Question-30:An environment for testing that is designed to be an identical replica of a production setting is referred to as a stage, staging, or pre-production environment. It attempts to simulate a real-world production setting as accurately as possible and may establish connections to various production-related services, data, and resources, such as databases. Mountkirk Games wants to come up with a technique that is both repeatable and adjustable in order to deploy isolated application environments. Both developers and testers have access to each other's environments and resources, but neither group can access resources in the staging or production environments. The staging environment must have access to certain services that are produced in the live environment. What steps should you take to separate the staging and production environments from the development environments?
A. Develop a separate project for staging and production, in addition to the one used for development and testing.
B. Establish a separate network for staging and production, in addition to the one used for development and testing.
C. Establish two distinct subnetworks: one for the development stage, and the other for the staging and production phases.
D. Make three separate projects: one for the development stage, one for the staging stage, and one for production.
Correct Answer
Get All 340 Questions and Answer for Google Professional Cloud Architect
: 4 Explanation: The staging environment needs access to production, not the other way around. Option-1 could allow staging and production to access each other. In answer Option-4 , staging and production are in different projects, you can limit the access from either side. So Option-4 is correct. End goal is to separate dev from staging/production. Putting staging/production in the same project fits the requirements. Further effort would be required to change access between Staging and Production projects that is out of scope of question. It is not best practice, but fits the requirements of the question. Google recommends using shared VPC and creating separate projects for different environments. Staging and Prod EnV should be connected to one VCP in Shared VPC thus they are in separate projects but that they can communicate with each other securely and efficiently using internal IPs from that network. The key is The staging environment needs access to some services from production. They do not need access to all services. Following GCP best practices (assign less privileges), a separate project per team would be the best option.