ExpertMinds LogoExpertMinds
Hard1 markMultiple Choice
Domain 3.2: Deploying and implementing GKE resourcesDomain 3.2GKECloud LoggingMonitoring

GCP ACE · Question 24 · Domain 3.2: Deploying and implementing GKE resources

You are configuring a new GKE Standard cluster. Your security team requires that all logs from the Kubernetes control plane (API server, scheduler) and all logs from the application containers running in the pods are sent to Cloud Logging.

Which TWO logging components must be enabled in the cluster configuration? (Select TWO)

Answer options:

A.

System logging

B.

Audit logging

C.

Workload logging

D.

VPC Flow Logs

E.

Cloud Trace

How to approach this question

Identify the specific GKE logging categories in Cloud Operations (formerly Stackdriver).

Full Answer

In GKE, Cloud Logging integration is divided into categories. 'System logging' captures logs from the Kubernetes control plane and node services. 'Workload logging' captures the logs generated by your containerized applications (stdout/stderr from pods). Both must be enabled to meet the requirement.

Common mistakes

Selecting Audit logging, which is for tracking API calls (who did what), not for capturing application output.
23All questions25

Practice the full GCP Associate Cloud Engineer Practice Exam 3

50 questions · hints · full answers · grading

Sign up freeTake the exam

More questions from this exam

Q01You are starting a new project in Google Cloud and need to create a new GCP project and enable th...EasyQ02A new team member has joined your operations team. They need to be able to view all Compute Engin...MediumQ03Your company is migrating to Google Cloud. You currently manage all employee identities in an on-...MediumQ04Your development team is experimenting with new GCP services in a sandbox project. The finance te...MediumQ05Your company wants to perform complex, custom SQL analysis on their Google Cloud billing data to ...Easy
View all 50 questions →