web and the database tier .
How should you configure the network?
- A . Add each tier to a different subnetwork.
- B . Set up software based firewalls on individual VMs.
- C . Add tags to each tier and set up routes to allow the desired traffic flow.
- D . Add tags to each tier and set up firewall rules to allow the desired traffic flow.
You are running a cluster on Kubernetes Engine to serve a web application. Users are reporting that a specific part of the application is not responding anymore. You notice that all pods of your deployment keep restarting after 2 seconds. The application writes logs to standard output. You want to inspect the logs to find the cause of the issue .
Which approach can you take?
- A . Review the Stackdriver logs for each Compute Engine instance that is serving as a node in the cluster.
- B . Review the Stackdriver logs for the specific Kubernetes Engine container that is serving the unresponsive part of the application.
- C . Connect to the cluster using gcloud credentials and connect to a container in one of the pods to read the logs.
- D . Review the Serial Port logs for each Compute Engine instance that is serving as a node in the cluster.
One of the developers on your team deployed their application in Google Container Engine with the Dockerfile below.
They report that their application deployments are taking too long.
You want to optimize this Dockerfile for faster deployment times without adversely affecting the app’s functionality.
Which two actions should you take? Choose 2 answers.
- A . Remove Python after running pip.
- B . Remove dependencies from requirements.txt.
- C . Use a slimmed-down base image like Alpine linux.
- D . Use larger machine types for your Google Container Engine node pools.
- E . Copy the source after the package dependencies (Python and pip) are installed.
You need to evaluate your team readiness for a new GCP project. You must perform the evaluation and create a skills gap plan incorporates the business goal of cost optimization. Your team has deployed two GCP projects successfully to date .
What should you do?
- A . Allocate budget for team training. Set a deadline for the new GCP project.
- B . Allocate budget for team training. Create a roadmap for your team to achieve Google Cloud certification based on job role.
- C . Allocate budget to hire skilled external consultants. Set a deadline for the new GCP project.
- D . Allocate budget to hire skilled external consultants. Create a roadmap for your team to achieve Google Cloud certification based on job role.
You are using Cloud Shell and need to install a custom utility for use in a few weeks.
Where can you store the file so it is in the default execution path and persists across sessions?
- A . ~/bin
- B . Cloud Storage
- C . /google/scripts
- D . /usr/local/bin
Your web application has several VM instances running within a VPC. You want to restrict communications between instances to only the paths and ports you authorize, but you don’t want to rely on static IP addresses or subnets because the app can autoscale .
How should you restrict communications?
- A . Use separate VPCs to restrict traffic
- B . Use firewall rules based on network tags attached to the compute instances
- C . Use Cloud DNS and only allow connections from authorized hostnames
- D . Use service accounts and configure the web application particular service accounts to have access
You deploy your custom java application to google app engine.
It fails to deploy and gives you the following stack trace:
- A . Recompile the CLoakedServlet class using and MD5 hash instead of SHA1
- B . Digitally sign all of your JAR files and redeploy your application.
- C . Upload missing JAR files and redeploy your application
Your company is building a new architecture to support its data-centric business focus. You are responsible for setting up the network. Your company’s mobile and web-facing applications will be deployed on-premises, and all data analysis will be conducted in GCP. The plan is to process and load 7 years of archived .csv files totaling 900 TB of data and then continue loading 10 TB of data daily. You currently have an existing 100-MB internet connection.
What actions will meet your company’s needs?
- A . Compress and upload both achieved files and files uploaded daily using the qsutil Cm option.
- B . Lease a Transfer Appliance, upload archived files to it, and send it, and send it to Google to transfer
archived data to Cloud Storage. Establish a connection with Google using a Dedicated Interconnect or
Direct Peering connection and use it to upload files daily. - C . Lease a Transfer Appliance, upload archived files to it, and send it, and send it to Google to transfer
archived data to Cloud Storage. Establish one Cloud VPN Tunnel to VPC networks over the public internet, and compares and upload files daily using the gsutil Cm option. - D . Lease a Transfer Appliance, upload archived files to it, and send it to Google to transfer archived data to Cloud Storage. Establish a Cloud VPN Tunnel to VPC networks over the public internet, and compress and upload files daily.
To reduce costs, the Director of Engineering has required all developers to move their development infrastructure resources from on-premises virtual machines (VMs) to Google Cloud Platform. These resources go through multiple start/stop events during the day and require state to persist. You have been asked to design the process of running a development environment in Google Cloud while providing cost visibility to the finance department .
Which two steps should you take? Choose 2 answers
- A . Use the –no-auto-delete flag on all persistent disks and stop the VM.
- B . Use the -auto-delete flag on all persistent disks and terminate the VM.
- C . Apply VM CPU utilization label and include it in the BigQuery billing export.
- D . Use Google BigQuery billing export and labels to associate cost to groups.
- E . Store all state into local SSD, snapshot the persistent disks, and terminate the VM.
- F . Store all state in Google Cloud Storage, snapshot the persistent disks, and terminate the VM.
You write a Python script to connect to Google BigQuery from a Google Compute Engine virtual machine. The script is printing errors that it cannot connect to BigQuery .
What should you do to fix the script?
- A . Install the latest BigQuery API client library for Python
- B . Run your script on a new virtual machine with the BigQuery access scope enabled
- C . Create a new service account with BigQuery access and execute your script with that user
- D . Install the bq component for gccloud with the command gcloud components install bq.
Latest Professional Cloud Architect Dumps Valid Version with 168 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund
