CCNA Pcd Deploy Databases Questions

75 of 99 questions · Page 1/2 · Pcd Deploy Databases topic · Answers revealed

1
Multi-Selectmedium

A company has a Cloud SQL for MySQL instance in the us-central1 region. They want to improve read performance for a report generation tool that runs in us-west1, and also provide disaster recovery in case the primary fails. Which TWO actions should they take?

Select 2 answers
A.Configure the report generation tool to connect to the cross-region replica.
B.Create a cross-region read replica in us-west1.
C.Enable high availability (HA) on the primary instance.
D.Change the primary instance to a larger machine type.
E.Add a read replica in us-central1.
AnswersA, B

This offloads reads to the replica and improves performance.

Why this answer

Cross-region read replicas serve both read scaling in another region and disaster recovery. A regional HA instance only provides HA within the same region. Increasing machine type improves performance but not DR.

Creating a read replica in the same region does not help with cross-region DR.

2
MCQmedium

An engineer needs to create a cross-region read replica for a Cloud SQL for MySQL instance for disaster recovery. Which step is required?

A.Create the replica in a different zone within the same region
B.Configure an external replica in the target region
C.Enable HA on the primary instance first
D.Create the replica in a different region
AnswerD

Cross-region read replicas can be created in any region, supporting DR.

Why this answer

Cross-region read replicas are supported in Cloud SQL for MySQL. The engineer can create a read replica in a different region from the primary instance. Read replicas are promoted for DR.

HA configuration is regional only. External replicas are for on-premises. Binary logging must be enabled on the primary.

3
MCQeasy

A company needs a fully managed, globally distributed relational database that supports ACID transactions across regions. Which Google Cloud service should they choose?

A.Firestore
B.Cloud Bigtable
C.Cloud SQL
D.Cloud Spanner
AnswerD

Spanner provides global distribution with strong consistency and ACID transactions.

Why this answer

Cloud Spanner is the only Google Cloud database that is fully managed, globally distributed, and supports ACID transactions. Cloud SQL is regional. Bigtable is NoSQL and does not support ACID transactions.

Firestore is a document database with limited transaction support but not globally distributed in the same way.

4
MCQmedium

A company runs a critical PostgreSQL database on Cloud SQL. They want to enforce that all client connections use SSL/TLS encryption. Which step is necessary to ensure this?

A.Enable IAM database authentication
B.Use the Cloud SQL Auth Proxy to connect
C.Assign a private IP address to the instance
D.Set the 'require_ssl' flag to 'on' for the instance
AnswerD

This flag enforces SSL/TLS for all connections. Clients without SSL will be rejected.

Why this answer

Cloud SQL provides a server-side SSL certificate and optionally enforces encryption using the 'require_ssl' flag (or 'cloudsql.ssl_mode' in newer versions). IAM authentication does not enforce SSL. The Auth Proxy uses SSL by default but does not enforce it at the database level.

Private IP alone does not encrypt traffic.

5
MCQmedium

You are migrating a PostgreSQL database to Cloud SQL. The database currently uses custom functions and PostGIS extensions. The target must support these extensions. Which database version and tier should you choose?

A.Cloud SQL for MySQL 8.0 with highmem machine type
B.Cloud SQL for PostgreSQL 15 with standard machine type
C.Cloud Spanner with PostgreSQL dialect
D.Cloud SQL for SQL Server 2019 with lightweight machine type
AnswerB

PostgreSQL supports PostGIS and custom functions.

Why this answer

Cloud SQL for PostgreSQL supports PostGIS and custom functions. The machine type depends on performance needs, but any tier works as long as PostgreSQL is chosen.

6
MCQmedium

A financial services company needs a globally distributed, strongly consistent database that can handle OLTP workloads with high throughput and automatic scaling. Which Google Cloud database should they use?

A.Firestore
B.Cloud SQL
C.Cloud Bigtable
D.Cloud Spanner
AnswerD

Spanner provides global distribution, strong consistency, and horizontal scaling for OLTP workloads.

Why this answer

Cloud Spanner is the only Google Cloud database that provides global distribution with strong consistency and horizontal scaling for OLTP workloads. Bigtable is eventually consistent across regions. Cloud SQL is regional.

Firestore is eventually consistent and limited to single-region or limited multi-region.

7
MCQeasy

A company is deploying a new web application on Google Cloud and needs a managed relational database with PostgreSQL compatibility. The database must support automatic failover within 60 seconds in case of a zone outage. Which database deployment option should they choose?

A.Cloud SQL single zone with automatic storage increase
B.Cloud SQL regional HA configuration
C.Spanner multi-region configuration
D.AlloyDB with a read pool of 2 instances
AnswerB

Regional HA uses a standby in a different zone and provides automatic failover in <60s.

Why this answer

Cloud SQL with regional HA configuration provisions a primary and a standby instance in different zones within the same region, using synchronous replication to enable automatic failover in under 60 seconds. This meets the requirement for high availability within a single region.

8
Multi-Selecteasy

A company is using Cloud Bigtable for a time-series workload. They want to monitor performance and identify hot spots. Which TWO Google Cloud tools or features should they use? (Choose 2.)

Select 2 answers
A.Key Visualiser
B.Cloud Trace
C.Cloud Monitoring metrics such as request latency
D.Cloud Profiler
E.Cloud Logging
AnswersA, C

Key Visualiser shows row key distribution, helping identify hot spots.

Why this answer

Key Visualizer is a Cloud Bigtable-specific tool that provides a heatmap of tablet server load, row key access patterns, and traffic distribution. It directly identifies hot spots by showing which row ranges are receiving disproportionate read/write activity, enabling targeted schema optimization.

Exam trap

The trap here is that candidates often confuse Cloud Trace (which tracks end-to-end request latency) with Cloud Monitoring metrics (which expose Bigtable-specific latency counters), or they overlook Key Visualizer as the only tool that provides row-key-level heatmaps for hot spot detection.

9
MCQhard

A company wants to connect to Cloud SQL from a Compute Engine VM without exposing the database to the public internet. They also need to avoid IP allowlisting. Which connection method should they use?

A.Assign a private IP to the Cloud SQL instance and connect using it
B.Use the Cloud SQL Auth Proxy
C.Use the Cloud SQL Connector library inside the VM
D.Use a direct IP connection with SSL enabled
AnswerB

The Auth Proxy uses private IP and IAM authentication, eliminating the need for IP allowlisting.

Why this answer

The Cloud SQL Auth Proxy securely connects to Cloud SQL using private IP without requiring IP allowlisting. It uses IAM permissions for authentication. Direct IP connection with SSL still requires IP allowlisting.

Using only private IP does not provide secure authentication by itself; the Auth Proxy adds IAM-based authentication. The Cloud SQL Connector libraries are client-side libraries that offer similar functionality but are not a standalone connection method.

10
MCQmedium

A company wants to deploy a Bigtable instance for a production workload that requires high availability across zones. They also need to ensure consistent single-digit millisecond latency for reads. Which configuration should they choose?

A.Create a production instance with two clusters across two zones using SSD storage.
B.Create a production instance with one cluster and enable replication within the cluster.
C.Create a production instance with one cluster in a single zone using SSD storage.
D.Create a development instance with two clusters across two zones using HDD storage.
AnswerA

Two clusters in different zones provide HA; SSD provides low latency for production.

Why this answer

Bigtable replication across zones provides HA and read scaling. Production instances are required for production workloads. Development instances are limited and not for production.

HDD is slower, not recommended for low latency. A single cluster does not provide zone-level HA.

11
MCQeasy

Which Cloud SQL setting ensures that all client connections to the database use SSL?

A.Use private IP only.
B.Set the 'ssl_mode' to 'required'.
C.Enable IAM database authentication.
D.Set the 'require_ssl' flag to 'on'.
AnswerD

This flag enforces SSL for all connections.

Why this answer

The 'require_ssl' flag in Cloud SQL enforces SSL connections. If enabled, non-SSL connections are rejected. IAM database authentication controls login via IAM but does not mandate SSL.

Private IP alone does not enforce SSL; it's still possible to connect without SSL over the private network.

12
MCQmedium

A company needs to run AlloyDB on-premises to maintain data sovereignty while leveraging the same management APIs as in Google Cloud. Which AlloyDB offering should they use?

A.Cloud SQL for PostgreSQL with HA
B.AlloyDB Omni
C.Bigtable Omni
D.AlloyDB cluster with cross-region replication
AnswerB

AlloyDB Omni is the on-premises version that provides the same engine and management APIs.

Why this answer

AlloyDB Omni is designed for on-premises deployment with the same AlloyDB engine, managed via Google Cloud’s APIs or CLI. AlloyDB clusters are cloud-only. Cloud SQL is a different service.

Bigtable Omni is for Bigtable, not AlloyDB.

13
MCQeasy

An engineer is deploying a Cloud SQL for SQL Server instance and wants to automatically increase storage when the disk usage reaches a threshold. Which flag should they set?

A.Enable 'automatic storage increase'
B.Set 'disk size' to unlimited
C.Configure 'storage tier' to auto-scale
D.Use 'persistent disk auto-resize'
AnswerA

This flag enables automatic disk resizing.

Why this answer

Cloud SQL supports the 'storage auto-increase' flag. When enabled, Cloud SQL automatically increases storage size in small increments when free space is low. This is set at instance creation or update.

14
MCQhard

A company is using Cloud Bigtable for a time-series application. They need to ensure that if one zone fails, the database remains available for reads and writes with minimal downtime. Which configuration should they use?

A.Enable auto-scaling on the cluster
B.Use a development instance type
C.Use a single-cluster instance with SSD storage
D.Add a secondary cluster in a different zone within the same region
AnswerD

Replication across zones provides HA with automatic failover.

Why this answer

Adding a secondary cluster in a different zone within the same region provides replication and automatic failover for both reads and writes.

15
MCQmedium

A company's Firestore security rules are too permissive, allowing all users to read and write any document. They need to restrict access so that only authenticated users can read and write their own data. Which rule structure should they use?

A.Allow read/write if request.auth.uid == resource.data.user_id;
B.Allow read/write if request.auth != null;
C.Allow read/write if request.auth != null && request.auth.uid == resource.id;
D.Allow read/write if request.auth.token.email == resource.data.email;
AnswerA

This restricts access to documents where the user ID field matches the authenticated user.

Why this answer

Firestore security rules can use `request.auth.uid` to verify the authenticated user's identity and `resource.data.user_id` to check ownership. The correct rule ensures that the authenticated user's UID matches the `user_id` field in the document.

16
Multi-Selectmedium

A company is deploying Cloud Bigtable for a high-throughput write-heavy workload. They need high availability and read scalability across two GCP regions. Which TWO actions should they take? (Choose 2.)

Select 2 answers
A.Add a secondary cluster in a different region.
B.Create the instance with HDD storage to reduce costs.
C.Use a development instance type.
D.Enable autoscaling for the primary cluster only.
E.Configure replication between the clusters.
AnswersA, E

Replication across regions provides HA and enables read from each cluster.

Why this answer

Option A is correct because adding a secondary cluster in a different region provides high availability and read scalability for Cloud Bigtable. With a multi-cluster instance, if the primary cluster fails, the secondary cluster can serve traffic, and read requests can be routed to the closest cluster for lower latency and load distribution.

Exam trap

The trap here is that candidates may think autoscaling or instance type choices address high availability, but only cross-region replication with a secondary cluster provides the required geographic redundancy and read scalability.

17
MCQhard

A company is using Bigtable for real-time analytics and notices that certain row keys are causing hot spots. Which tool should they use to identify the hot spot patterns?

A.Profiler
B.Key Visualizer
C.Cloud Monitoring workspace
D.Cloud Trace
AnswerB

Key Visualizer provides a heatmap of access patterns to detect hot spots.

Why this answer

Bigtable Key Visualizer is designed to analyze access patterns and identify hot spots by visualizing row key distribution and traffic. It helps optimize row key design. The other options are general monitoring or optimization tools not specific to Bigtable key analysis.

18
MCQhard

An engineer needs to deploy Cloud Spanner with the ability to scale compute capacity automatically between 1000 and 6000 processing units based on load, with a target high-priority CPU utilization of 65%. Which configuration achieves this?

A.Create the instance with 6 nodes (6000 processing units) and set autoscaling with min=1, max=6, target high-priority CPU=0.65.
B.Create the instance with 1 node (1000 processing units) and enable autoscaling with min=1000, max=6000, target high-priority CPU=0.65.
C.Create the instance with 1000 processing units and enable autoscaling with min=1, max=6, target CPU=0.65.
D.Create the instance with 3 processing units and enable autoscaling with min=1000, max=6000, target CPU=0.65.
AnswerB

This is the correct way: processing units autoscaling with min/max and target high-priority CPU utilization.

Why this answer

Cloud Spanner auto-scaling uses processing units with min/max bounds and a high-priority CPU target. Nodes are fixed at 1000 processing units each, so auto-scaling with processing units is required to specify a range and target. The feature was introduced to allow finer-grained scaling than nodes.

19
MCQmedium

A company needs to monitor the disk usage of their Cloud SQL instance to proactively increase storage before it runs out. They want to set an alert when disk usage exceeds 80%. Which metric should they use in Cloud Monitoring?

A.database/cpu/utilisation
B.database/disk/quota
C.database/disk/bytes_used
D.database/memory/utilisation
AnswerC

This metric tracks disk bytes used, from which you can calculate utilization.

Why this answer

Cloud SQL provides the `database/disk/bytes_used` metric, which represents the actual storage used. By setting an alert on this metric (e.g., as a percentage of total disk size), they can be notified when usage is high.

20
Multi-Selecthard

An engineer needs to secure a Cloud SQL for MySQL instance that contains sensitive data. They want to ensure that only specific Compute Engine VMs in the same VPC can connect, and that all connections are encrypted. Which THREE steps should they take? (Choose three.)

Select 3 answers
A.Enable IAM database authentication.
B.Configure the instance to use a private IP address.
C.Assign a public IP address to the instance.
D.Add the VMs' IP addresses to the authorized networks.
E.Enable the 'require_ssl' flag.
AnswersA, B, E

IAM authentication provides fine-grained access control using IAM policies.

Why this answer

Private IP restricts access to the VPC. SSL enforcement ensures encryption. IAM database authentication adds an extra layer of security by allowing IAM-based login.

Public IP would expose the instance. Authorized networks are for public IP access, which is not desired. Cloud SQL Auth Proxy can be used but not necessary if using private IP with SSL; the proxy adds another layer but is not required for this basic encryption and access control.

21
MCQeasy

A development team wants to test their application locally with Cloud Bigtable without incurring costs. Which instance type should they create?

A.Production instance with a single node
B.Production instance with a multi-cluster configuration
C.Development instance
D.Production instance with HDD storage
AnswerC

Development instances are cost-effective for testing, providing limited performance but full API compatibility.

Why this answer

Cloud Bigtable offers a 'Development' instance type for testing and development. It uses a single node (or limited cluster) and costs significantly less than a production instance. Production instances are for live workloads.

An HDD cluster is for production with slower storage. A multi-cluster is for replication.

22
Multi-Selecthard

A company is deploying a Cloud Spanner database for a global application. They need to minimize write latency for users in North America and Europe while ensuring strong consistency. They also want to control costs by only paying for the capacity they use. Which THREE features should they use?

Select 2 answers
A.Dual-region instance configuration.
B.Enable autoscaling with processing units.
C.Multi-region instance configuration (e.g., nam3, eur3).
D.Use a fixed number of nodes to simplify management.
E.Set up a read replica in each continent.
AnswersB, C

Autoscaling with processing units allows paying only for needed capacity.

Why this answer

A multi-region configuration spans North America and Europe, reducing write latency for those users. Autoscaling adjusts capacity based on demand, controlling costs. Dual-region is limited to two regions within one continent.

Processing units are the granular capacity unit for autoscaling. Nodes are fixed capacity.

23
MCQmedium

A company is using Cloud SQL for PostgreSQL and wants to ensure that all connections to the database use SSL/TLS. They have set the `require_ssl` flag but still see some connections using non-SSL. What is the most likely reason?

A.The application is using a database driver that does not support SSL.
B.The flag only applies to connections using the Cloud SQL Auth Proxy.
C.The flag must be configured in the database server parameters, not the Cloud SQL admin panel.
D.Existing connections that were established before the flag was enabled are still active.
AnswerD

The flag does not terminate existing non-SSL connections; they remain until disconnected.

Why this answer

The `require_ssl` flag only affects new connections; existing connections may continue without SSL until they are re-established. Restarting the instance forces all connections to reconnect with SSL. The flag does not require clients to connect via Auth Proxy.

Old clients may not support SSL but the flag would block them, not allow non-SSL.

24
Multi-Selecteasy

A company needs to store and analyze large amounts of log data with flexible schema and support for real-time analytics. They want to use a fully managed, serverless solution. Which THREE Google Cloud services could meet their needs? (Choose three.)

Select 3 answers
A.Cloud Logging
B.Cloud SQL for PostgreSQL
C.Firestore
D.Cloud Spanner
E.BigQuery
AnswersA, C, E

Cloud Logging is a fully managed service for storing and querying log data.

Why this answer

BigQuery is a serverless data warehouse for analytics. Firestore can store semi-structured data with real-time listeners (though not primarily for analytics). Cloud Logging is for storing and querying logs with built-in analytics.

Cloud SQL is relational and not serverless. Datastore (Firestore in Datastore mode) is not serverless? Actually Firestore is serverless. But note: Datastore mode is also serverless.

However, the question says 'analyze large amounts of log data' — BigQuery and Cloud Logging are ideal. Firestore can be used for flexible schema but not for large-scale analytics; but it is fully managed and serverless. The combination of BigQuery (analytics), Cloud Logging (log storage/query), and Firestore (flexible schema for real-time) is plausible.

But perhaps Cloud Spanner is not serverless. The answer key: B, C, D.

25
MCQmedium

A startup is building a mobile app with Firestore. They need to ensure that only authenticated users can read and write their own data. Which Firestore security rule pattern should they use?

A.Allow read/write if request.auth != null
B.Allow read/write only if the document path contains the user's uid
C.Allow read/write if resource.data.userId == request.auth.uid
D.Allow read/write only if request.resource.data.userId == request.auth.uid
AnswerC

This rule ensures that users can only read/write documents where the userId field matches their uid.

Why this answer

Using request.auth.uid to match the document owner ensures users can only access their own data.

26
MCQmedium

A company is deploying a new financial application on Google Cloud that requires strong consistency, global scale, and the ability to handle millions of transactions per second across multiple regions. The application data has a relational structure. Which database service should they choose?

A.Firestore
B.Cloud SQL for MySQL
C.Cloud Bigtable
D.Cloud Spanner
AnswerD

Spanner provides global strong consistency, horizontal scaling, and full relational SQL support, ideal for high-throughput financial applications.

Why this answer

Cloud Spanner is the only Google Cloud database that provides global strong consistency, horizontal scaling, and relational schema support at massive transaction volumes. Cloud SQL is limited to a single region, Bigtable does not support relational data, and Firestore is document-based with limited transaction support.

27
MCQmedium

An organization needs a globally distributed relational database with strong consistency across regions and the ability to scale horizontally without manual sharding. Which Google Cloud database should they choose?

A.Firestore
B.Cloud Spanner
C.Cloud SQL for MySQL
D.Cloud Bigtable
AnswerB

Spanner provides global distribution, strong consistency, and horizontal scaling without manual sharding.

Why this answer

Cloud Spanner is a globally distributed, strongly consistent relational database that scales horizontally. It supports multiple regional configurations and auto-scaling. Bigtable is not relational, Cloud SQL does not scale horizontally, and Firestore is not relational.

28
MCQmedium

A company needs a database for an e-commerce application that requires strong consistency and the ability to scale horizontally across multiple regions. They expect high write throughput and need to support SQL queries. Which database should they choose?

A.Cloud Bigtable
B.Cloud Spanner
C.Cloud SQL
D.Firestore
AnswerB

Spanner meets all requirements: global, strongly consistent, scalable, SQL.

Why this answer

Cloud Spanner is a globally distributed, strongly consistent relational database that scales horizontally and supports SQL. Bigtable is NoSQL and eventually consistent. Cloud SQL is regional and does not scale horizontally.

Firestore is NoSQL and eventually consistent across regions.

29
MCQmedium

A manufacturing company collects time-series data from thousands of sensors and wants to store it in Cloud Bigtable. They need to design a row key that avoids hotspots and ensures even distribution of writes across tablets. Which row key design strategy is BEST?

A.Use an inverted timestamp as the row key
B.Use the sensor ID as the first component of the row key
C.Prefix the timestamp with a hash of the sensor ID
D.Use a single row key for all data from the same day
AnswerC

Hashing distributes writes evenly across the key space.

Why this answer

To avoid hotspots, the row key should start with a field that has high cardinality and even distribution. A common approach is to prepend a hash or a nonce derived from the timestamp or sensor ID to spread writes across tablets.

30
MCQmedium

A company is migrating an on-premises PostgreSQL database to Cloud SQL for PostgreSQL. They require automatic failover within 60 seconds in case of a zonal failure. The database must be available in the same region for low latency. Which configuration should they choose?

A.Create a Cloud SQL for PostgreSQL zonal instance with one standby replica in the same zone.
B.Create a Cloud SQL for PostgreSQL regional instance with HA configuration.
C.Create a Cloud SQL for PostgreSQL instance with a local SSD and enable automatic storage increase.
D.Create a Cloud SQL for PostgreSQL zonal instance and add a cross-region read replica.
AnswerB

Regional HA configuration provides a synchronous standby in a different zone within the same region, with automatic failover within 60 seconds.

Why this answer

Cloud SQL HA configuration uses a regional instance with a standby in a different zone within the same region. Automatic failover occurs within 60 seconds. Zonal instances do not provide HA.

Cross-region replicas are for disaster recovery, not automatic failover within the region.

31
Multi-Selecthard

A company has a Cloud Spanner instance with 1000 processing units and wants to enable auto-scaling. Which three parameters must be configured? (Choose THREE.)

Select 3 answers
A.Maximum processing units
B.Minimum processing units
C.Target high-priority CPU utilization
D.Scaling increment (e.g., 100 units)
E.Instance type (regional or multi-region)
AnswersA, B, C

Defines the upper bound.

Why this answer

When enabling auto-scaling for Cloud Spanner, you must set the minimum and maximum processing units (or nodes) and the target high-priority CPU utilization. Scaling increments and scaling limits are not direct parameters. The instance type is fixed.

32
MCQmedium

A company wants to deploy a database for a global application that requires strong consistency across continents, with the ability to handle millions of reads and writes per second. Which Google Cloud database should they choose?

A.Firestore
B.Cloud Spanner
C.Cloud SQL
D.Cloud Bigtable
AnswerB

Spanner provides global strong consistency and high throughput.

Why this answer

Cloud Spanner is the only globally distributed, strongly consistent relational database that can handle millions of operations per second across multiple continents.

33
MCQhard

A company's Cloud Bigtable instance is experiencing high latency and increased error rates for write requests. The Key Visualiser shows that a single row key prefix receives the majority of writes, creating a hotspot. What is the BEST long-term solution to distribute writes more evenly?

A.Add more nodes to the Bigtable cluster
B.Switch from SSD to HDD storage
C.Redesign the row key by salting with a hash or a more distributed prefix
D.Create a secondary Bigtable cluster in another region
AnswerC

Salting distributes writes across different tablets, eliminating the hotspot.

Why this answer

To avoid hot spotting, row key design should incorporate a nonce or sharding prefix to distribute writes across tablets. Salting row keys with a calculated hash or a field with high cardinality spreads the load. The Key Visualiser confirms the hotspot; redesigning the key is the correct fix.

34
MCQeasy

A developer wants to connect to a Cloud SQL instance from a Compute Engine VM without whitelisting IP addresses and with automatic encryption. What should they use?

A.Use the Cloud SQL Auth Proxy.
B.Use direct IP connection with SSL.
C.Use a Cloud SQL Connector library.
D.Use a Cloud VPN connection.
AnswerA

The proxy securely connects without IP allowlisting and handles encryption automatically.

Why this answer

Cloud SQL Auth Proxy provides secure, encrypted connections without IP allowlisting. It uses IAM for authentication and runs as a sidecar or on the client. Direct IP with SSL still requires IP allowlisting.

Cloud SQL Connector libraries also provide secure connections but the proxy is the standard tool for VMs.

35
MCQeasy

A team is deploying a Cloud SQL for PostgreSQL instance and needs to enforce that all connections use SSL/TLS. Which flag must they enable on the Cloud SQL instance?

A.require_ssl
B.ssl_enforcement
C.enforce_tls
D.cloudsql_ssl_only
AnswerA

Enabling require_ssl forces all connections to use SSL.

Why this answer

The 'require_ssl' flag, when set to 'on', ensures that only SSL-encrypted connections are allowed. This is a database flag specific to Cloud SQL for PostgreSQL and MySQL.

36
Multi-Selecthard

A company is running a Cloud Spanner instance with 1000 processing units. They notice high-priority CPU utilization exceeding 90% during peak hours, causing increased latency. They want to automatically scale capacity to handle the load while staying cost-effective. Which TWO actions should they take? (Choose 2.)

Select 2 answers
A.Enable proactive scaling based on a schedule.
B.Manually increase processing units to 2000 during peak hours.
C.Set the high-priority CPU target to 70% to trigger scaling earlier.
D.Convert the instance to use nodes instead of processing units.
E.Configure autoscaling with a minimum of 1000 processing units and a maximum of 3000 processing units.
AnswersC, E

The target determines when to scale; a lower target (70%) triggers scaling before saturation.

Why this answer

Spanner autoscaling requires setting min and max processing units and a high-priority CPU target. Autoscaling adjusts capacity based on the target. Manual scaling is not automatic.

Nodes are a different capacity unit; mixing units is not recommended. Proactive scaling is for scheduled changes, not automatic.

37
MCQeasy

A company wants to deploy a non-relational database for a real-time bidding application that requires low latency (under 10ms) and high throughput (millions of requests per second). The data model is key-value with a timestamp component. Which Google Cloud database is most appropriate?

A.Cloud Bigtable
B.Cloud Spanner
C.Firestore
D.Cloud SQL
AnswerA

Bigtable excels at high-throughput, low-latency key-value access.

Why this answer

Cloud Bigtable is designed for high-throughput, low-latency key-value workloads with time-series data, such as real-time bidding.

38
MCQhard

An engineer is using Firestore Security Rules for a mobile app. They want to ensure that a user can only read their own documents, where each document has a field 'userId' matching the user's authenticated UID. Which rule is correct?

A.service cloud.firestore { match /databases/{database}/documents { match /{document=**} { allow read: if request.auth.uid == get(/databases/$(database)/documents/$(document)).data.userId; } } }
B.service cloud.firestore { match /databases/{database}/documents { match /{document=**} { allow read: if request.auth.uid == request.resource.data.userId; } } }
C.service cloud.firestore { match /databases/{database}/documents { match /{document=**} { allow read: if resource.data.userId == request.auth.uid; } } }
D.service cloud.firestore { match /databases/{database}/documents { match /{document=**} { allow read: if request.auth.uid == resource.data['user-id']; } } }
AnswerC

This rule allows read access if the document's userId field matches the authenticated user's UID.

Why this answer

Firestore Security Rules use the `request.auth.uid` variable to get the authenticated user's UID and `resource.data.userId` to access the document field. The correct condition checks that the document's 'userId' equals the requester's UID. `request.resource` refers to incoming data, not existing data.

39
Multi-Selectmedium

A company is using Cloud Bigtable for a high-throughput write workload. They notice periodic latency spikes. Which two metrics should they monitor to diagnose the issue? (Choose two.)

Select 2 answers
A.Disk bytes used
B.Network throughput
C.Error count
D.Request latency
E.CPU utilization
AnswersC, D

Error count (e.g., deadline exceeded) indicates issues causing latency spikes.

Why this answer

Request latency directly measures performance. Error count indicates failures or throttling. CPU utilization and disk usage are less direct indicators for write spikes.

However, the question asks for two metrics to diagnose latency spikes; the most relevant are request latency and error count.

40
MCQmedium

A company is deploying AlloyDB for PostgreSQL in multiple regions to support disaster recovery. They need the secondary region to be able to serve reads and automatically scale read capacity. Which configuration should they use?

A.Create a primary cluster in the primary region and a primary cluster in the secondary region, then set up bidirectional replication
B.Use AlloyDB Omni in the secondary region to replicate data from the primary region
C.Create a primary cluster in the primary region and a read pool cluster in the secondary region with autoscaling enabled on the read pool
D.Create a primary cluster with multiple read pools in the same region and distribute read traffic
AnswerC

AlloyDB read pool clusters in secondary regions can serve reads and autoscale read capacity.

Why this answer

AlloyDB supports cross-region replication using read pool instances in secondary regions. These read pools can have autoscaling enabled to automatically adjust the number of nodes based on load. Primary instances are for writes only.

AlloyDB Omni is for on-premises, not cross-region replication. A single cluster with multiple read pools in the same region does not provide cross-region DR.

41
MCQmedium

A development team wants to connect their Cloud SQL for PostgreSQL instance from a Compute Engine VM without exposing it to the public internet. They also want to avoid managing IP allowlists. Which method should they use?

A.Use Private IP only
B.Configure a public IP with SSL enforcement
C.Assign a static IP to the VM and add it to authorized networks
D.Use Cloud SQL Auth Proxy
AnswerD

Auth Proxy handles authentication and encryption, no public IP needed.

Why this answer

The Cloud SQL Auth Proxy provides secure, IAM-based access to Cloud SQL instances without requiring public IP or allowlists. It runs on the client and uses an encrypted tunnel. It works over Private IP if the VM is in the same VPC, but does not require it.

42
MCQmedium

An e-commerce platform uses Cloud Spanner for its inventory system. They notice that the processing units utilization is consistently above 90% during peak hours, causing increased read latency. They want to automatically scale capacity based on load. What should they configure?

A.Switch from processing units to nodes for better performance
B.Manually increase the number of nodes
C.Enable auto-scaling by setting min and max processing units with a high-priority CPU target
D.Reduce the number of processing units to lower cost
AnswerC

Auto-scaling adjusts processing units based on CPU utilization.

Why this answer

Cloud Spanner supports auto-scaling by configuring min and max processing units and a high-priority CPU target utilization. When utilization exceeds the target, Spanner automatically adds processing units up to the max. This is the correct approach.

43
Multi-Selectmedium

A company needs to secure their Cloud SQL for MySQL instance. They want to ensure that only applications running within their VPC can connect, and that all connections are encrypted. Which two steps should they take? (Choose two.)

Select 2 answers
A.Use Cloud SQL Auth Proxy on the application side
B.Assign a public IP address to the instance
C.Enable the 'require_ssl' flag
D.Assign a private IP address to the instance
E.Enable IAM database authentication
AnswersC, D

Requires SSL for all connections.

Why this answer

Using private IP restricts connections to the VPC, and enabling SSL enforcement ensures encryption. IAM authentication is additional but not required for VPC-only connectivity.

44
MCQhard

A Cloud Spanner instance is experiencing high read latency. The instance has a single regional configuration. Monitoring shows high-priority CPU utilization is above 90%. What should the engineer do to reduce latency?

A.Change the instance configuration to a multi-region setup
B.Increase the number of processing units
C.Reduce the number of indexes
D.Decrease the number of nodes to reduce contention
AnswerB

Adding compute capacity reduces CPU saturation and latency.

Why this answer

High-priority CPU utilization above 90% indicates that the instance's compute resources are saturated, causing queuing and increased read latency. Increasing the number of processing units (or nodes) adds more CPU capacity, allowing the instance to handle more concurrent reads and reducing latency. This directly addresses the root cause of resource contention.

Exam trap

The trap here is that candidates may confuse high CPU utilization with a need for geographic distribution (multi-region) or think reducing indexes will lower CPU load, when in fact the correct action is to scale compute capacity by increasing processing units or nodes.

How to eliminate wrong answers

Option A is wrong because changing to a multi-region configuration adds replication and geographic distribution, which can increase write latency and does not directly resolve high CPU utilization; it may even worsen read latency due to cross-region consistency overhead. Option C is wrong because reducing indexes can lower write amplification and storage overhead, but it does not address the immediate CPU bottleneck for reads; indexes are typically used to speed up reads, and removing them could increase read latency. Option D is wrong because decreasing the number of nodes reduces total CPU capacity, which would increase CPU utilization and contention, making latency worse.

45
MCQmedium

A company runs a Cloud Spanner instance with 2000 processing units. They notice that the high-priority CPU utilization is consistently above 80% during peak hours. Which action should they take to improve performance?

A.Enable auto-scaling with a high-priority CPU target of 65%
B.Enable read replicas to offload CPU
C.Reduce the number of processing units to save cost
D.Switch to node-based scaling and add 2 nodes
AnswerA

Auto-scaling will add capacity when CPU exceeds the target.

Why this answer

Auto-scaling can adjust processing units based on high-priority CPU target. Manually increasing processing units or nodes also works, but auto-scaling is the recommended approach.

46
Multi-Selectmedium

A team is using Firestore for a mobile application. They need to write security rules that allow users to read and write only their own documents. The documents have a field 'ownerId' that matches the user's UID. Which THREE rule components should they use? (Choose 3.)

Select 4 answers
A.Use resource.data to access the document's fields.
B.Use request.resource to validate incoming data during writes.
C.Write a rule that allows read if request.auth.uid == resource.data.ownerId.
D.Use the exists() function to check if the ownerId field exists.
E.Use request.auth to verify user identity.
AnswersA, B, C, E

resource.data.ownerId retrieves the owner field from the document.

Why this answer

request.auth.uid provides the authenticated user's UID. resource.data allows accessing document fields. get and read/write permissions control access. request.resource is for incoming data during writes. exists() is used for checking document existence, not for matching owner.

47
Multi-Selecthard

A company is migrating an on-premises PostgreSQL database to Cloud SQL. They need to ensure high availability and minimize downtime during maintenance. They also want to enable IAM database authentication for enhanced security. Which three actions should they take? (Choose three.)

Select 3 answers
A.Create a Cloud SQL for PostgreSQL instance with regional HA configuration
B.Use Cloud SQL Auth Proxy for all connections
C.Grant the cloudsql.iamUser role to each user
D.Set the cloudsql.iam_authentication flag to 'on'
E.Create a cross-region read replica for failover
AnswersA, C, D

Regional HA provides automatic failover and zone redundancy.

Why this answer

Option A is correct because creating a Cloud SQL for PostgreSQL instance with regional HA configuration uses synchronous replication across two zones within the same region, providing automatic failover with minimal downtime. This ensures high availability and meets the requirement to minimize downtime during maintenance, as the standby instance takes over with no data loss.

Exam trap

Cisco often tests the distinction between high availability (regional HA with synchronous replication) and disaster recovery (cross-region replicas with asynchronous replication), leading candidates to incorrectly choose cross-region replicas for minimizing maintenance downtime.

48
Multi-Selecthard

An organization uses Cloud Spanner in a multi-region configuration. They want to monitor performance and identify potential bottlenecks. Which three metrics should they review? (Choose three.)

Select 3 answers
A.Read and write latency
B.Processing units utilization
C.Disk bytes used
D.Rows deleted by deletes
E.High-priority CPU utilization
AnswersA, B, E

Latency is a key performance indicator.

Why this answer

Processing units utilization indicates capacity, read/write latency measures performance, and high-priority CPU target helps identify contention. Rows deleted is not a performance metric.

49
MCQeasy

A startup wants to use Firestore for a mobile app. They need to restrict access so that users can only read and write their own data. Which Firestore security rule feature should they use?

A.Use Firebase Authentication and enable anonymous sign-in.
B.Set up IAM roles for each user.
C.Use the get() function to retrieve the user's document each time.
D.Use request.auth to get the user's UID and compare it to the document's owner field.
AnswerD

This is the standard way to enforce per-user access.

Why this answer

Firestore security rules use `request.auth` to identify the authenticated user and `resource.data` to access document fields. Combining these allows rules to compare the user ID in the request with the document’s owner field. `get()` and `exists()` are functions for cross-document validation, not for user identity.

50
MCQeasy

An engineer needs to create a Cloud SQL MySQL instance that can automatically failover to a standby in a different zone within the same region. Which configuration should be used?

A.Read replica in same zone
B.Regional HA configuration
C.Zonal availability configuration
D.Cross-region failover replica
AnswerB

This creates a synchronous standby in a different zone within the same region, enabling automatic failover under 60 seconds.

Why this answer

Cloud SQL HA configuration creates a primary and a standby instance in different zones within the same region. The standby is synchronously replicated and automatic failover occurs in under 60 seconds. Cross-region failover is not supported; read replicas are for read scaling and DR, not automatic failover.

Zonal availability is a single-zone instance without HA.

51
MCQeasy

An organization runs a MySQL database on Cloud SQL. They want to ensure that all connections to the database are encrypted. Which action should they take?

A.Set the 'require_ssl' flag on the Cloud SQL instance to 'on'
B.Use the Cloud SQL Auth Proxy
C.Enable IAM database authentication
D.Create the instance with the '--require-ssl' flag
AnswerA

This flag enforces SSL for all connections.

Why this answer

Enabling the 'require_ssl' flag ensures that only SSL/TLS connections are accepted, enforcing encryption for all client connections.

52
MCQeasy

A developer needs to connect a Cloud Run service to a Cloud SQL instance securely without managing SSL certificates or configuring IP allowlists. Which connection method should they use?

A.Directly connect using the instance's public IP with SSL
B.Use the Cloud SQL Connector library
C.Configure VPC peering and use private IP
D.Use the Cloud SQL Auth Proxy
AnswerD

The proxy provides a secure tunnel without needing static IPs or SSL certificate management.

Why this answer

Cloud SQL Auth Proxy handles authentication and encryption automatically, and works with Cloud Run via Unix sockets or TCP without requiring IP allowlisting.

53
MCQhard

A Cloud Spanner instance is configured with 1000 processing units. The workload has unpredictable traffic spikes. To ensure consistent performance, the team wants to automatically adjust capacity based on a high-priority CPU target of 60%. What should they configure?

A.Set up Cloud Spanner autoscaling with min=500, max=2000 processing units and high-priority CPU target=0.6.
B.Configure compute capacity with a fixed number of nodes.
C.Enable Bigtable autoscaling for the Spanner instance.
D.Manually adjust nodes when CPU exceeds 60%.
AnswerA

Autoscaling based on high-priority CPU target automatically adjusts capacity.

Why this answer

Cloud Spanner’s autoscaler can automatically adjust processing units based on CPU utilization. Setting min and max processing units with a high-priority CPU target enables autoscaling. Node count is older, processing units are granular.

Compute capacity is not the same as autoscaling. Bigtable autoscaler is for Bigtable.

54
MCQeasy

A developer needs to connect to a Cloud SQL for PostgreSQL instance from a Compute Engine VM without adding the VM's IP to an authorized networks list. Which method should they use?

A.Connect via Cloud Shell
B.Configure direct IP connection with SSL
C.Use Cloud SQL Auth Proxy
D.Set up VPC peering and use private IP
AnswerC

Cloud SQL Auth Proxy uses IAM for authentication and does not require IP allowlisting.

Why this answer

The Cloud SQL Auth Proxy is the recommended method for securely connecting to a Cloud SQL instance from a Compute Engine VM without adding the VM's IP to an authorized networks list. It uses mutual TLS (mTLS) to authenticate and encrypt traffic, and it handles IAM-based authorization, so the VM only needs the Cloud SQL Client role and outbound access to the Cloud SQL API (port 443). This avoids exposing the database to the public internet or requiring static IP management.

Exam trap

Cisco often tests the distinction between 'authorized networks' (which only apply to public IP connections) and private IP connectivity; the trap here is that candidates may assume VPC peering (Option D) is required for private access, but the Cloud SQL Auth Proxy works with both public and private IP and is the simplest way to avoid managing IP whitelists.

How to eliminate wrong answers

Option A is wrong because Cloud Shell is an interactive browser-based terminal that runs on a temporary VM; it cannot be used as a persistent connection method from a Compute Engine VM, and it still requires the Cloud Shell's ephemeral IP to be authorized. Option B is wrong because configuring a direct IP connection with SSL still requires the VM's IP address to be added to the authorized networks list, which the question explicitly states must be avoided. Option D is wrong because setting up VPC peering and using private IP is a valid approach for private connectivity, but it requires the Cloud SQL instance to be configured with a private IP and the VPC networks to be peered, which is a more complex networking setup; the question asks for the method to use without adding the VM's IP to authorized networks, and the Cloud SQL Auth Proxy is the simplest and most secure solution that works with both public and private IP configurations.

55
MCQhard

A company has an AlloyDB cluster in us-central1. They want to replicate data to a secondary region for disaster recovery with a recovery point objective (RPO) of less than 1 second. Which AlloyDB feature should they use?

A.Use AlloyDB Omni to replicate to an instance in the secondary region
B.Export the database to Cloud Storage and import in the secondary region
C.Configure a Cloud SQL for PostgreSQL read replica in the secondary region
D.Create a cross-region read replica in the secondary region
AnswerA

AlloyDB Omni supports cross-region replication for DR.

Why this answer

AlloyDB supports cross-region replication using AlloyDB Omni, which is a downloadable edition that can run on-premises or in other clouds. For cross-region DR, you can set up an AlloyDB Omni instance in another region that asynchronously replicates from the primary cluster. Note: The official AlloyDB cross-region replication uses AlloyDB Omni as the target.

This is the correct feature.

56
MCQeasy

To monitor Cloud SQL query performance, which metric should an engineer examine to see the rate of queries being executed?

A.database/disk/bytes_used
B.database/queries
C.database/memory/utilization
D.database/cpu/utilization
AnswerB

This metric shows query throughput.

Why this answer

The metric 'database/queries' tracks the number of queries executed per second. CPU/memory/disk utilization metrics are resource-oriented, not query-oriented.

57
Multi-Selecthard

An engineer is designing a disaster recovery plan for a production AlloyDB cluster. The primary cluster is in us-central1. They need a cross-region replica that can be promoted to primary in the event of a regional failure. The replica should also be able to handle read traffic in the secondary region. Which THREE steps should they take? (Choose 3.)

Select 3 answers
A.Promote the secondary cluster to primary during a disaster.
B.Configure an instance-level read pool in the secondary cluster.
C.Enable AlloyDB Omni on the secondary cluster.
D.Create a secondary cluster in us-west1 using cross-region replication from the primary cluster.
E.Add a read pool to the secondary cluster to handle read traffic.
AnswersA, D, E

Promotion is the standard DR procedure for cross-region replication.

Why this answer

AlloyDB cross-region replication is achieved by creating a secondary cluster in another region with an external read pool. The secondary cluster can be promoted for failover. Instance-level read pool does not exist; read pools are cluster-level.

AlloyDB Omni is for on-premises, not cross-region replication.

58
Multi-Selectmedium

An organization needs to secure Cloud SQL for MySQL instances. Which two measures should they implement to restrict network access? (Choose TWO.)

Select 2 answers
A.Enable SSL enforcement (require_ssl flag)
B.Use IAM database authentication
C.Assign a public IP and configure authorized networks
D.Disable automatic storage increase
E.Use Private IP (VPC-only connectivity)
AnswersA, E

SSL enforcement ensures encrypted connections and is a security measure.

Why this answer

Using Private IP restricts access to the VPC network, and enabling the 'require_ssl' flag ensures encrypted connections. IAM authentication controls user access but does not restrict network access. Public IP with authorized networks allows network access from authorized IP addresses but is still public.

VPC Service Controls can restrict access, but the option is not listed; Private IP is the correct VPC-centric method.

59
MCQmedium

A company is migrating an on-premises Oracle database to Cloud SQL for PostgreSQL. They require a deployment that supports up to 30,000 transactions per second (TPS) and provides automatic storage scaling. Which instance configuration should they choose?

A.Standard machine type with HDD and storage auto-increase enabled
B.High-memory machine type with SSD and storage auto-increase enabled
C.Custom machine type with 4 vCPUs and 15 GB memory, SSD, and storage auto-increase enabled
D.Lightweight machine type with SSD and storage auto-increase disabled
AnswerB

High-memory instances provide more memory per core, improving performance for PostgreSQL. SSD ensures low latency, and storage auto-increase prevents out-of-disk issues.

Why this answer

Cloud SQL supports storage auto-increase regardless of machine type. For high TPS, a high-memory machine type (e.g., highmem) provides more memory per CPU, which can improve performance for database workloads. SSD is required for consistent performance.

HDD is not recommended for production.

60
MCQmedium

A company is migrating an on-premises PostgreSQL database to Cloud SQL. They need to ensure minimal downtime and continuous replication during the migration. Which approach should they use?

A.Use Database Migration Service with continuous replication.
B.Use a cross-region replica from an existing Cloud SQL instance.
C.Export the database using pg_dump and import into Cloud SQL.
D.Create a Cloud SQL read replica of the on-premises database.
AnswerA

DMS supports ongoing replication with minimal downtime.

Why this answer

Database Migration Service (DMS) supports continuous replication from source to Cloud SQL using native PostgreSQL replication (logical replication). It minimizes downtime. Import/export involves downtime.

Creating a read replica from on-prem is not directly supported. Cloud SQL does not support cross-region replicas from on-prem.

61
MCQhard

You are configuring a Cloud SQL for PostgreSQL instance for high availability. The instance must have automatic failover in under 60 seconds and avoid any data loss. Which configuration meets these requirements?

A.Create a regional HA configuration with synchronous replication
B.Use Cloud Spanner instead
C.Create a zonal HA configuration with asynchronous replication
D.Add a cross-region read replica and promote it on failure
AnswerA

Regional HA uses synchronous replication and provides fast failover.

Why this answer

Regional HA configures a primary and a standby in different zones within the same region, using synchronous replication to ensure no data loss and failover in under 60 seconds.

62
Multi-Selectmedium

A company is deploying a Cloud Spanner instance for a global application. They need to minimize write latency for users in Asia, Europe, and North America while maintaining strong consistency. Which two configurations should they choose? (Choose two.)

Select 2 answers
A.Use nodes for compute capacity
B.Deploy a multi-region instance configuration
C.Use a regional instance configuration
D.Use processing units for compute capacity
E.Enable auto-scaling with a high-priority CPU target
AnswersA, B

Nodes provide dedicated resources for predictable low latency.

Why this answer

Option A is correct because nodes provide dedicated compute and storage resources in Cloud Spanner, which are necessary to achieve low write latency and high throughput for a global application. Nodes scale linearly with performance, ensuring that write operations are processed quickly across multiple regions. For a multi-region instance, nodes are the only supported compute capacity option, as processing units are limited to regional instances.

Exam trap

The trap here is that candidates often confuse regional and multi-region configurations, assuming a regional instance can serve global users with acceptable latency, or they mistakenly think processing units or auto-scaling can substitute for nodes in a multi-region setup.

63
MCQhard

A Cloud Bigtable instance has a single cluster. To improve availability and read throughput, the team decides to add a second cluster in a different zone. What is the effect on write performance?

A.Write performance remains unchanged
B.Write latency increases due to replication across clusters
C.Write throughput doubles
D.Write latency decreases because of parallel replication
AnswerB

Writes must be replicated to all clusters, so they take longer to complete.

Why this answer

In Cloud Bigtable, adding a second cluster in a different zone enables replication across clusters. Writes must be replicated to all clusters to maintain consistency, which introduces additional network round-trips and acknowledgment overhead. This increases write latency because each write must be committed to both clusters before the client receives a success response.

Exam trap

The trap here is that candidates may assume adding a second cluster improves all performance metrics, but they overlook that synchronous replication inherently increases write latency while improving read throughput and availability.

How to eliminate wrong answers

Option A is wrong because write performance does not remain unchanged; replication adds latency due to cross-zone data transfer. Option C is wrong because write throughput does not double; throughput is limited by the replication pipeline and the bottleneck of the slowest cluster. Option D is wrong because write latency increases, not decreases, due to the need for synchronous replication across clusters.

64
MCQmedium

A financial services company needs a globally distributed relational database with strong ACID transactions and high availability across regions. They anticipate unpredictable traffic spikes and need to pay only for the resources they use. Which Google Cloud database and scaling approach is most suitable?

A.Cloud SQL for PostgreSQL with cross-region replication
B.Bigtable with replication
C.Cloud Spanner with node-based scaling and manual resizing
D.Cloud Spanner with processing units and auto-scaling
AnswerD

Processing units allow fine-grained capacity, and auto-scaling adjusts to traffic automatically.

Why this answer

Cloud Spanner provides global distribution, strong consistency, and ACID transactions. With fine-grained scaling using processing units and auto-scaling, it can automatically adjust capacity based on demand, optimizing cost.

65
Multi-Selectmedium

A company is using Cloud Bigtable for real-time analytics. They want to ensure high availability and the ability to perform maintenance without downtime. They also want to reduce read latency for users in Asia. Which TWO actions should they take?

Select 2 answers
A.Add a secondary cluster in an Asian region.
B.Switch to HDD storage to reduce costs.
C.Increase the number of nodes in the existing cluster.
D.Configure an application profile to route read requests to the nearest cluster.
E.Convert to a multi-region instance.
AnswersA, D

This provides HA and lower read latency for Asian users.

Why this answer

Adding a secondary cluster in an Asian region provides regional redundancy (HA) and reduces read latency for Asian users. Application profile routing sends reads to the nearest cluster. Adding nodes to the existing cluster improves throughput but not HA or latency in Asia.

HDD storage is slower. Multi-region is not a Bigtable concept.

66
Multi-Selectmedium

An engineer is designing a Cloud Spanner instance for a global e-commerce application. They need strong consistency across continents and the ability to automatically scale compute capacity. Which THREE configurations should they choose?

Select 3 answers
A.Enable autoscaling with processing units and set min and max
B.Set a target high-priority CPU utilization for autoscaling
C.Use nodes with a fixed number
D.Use a multi-region configuration (e.g., nam3)
E.Use a regional configuration
AnswersA, B, D

Autoscaling with processing units allows automatic capacity adjustment.

Why this answer

For global strong consistency, a multi-region configuration is required (e.g., nam3, eur3). To auto-scale, you use processing units with a min and max, and set a target high-priority CPU utilization. Nodes are not used with autoscaling.

Regional configurations only cover one region. Single-region does not provide global consistency.

67
MCQmedium

A company wants to use Firestore security rules to allow users to read documents only if they are the owner (user ID matches the 'owner' field in the document). Which rule is correct?

A.allow read: if resource.data.uid == request.auth.token.email;
B.allow read: if request.auth.token.owner == resource.data.uid;
C.allow read: if request.auth.uid == 'owner';
D.allow read: if resource.data.owner == request.auth.uid;
AnswerD

This checks the authenticated user's UID against the document's owner field.

Why this answer

The correct rule uses request.auth.uid to get the authenticated user's ID and resource.data.owner to compare against the document's owner field. The 'owner' field must exist and match the user ID.

68
MCQmedium

A company is using Cloud SQL for MySQL and wants to offload read traffic to a replica for better performance. They also need the replica to be available for disaster recovery in a different region. What should they do?

A.Enable high availability on the primary instance.
B.Create a cross-region read replica in another region.
C.Create a same-region read replica and use failover.
D.Use an external replica in another region via MySQL replication.
AnswerB

A cross-region read replica provides read offloading and can be promoted for DR in another region.

Why this answer

Cross-region read replicas serve both read scaling and disaster recovery. They can be promoted to primary in a different region. Same-region replicas do not protect against regional failures.

External replicas are not necessary; Cloud SQL supports cross-region replicas natively.

69
MCQhard

A financial services company requires a globally distributed database with strong consistency and sub-10 millisecond write latency across three continents. They anticipate 50 TB of transactional data. Which Google Cloud database should they deploy?

A.Cloud Spanner multi-region configuration
B.Firestore in multi-region mode
C.Cloud Bigtable with multi-cluster replication
D.Cloud SQL with cross-region replicas
AnswerA

Spanner provides linearizable consistency, global replication, and low-latency transactions.

Why this answer

Cloud Spanner is the only Google Cloud database that provides global strong consistency, horizontal scaling, and low-latency reads and writes across regions. Multi-region configurations span continents and meet the requirements.

70
MCQeasy

An engineer needs to create a Cloud SQL for PostgreSQL instance with high availability. Which configuration ensures automatic failover in less than 60 seconds if the primary zone fails?

A.Select a regional instance with synchronous standby in a different zone.
B.Select a zonal instance with a read replica in a different zone.
C.Select a zonal instance with automatic storage increase enabled.
D.Select a cross-region replica for disaster recovery.
AnswerA

Regional HA configuration uses a synchronous standby in another zone, enabling automatic failover within 60 seconds.

Why this answer

Cloud SQL HA uses a regional instance with a synchronous standby in a different zone within the same region. Automatic failover occurs within 60 seconds. Zonal instances do not provide HA.

Cross-region replication is not supported for HA; it's used for disaster recovery.

71
MCQeasy

An engineer needs to create a Cloud SQL instance for a development environment with minimal cost. The instance will have low traffic, and storage growth is expected to be gradual. Which storage configuration should they choose?

A.Use HDD storage with storage auto-increase disabled.
B.Use SSD storage with storage auto-increase disabled.
C.Use SSD storage with storage auto-increase enabled.
D.Use HDD storage with storage auto-increase enabled.
AnswerC

SSD provides good performance at low cost for dev, and auto-increase prevents storage full issues.

Why this answer

SSD storage is recommended for most workloads due to performance, and enabling auto-increase ensures you don't run out of disk. HDD is cheaper but has much lower IOPS, which may cause performance issues even for dev. Disabling auto-increase risks downtime.

The smallest disk size with SSD and auto-increase is cost-effective.

72
MCQmedium

A company uses Cloud Bigtable for time-series data. They notice uneven load distribution across nodes causing hot spots. Which tool should they use to identify the hot spots?

A.Cloud Monitoring dashboards
B.Cloud Bigtable Key Visualiser
C.cbt command-line tool
D.Cloud Logging
AnswerB

Key Visualiser provides a heatmap of row access patterns to identify hot spots.

Why this answer

Cloud Bigtable Key Visualiser graphically shows read/write heatmaps to identify hot spots. Monitoring dashboards show metrics but not specific hot spots. cbt tool is CLI, not visual. Cloud Logging records operations but doesn't visualize load distribution.

73
Multi-Selectmedium

A company uses AlloyDB for PostgreSQL and needs to scale read traffic automatically. They also want to ensure the database remains available if the primary zone fails. Which two features should they use? (Choose two.)

Select 2 answers
A.Deploy AlloyDB Omni on-premises
B.Use a single-zone cluster and rely on read replicas for HA
C.Configure the cluster as a regional cluster with high availability
D.Enable cross-region replication
E.Create a read pool instance with autoscaling enabled
AnswersC, E

Regional HA provides standby in another zone for failover.

Why this answer

Read pool instances provide auto-scaling read replicas, and regional cluster with HA provides automatic failover across zones.

74
MCQhard

An engineer is deploying a Cloud Spanner instance for a global application that requires strong consistency across continents. The workload is moderate, and they want to minimize costs while meeting latency requirements. Which instance configuration should they choose?

A.Dual-region configuration with 500 processing units
B.Multi-region configuration with 1000 nodes
C.Regional configuration with 100 processing units
D.Multi-region configuration with 500 processing units
AnswerA

Dual-region offers synchronous replication across two regions (e.g., US and Europe) with strong consistency, and is more cost-effective than multi-region for moderate workloads.

Why this answer

Multi-region configurations provide strong global consistency and high availability across continents, but are expensive. Dual-region offers synchronous replication across two regions, a cost-effective option for moderate workloads needing strong consistency across two geographic areas. Regional is single-region, not global.

Multi-region with 1000 nodes is overkill.

75
MCQhard

An engineering team is designing an AlloyDB cluster for an e-commerce platform. They anticipate variable read traffic and want to automatically add or remove read-only compute capacity based on CPU utilization. Which feature should they enable?

A.Enable query distribution across read pool instances.
B.Read pool autoscaling
C.Configure a managed instance group for the read pool.
D.Set up Cloud SQL read replicas with cross-region replication.
AnswerB

AlloyDB read pools support autoscaling based on CPU utilization, adding or removing instances as needed.

Why this answer

AlloyDB’s read pool autoscaling automatically adjusts the number of read pool instances based on metrics like CPU utilization. Query distribution is built-in, but autoscaling is the specific feature for capacity changes. Instance groups are a Compute Engine concept.

Read replicas in Cloud SQL are not automatically scaled.

Page 1 of 2 · 99 questions totalNext →

Ready to test yourself?

Try a timed practice session using only Pcd Deploy Databases questions.