ExpertHard1 markMultiple Choice
GCP PCA · Question 41 · Domain 2: Managing and Provisioning a Solution Infrastructure
You are configuring a Google Kubernetes Engine (GKE) cluster. The security team requires that pods must not run as the root user, and that the cluster must automatically scale the number of nodes based on resource requests. Which TWO features should you configure? (Select TWO)
You are configuring a Google Kubernetes Engine (GKE) cluster. The security team requires that pods must not run as the root user, and that the cluster must automatically scale the number of nodes based on resource requests. Which TWO features should you configure? (Select TWO)
Answer options:
A.
Enable PodSecurity admission controller to enforce restricted policies.
B.
Enable Horizontal Pod Autoscaler (HPA).
C.
Enable Cluster Autoscaler on the node pools.
D.
Configure Workload Identity.
E.
Enable Binary Authorization.
How to approach this question
Identify the Kubernetes feature that restricts pod privileges, and the GCP feature that scales nodes.
Full Answer
Enable PodSecurity admission controller to enforce restricted policies.
Enable Cluster Autoscaler on the node pools.
To prevent pods from running as root, you must enforce security standards at the cluster level using the PodSecurity admission controller (Option A). To automatically scale the underlying infrastructure (nodes) when pods cannot be scheduled due to lack of resources, you must enable the GKE Cluster Autoscaler (Option C).
Common mistakes
Selecting HPA (B). HPA scales pods. The prompt specifically asks to scale the 'number of nodes'.
Practice the full GCP Professional Cloud Architect Practice Exam 4
50 questions · hints · full answers · grading
More questions from this exam
Q01CASE STUDY: TechStream Gaming
Overview: 500 employees, $100M revenue. On-prem US/EU, 200 servers...MediumQ02CASE STUDY: TechStream Gaming
Overview: 500 employees, $100M revenue. On-prem US/EU, 200 servers...MediumQ03CASE STUDY: TechStream Gaming
Overview: 500 employees, $100M revenue. On-prem US/EU, 200 servers...HardQ04CASE STUDY: TechStream Gaming
Overview: 500 employees, $100M revenue. On-prem US/EU, 200 servers...HardQ05CASE STUDY: TechStream Gaming
Overview: 500 employees, $100M revenue. On-prem US/EU, 200 servers...Easy