You are hosting an application on bare-metal servers in your own data center. The application needs access to Cloud Storage. However, security policies prevent the servers hosting the application from having public IP addresses or access to the internet. You want to follow Google-recommended practices to provide the application with access to Cloud Storage. What should you do?

• A.1. Using Cloud VPN, create a VPN tunnel to a Virtual Private Cloud (VPC) in Google Cloud Platform (GCP).2. In this VPC, create a Compute Engine instance and install the Squid proxy server on this instance.3. Configure your servers to use that instance as a proxy to access Cloud Storage.
• B.1. Use Migrate for Compute Engine (formerly known as Velostrata) to migrate those servers to Compute Engine.2. Create an internal load balancer (ILB) that uses storage.googleapis.com as backend.3. Configure your new instances to use this ILB as proxy.
• C.1. Use nslookup to get the IP address for storage.googleapis.com.2. Negotiate with the security team to be able to give a public IP address to the servers.3. Only allow egress traffic from those servers to the IP addresses for storage.googleapis.com.
• D.1. Using Cloud VPN or Interconnect, create a tunnel to a VPC in GCP.2. Use Cloud Router to create a custom route advertisement for 199.36.153.4/30. Announce that network to your on-premises network through the VPN tunnel.3. In your on-premises network, configure your DNS server to resolve *.googleapis.com as a CNAME to restricted.googleapis.com.

Comment: *

Name: *

Email: *

Verification: *

Your customer has implemented a solution that uses Cloud Spanner and notices some read latency-related performance issues on one table. This table is accessed only by their users using a primary key. The table schema is shown below.

You want to resolve the issue. What should you do?

• A.Option A
• B.Option C
• C.Option B
• D.Option D

Comment: *

Name: *

Email: *

Verification: *

You want to run a single caching HTTP reverse proxy on GCP for a latency-sensitive website.
This specific reverse proxy consumes almost no CPU. You want to have a 30-GB in-memory cache, and need an additional 2 GB of memory for the rest of the processes. You want to minimize cost. How should you run this reverse proxy?

• A.Create a Cloud Memorystore for Redis instance with 32-GB capacity.
• B.Run it on Compute Engine, and choose a custom instance type with 6 vCPUs and 32 GB of memory.
• C.Package it in a container image, and run it on Kubernetes Engine, using n1-standard-32 instances as nodes.
• D.Run it on Compute Engine, choose the instance type n1-standard-1, and add an SSD persistent disk of 32 GB.

Comment: *

Name: *

Email: *

Verification: *

Your organization uses Active Directory (AD) to manage user identities. Each user uses this identity for federated access to various on-premises systems. Your security team has adopted a policy that requires users to log into Google Cloud with their AD identity instead of their own login. You want to follow the Google-recommended practices to implement this policy. What should you do?

• A.Sync Identities in the Google Admin console, and then enable Oauth for single sign-on
• B.Sync identities with Cloud Directory Sync, and then copy passwords to allow simplified login with the same credentials.
• C.Sync identities with 3rd party LDAP sync, and then copy passwords to allow simplified login with (he same credentials
• D.Sync Identities with Cloud Directory Sync, and then enable SAML for single sign-on

Comment: *

Name: *

Email: *

Verification: *

You need to update a deployment in Deployment Manager without any resource downtime in the deployment. Which command should you use?

• A.gcloud deployment-manager resources update --config <deployment-config-path>
• B.gcloud deployment-manager deployments update --config <deployment-config- path>
• C.gcloud deployment-manager deployments create --config <deployment-config- path>
• D.gcloud deployment-manager resources create --config <deployment-config-path>

Comment: *

Name: *

Email: *

Verification: *