Independence Day Deal! Unlock 25% OFF Today – Limited-Time Offer - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

Google Exam Professional Cloud DevOps Engineer Topic 2 Question 71 Discussion

Actual exam question for Google's Professional Cloud DevOps Engineer exam
Question #: 71
Topic #: 2
[All Professional Cloud DevOps Engineer Questions]

Your organization wants to implement Site Reliability Engineering (SRE) culture and principles. Recently, a service that you support had a limited outage. A manager on another team asks you to provide a formal explanation of what happened so they can action remediations. What should you do?

Show Suggested Answer Hide Answer
Suggested Answer: A

The correct answer is D. Grant the logging.logWriter and monitoring.metricWriter roles to the Compute Engine service accounts.

According to the Google Cloud documentation, the Compute Engine service account is a Google-managed service account that is automatically created when you enable the Compute Engine API1. This service account is used by default to run your Compute Engine instances and access other Google Cloud services on your behalf1. To ensure that monitoring metrics and logs for the instances are visible in Cloud Logging and Cloud Monitoring, you need to grant the following IAM roles to the Compute Engine service account23:

The logging.logWriter role allows the service account to write log entries to Cloud Logging4.

The monitoring.metricWriter role allows the service account to write custom metrics to Cloud Monitoring5.

These roles grant the minimum permissions that are needed for logging and monitoring, following the principle of least privilege. The other roles are either unnecessary or too broad for this purpose. For example, the logging.editor role grants permissions to create and update logs, log sinks, and log exclusions, which are not required for writing log entries6. The logging.admin role grants permissions to delete logs, log sinks, and log exclusions, which are not required for writing log entries and may pose a security risk if misused. The monitoring.editor role grants permissions to create and update alerting policies, uptime checks, notification channels, dashboards, and groups, which are not required for writing custom metrics.


Service accounts, Service accounts. Setting up Stackdriver Logging for Compute Engine, Setting up Stackdriver Logging for Compute Engine. Setting up Stackdriver Monitoring for Compute Engine, Setting up Stackdriver Monitoring for Compute Engine. Predefined roles, Predefined roles. Predefined roles, Predefined roles. Predefined roles, Predefined roles. [Predefined roles], Predefined roles. [Predefined roles], Predefined roles.

by Pansy at Jun 29, 2024, 06:10 AM

Limited Time Offer

25%

Off

Get Premium Professional Cloud DevOps Engineer Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Delsie
1 months ago
I'm all about that transparency life, so I'm going with option B. The more we share, the more we can learn and improve as a team. Plus, it'll make the manager feel extra special.
upvoted 0 times
Yoko
20 days ago
Option B: Provide a detailed incident report to the manager, including root cause analysis and steps taken for resolution.
upvoted 0 times
...
...
Emilio
2 months ago
Well, well, well... looks like we've got a real 'Postmortem Picasso' on our hands! I wonder if they'll let us include the blooper reel too?
upvoted 0 times
Meghan
16 days ago
Collaborate with the team to implement preventive measures to avoid similar incidents in the future.
upvoted 0 times
...
Dominic
19 days ago
Include the necessary technical details and root cause analysis in the report.
upvoted 0 times
...
Trinidad
1 months ago
Acknowledge the request and agree to provide a detailed postmortem report.
upvoted 0 times
...
...
Eva
2 months ago
Option A sounds like the safest bet. I don't want to publicly call out individuals or share sensitive information. Sharing the postmortem with the manager is more prudent.
upvoted 0 times
Willis
10 days ago
Option A is definitely the way to go in this situation.
upvoted 0 times
...
Kris
11 days ago
It's important to focus on the facts and learnings from the outage.
upvoted 0 times
...
Cristina
1 months ago
I agree, sharing the postmortem with the manager is the best approach.
upvoted 0 times
...
...
Barbra
2 months ago
I'm leaning towards option D. Putting the details out there, including the responsible parties, will show accountability and ensure proper follow-through on the action items.
upvoted 0 times
...
Stefany
2 months ago
Hmm, I think option B is the way to go. Sharing the postmortem on the engineering portal will promote transparency and help the whole team learn from this incident.
upvoted 0 times
Jesusa
18 days ago
Let's make sure to document everything in the postmortem report.
upvoted 0 times
...
Vesta
1 months ago
It's important for everyone to learn from this incident.
upvoted 0 times
...
Hana
1 months ago
We should definitely promote transparency within the team.
upvoted 0 times
...
Gabriele
2 months ago
I agree, sharing the postmortem on the engineering portal is a good idea.
upvoted 0 times
...
...
Delisa
2 months ago
I disagree. I think we should go with option A and share the postmortem with the manager only. It's more efficient and keeps the information contained within the relevant team.
upvoted 0 times
...
Janna
2 months ago
I agree with Kimberlie. It's important for everyone in the engineering organization to have visibility into what happened and the actions being taken to prevent it in the future.
upvoted 0 times
...
Kimberlie
2 months ago
I think we should choose option B. Sharing the postmortem on the engineering organization's document portal will promote transparency and accountability.
upvoted 0 times
...
Asuncion
2 months ago
I prefer option D. Including the list of people responsible and action items for each person will ensure accountability and ownership of the issues.
upvoted 0 times
...
Phyliss
2 months ago
I agree with Muriel. It's important for everyone in the organization to learn from incidents and work together to prevent future outages.
upvoted 0 times
...
Muriel
3 months ago
I think we should choose option B. Sharing it on the engineering organization's document portal will promote transparency and accountability.
upvoted 0 times
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77