ExamTopics Logo
Mail Us[email protected]
Menu
Google Discussions
exam questions

Exam Associate Cloud Engineer All Questions

View all questions & answers for the Associate Cloud Engineer exam
Go to Exam

Exam Associate Cloud Engineer topic 1 question 110 discussion

Actual exam question from Google's Associate Cloud Engineer
Question #: 110
Topic #: 1
[All Associate Cloud Engineer Questions]

You have successfully created a development environment in a project for an application. This application uses Compute Engine and Cloud SQL. Now you need to create a production environment for this application. The security team has forbidden the existence of network routes between these 2 environments and has asked you to follow Google-recommended practices. What should you do?

  • A. Create a new project, enable the Compute Engine and Cloud SQL APIs in that project, and replicate the setup you have created in the development environment.
  • B. Create a new production subnet in the existing VPC and a new production Cloud SQL instance in your existing project, and deploy your application using those resources.
  • C. Create a new project, modify your existing VPC to be a Shared VPC, share that VPC with your new project, and replicate the setup you have in the development environment in that new project in the Shared VPC.
  • D. Ask the security team to grant you the Project Editor role in an existing production project used by another division of your company. Once they grant you that role, replicate the setup you have in the development environment in that project.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by poogcp at June 10, 2020, 1:14 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
[Removed]
Highly Voted 3 years, 5 months ago
A - correct. Best practice is to create a new project for each environment, such as production and testing. There are no routes between VPCs in these projects by default, so that satisfies the requirement by the security team. B. Nope. not best practice and allows communication. C. While this is best practice to create a new project for a different environment, it explicitly breaks the security team's rule of having no path between environments by nature of the shared VPC. The shared VPC allows entities in both VPCs to communicate as if they were in the same VPC. That's definitely wrong. D. One - not best practice to replicate in the setup in that project. Two - why do they suddenly need the project editor rule? Just a bad answer. Wrong.
upvoted 41 times
...
poogcp
Highly Voted 3 years, 8 months ago
Correct answer is A.
upvoted 35 times
pYWORLD
2 years, 7 months ago
Correct answer!
upvoted 4 times
...
...
kelliot
Most Recent 3 months ago
Selected Answer: A
A Google's best practices says "create a new project for each environment.
upvoted 2 times
...
BAofBK
3 months, 4 weeks ago
The correct answer is A
upvoted 1 times
...
scanner2
5 months, 4 weeks ago
Selected Answer: A
According to Google recommended practices, you should create a separate project for different environments (dev, test, and prod). Also, the question has forbidden the existence of these environments so shared VPC cannot be used.
upvoted 1 times
...
Captain1212
6 months ago
Selected Answer: A
A is the correct answer, as it satisy tyhe requirement of security team , no commiunicatiojn , as option c allows coummnication
upvoted 1 times
...
Neha_Pallavi
6 months, 1 week ago
A. Create a new project, enable the Compute Engine and Cloud SQL APIs in that project, and replicate the setup you have created in the development environment.
upvoted 1 times
...
diasporabro
1 year, 4 months ago
Selected Answer: A
Satisfies requirements by the security team
upvoted 1 times
...
anolive
1 year, 4 months ago
Selected Answer: A
make sense
upvoted 1 times
...
alexandercamachop
1 year, 6 months ago
Selected Answer: A
A is definitely the answer.
upvoted 1 times
...
theBestStudent
1 year, 7 months ago
https://cloud.google.com/architecture/framework/system-design/resource-management#decouple
upvoted 1 times
...
andreherwanto
1 year, 7 months ago
Selected Answer: A
Correct answer is A.
upvoted 1 times
...
csrazdan
1 year, 7 months ago
Selected Answer: C
Technically we should create a new VPC if the network is not shared. Creating resources in a new project even within a new subnet will not separate unless firewall rules are not explicitly denying the traffic. The best answer is to create a shared VPC where DEV and PROD are service projects. My Answer is: C
upvoted 1 times
theBestStudent
1 year, 7 months ago
Why you want to share environments? they should be isolated. Therefore Answer should be A.
upvoted 3 times
...
...
haroldbenites
1 year, 9 months ago
Go for A I thought that the correct answer was the C , but the question did not say to communicate both environments.
upvoted 1 times
...
Rukman
1 year, 11 months ago
Selected Answer: A
Ans: A Agreed!
upvoted 1 times
...
JieHeng
2 years, 8 months ago
Should be A it's a best practice "to have one project per application per environment." - https://cloud.google.com/docs/enterprise/best-practices-for-enterprise-organizations#project-structure
upvoted 6 times
...
arsh1916
2 years, 9 months ago
A answer
upvoted 1 times
...
Load full discussion...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago