Google Exam Associate Cloud Engineer Topic 4 Question 65 Discussion

Actual exam question for Google's Associate Cloud Engineer exam

Question #: 65
Topic #: 4

[All Associate Cloud Engineer Questions]

You are deploying an application on Google Cloud that requires a relational database for storage. To satisfy your company's security policies, your application must connect to your database through an encrypted and authenticated connection that requires minimal management and integrates with Identity and Access Management (IAM). What should you do?

ADeploy a Cloud SQL database with the SSL mode set to encrypted only, configure SSL/TLS client certificates, and configure a database user and password.

BDeploy a Cloud SOL database and configure IAM database authentication. Access the database through the Cloud SQL Auth Proxy.

CDeploy a Cloud SQL database with the SSL mode set to encrypted only, configure SSL/TLS client certificates, and configure IAM database authentication.

DDeploy a Cloud SQL database and configure a database user and password. Access the database through the Cloud SQL Auth Proxy.

Show Suggested Answer

Suggested Answer: D

as the instances (normal or preemptible) would be terminated and relaunched if the health check fails either due to application not configured properly or the instances firewall do not allow health check to happen.

GCP provides health check systems that connect to virtual machine (VM) instances on a configurable, periodic basis. Each connection attempt is called a probe. GCP records the success or failure of each probe.

Health checks and load balancers work together. Based on a configurable number of sequential successful or failed probes, GCP computes an overall health state for each VM in the load balancer. VMs that respond successfully for the configured number of times are considered healthy. VMs that fail to respond successfully for a separate number of times are unhealthy.

GCP uses the overall health state of each VM to determine its eligibility for receiving new requests. In addition to being able to configure probe frequency and health state thresholds, you can configure the criteria that define a successful probe.

by Jutta at Feb 26, 2023, 07:23 PM

Limited Time Offer

25%

Off

Get Premium Associate Cloud Engineer Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Elke

1 months ago

Haha, I bet the correct answer is C. It's like the Goldilocks of options - not too hot, not too cold, just right!

upvoted 0 times

...

Margurite

1 months ago

D is a bit too basic for this scenario. You need more security than just a database user and password.

upvoted 0 times

...

Odelia

1 months ago

I'm torn between B and C. Both use IAM authentication, but C provides the added layer of SSL/TLS encryption. Hmm, tough choice.

upvoted 0 times

Avery

10 days ago

User1: I think option C is the way to go. It has both IAM authentication and SSL/TLS encryption.

upvoted 0 times

...

3 months ago

I think the answer is A. It mentions configuring SSL/TLS client certificates which sounds secure.

upvoted 0 times

...