PROFESSIONAL-CLOUD-SECURITY-ENGINEER · Question #346
PROFESSIONAL-CLOUD-SECURITY-ENGINEER Question #346: Real Exam Question with Answer & Explanation
The correct answer is A: Configure node auto-upgrades for node pools in the maintenance windows.. Configuring node auto-upgrades for GKE node pools within maintenance windows automates patch application reliably and at scale, ensuring critical updates are installed without manual intervention. This cloud-native feature reduces operational overhead and aligns with best practic
Question
Your organization deploys a large number of containerized applications on Google Kubernetes Engine (GKE). Node updates are currently applied manually. Audit findings show that a critical patch has not been installed due to a missed notification. You need to design a more reliable, cloud-first, and scalable process for node updates. What should you do?
Options
- AConfigure node auto-upgrades for node pools in the maintenance windows.
- BDevelop a custom script to continuously check for patch availability, download patches, and apply
- CMigrate the cluster infrastructure to a self-managed Kubernetes environment for greater control
- DSchedule a daily reboot for all nodes to automatically upgrade.
Explanation
Configuring node auto-upgrades for GKE node pools within maintenance windows automates patch application reliably and at scale, ensuring critical updates are installed without manual intervention. This cloud-native feature reduces operational overhead and aligns with best practices for managing Kubernetes clusters on Google Cloud.
Topics
Community Discussion
No community discussion yet for this question.