PrepIQ ACA CloudNative ACA Cloud Native Ultimate Exam, Exams of Technology

This package focuses on cloud-native technologies such as microservices, containers, Kubernetes, and DevOps practices. Includes hands-on concepts and practice exams.

Typology: Exams

2025/2026

Available from 04/23/2026

shilpi-jain-3
shilpi-jain-3 🇮🇳

2.5

(11)

80K documents

1 / 102

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
PrepIQ ACA CloudNative ACA Cloud
Native Ultimate Exam
**Question 1.** Which of the following best describes the CNCF definition of
a cloud-native application?
A) An application that runs on virtual machines only
B) An application built using microservices, containers, and immutable
infrastructure
C) An on-premises monolithic system migrated to the cloud without changes
D) An application that only uses serverless functions
Answer: B
Explanation: CNCF defines cloud-native as applications designed using
microservices, containers, immutable infrastructure, and declarative APIs to
enable scalability and resilience.
**Question 2.** In the Twelve-Factor App methodology, which factor
emphasizes that configuration that varies between deploys should be stored
in the environment?
A) Codebase
B) Dependencies
C) Config
D) Dev/prod parity
Answer: C
Explanation: Factor 3 (Config) states that an app’s configuration should be
stored in environment variables, keeping code identical across environments.
**Question 3.** Which principle of microservices architecture encourages
each service to own its own data store?
A) Single Responsibility Principle
pf3
pf4
pf5
pf8
pf9
pfa
pfd
pfe
pff
pf12
pf13
pf14
pf15
pf16
pf17
pf18
pf19
pf1a
pf1b
pf1c
pf1d
pf1e
pf1f
pf20
pf21
pf22
pf23
pf24
pf25
pf26
pf27
pf28
pf29
pf2a
pf2b
pf2c
pf2d
pf2e
pf2f
pf30
pf31
pf32
pf33
pf34
pf35
pf36
pf37
pf38
pf39
pf3a
pf3b
pf3c
pf3d
pf3e
pf3f
pf40
pf41
pf42
pf43
pf44
pf45
pf46
pf47
pf48
pf49
pf4a
pf4b
pf4c
pf4d
pf4e
pf4f
pf50
pf51
pf52
pf53
pf54
pf55
pf56
pf57
pf58
pf59
pf5a
pf5b
pf5c
pf5d
pf5e
pf5f
pf60
pf61
pf62
pf63
pf64

Partial preview of the text

Download PrepIQ ACA CloudNative ACA Cloud Native Ultimate Exam and more Exams Technology in PDF only on Docsity!

Native Ultimate Exam

Question 1. Which of the following best describes the CNCF definition of a cloud-native application? A) An application that runs on virtual machines only B) An application built using microservices, containers, and immutable infrastructure C) An on-premises monolithic system migrated to the cloud without changes D) An application that only uses serverless functions Answer: B Explanation: CNCF defines cloud-native as applications designed using microservices, containers, immutable infrastructure, and declarative APIs to enable scalability and resilience. Question 2. In the Twelve-Factor App methodology, which factor emphasizes that configuration that varies between deploys should be stored in the environment? A) Codebase B) Dependencies C) Config D) Dev/prod parity Answer: C Explanation: Factor 3 (Config) states that an app’s configuration should be stored in environment variables, keeping code identical across environments. Question 3. Which principle of microservices architecture encourages each service to own its own data store? A) Single Responsibility Principle

Native Ultimate Exam

B) Database per Service C) Service Mesh D) API Gateway Answer: B Explanation: “Database per Service” ensures loose coupling by preventing services from sharing a common database, allowing independent evolution. Question 4. What is the primary benefit of Infrastructure as Code (IaC) in a cloud-native environment? A) Manual configuration of servers B) Faster hardware provisioning only C) Version-controlled, repeatable infrastructure deployments D) Reducing network latency Answer: C Explanation: IaC enables infrastructure to be defined in code, stored in version control, and reproduced consistently across environments. Question 5. Which of the following is NOT a core pillar of cloud-native computing? A) Containers B) Microservices C) Monolithic Architecture D) Declarative APIs Answer: C

Native Ultimate Exam

B) Cloud-ready apps are simply lifted-and-shifted without redesign. C) Cloud-native apps require no containerization. D) Cloud-ready apps are always serverless. Answer: B Explanation: Cloud-ready (or lift-and-shift) apps run in the cloud without architectural changes, whereas cloud-native apps are built specifically for cloud benefits. Question 9. In Docker architecture, which component is responsible for building images from a Dockerfile? A) Docker Daemon B) Docker Client C) Docker Registry D) Docker Engine Answer: A Explanation: The Docker Daemon (dockerd) performs the build process, reading the Dockerfile and creating image layers. Question 10. Which Dockerfile instruction creates a new layer that adds files from the host into the image? A) RUN B) COPY C) FROM D) EXPOSE Answer: B

Native Ultimate Exam

Explanation: COPY copies files/directories from the build context into the image, creating a new layer. Question 11. What is the effect of ordering Dockerfile instructions from least-changing to most-changing? A) Increases image size B) Reduces build cache efficiency C) Maximizes layer reuse and speeds up rebuilds D) Prevents multi-stage builds Answer: C Explanation: Placing stable commands early (e.g., installing OS packages) allows Docker to cache those layers, so later changes don’t invalidate the entire build. Question 12. Which command removes a stopped container named “webapp”? A) docker delete webapp B) docker rm webapp C) docker stop webapp D) docker rmi webapp Answer: B Explanation: docker rm removes containers; docker rmi removes images. Question 13. In Docker networking, which mode allows a container to share the host’s network stack? A) bridge

Native Ultimate Exam

Explanation: ACR is a private registry service for storing, scanning, and pulling container images in Alibaba Cloud. Question 16. Which Kubernetes component stores the cluster’s desired state in a consistent key-value store? A) kube-proxy B) etcd C) kubelet D) controller-manager Answer: B Explanation: etcd is a distributed, strongly consistent key-value store used by Kubernetes to persist cluster configuration. Question 17. In the Kubernetes control plane, which component validates and configures the API objects submitted to the API server? A) Scheduler B) Controller Manager C) etcd D) Kube-proxy Answer: B Explanation: The Controller Manager runs controllers that watch the API server’s state and ensure the actual state matches the desired state. Question 18. Which worker-node component is responsible for ensuring that containers described in a PodSpec are running? A) kube-proxy

Native Ultimate Exam

B) kubelet C) container runtime D) scheduler Answer: B Explanation: kubelet monitors the API server for pod specifications and interacts with the container runtime to launch containers. Question 19. What does the Kubernetes Service type “LoadBalancer” provide? A) Direct node access via a static port B) An internal cluster-only IP C) An external IP provisioned by the cloud provider for traffic distribution D) No networking at all Answer: C Explanation: LoadBalancer creates a cloud provider-managed external load balancer that forwards traffic to the service’s pods. Question 20. Which Kubernetes object is best suited for running a batch job that must complete exactly once? A) Deployment B) StatefulSet C) Job D) DaemonSet Answer: C

Native Ultimate Exam

B) Host-based routing and TLS termination C) NodePort allocation D) Direct pod IP exposure Answer: B Explanation: Ingress controllers operate at HTTP/HTTPS level, offering host/path routing, TLS termination, and other L7 capabilities. Question 24. In Kubernetes, ConfigMaps are primarily used for: A) Storing secret credentials B) Managing non-confidential configuration data C) Defining pod security policies D) Scaling workloads Answer: B Explanation: ConfigMaps hold key-value pairs or configuration files that are not sensitive, allowing pods to consume them as environment variables or files. Question 25. Which Kubernetes resource should be used to store database passwords securely? A) ConfigMap B) Secret C) PersistentVolumeClaim D) Service Answer: B

Native Ultimate Exam

Explanation: Secrets are base64-encoded objects intended for sensitive data; they can be mounted as files or exposed as environment variables. Question 26. What does the Alibaba Cloud ACK “Serverless (ASK)” mode eliminate for users? A) Need for container images B) Management of worker nodes (ECS instances) C) Use of Kubernetes API D) Ability to run stateful workloads Answer: B Explanation: ASK (Alibaba Serverless Kubernetes) runs pods on Elastic Container Instances (ECI), so users do not manage underlying nodes. Question 27. Which ACK cluster type is designed for edge computing scenarios? A) Managed Cluster B) Serverless (ASK) C) Edge Cluster D) Hybrid Cluster Answer: C Explanation: ACK Edge extends Kubernetes to edge devices, enabling low-latency processing close to data sources. Question 28. In ACK, what is the role of Terway? A) A logging service B) A container runtime

Native Ultimate Exam

Question 31. Which component automatically adds or removes ECS instances to maintain the desired pod count in an ACK cluster? A) Cluster Autoscaler B) Horizontal Pod Autoscaler C) Vertical Pod Autoscaler D) Node Autoscaler Answer: A Explanation: Cluster Autoscaler monitors pod scheduling failures and scales the underlying node pool accordingly. Question 32. What is the primary purpose of Alibaba Cloud Log Service (SLS) for containers? A) To provision storage volumes B) To collect, store, and analyze container logs C) To manage network policies D) To orchestrate containers Answer: B Explanation: SLS aggregates logs from containers, providing search, alerting, and visualization capabilities. Question 33. Which Alibaba Cloud service offers a managed Prometheus- compatible monitoring solution for ACK clusters? A) CloudMonitor B) Log Service C) Managed Prometheus Service

Native Ultimate Exam

D) DataV Answer: C Explanation: Managed Prometheus Service provides a fully managed Prometheus stack integrated with ACK for metrics collection and alerting. Question 34. Which security feature isolates ACK worker nodes at the network level? A) RAM roles B) Security Groups attached to VPC C) IAM users D) KMS keys Answer: B Explanation: Security Groups define inbound/outbound firewall rules for ECS instances (worker nodes) within a VPC, providing network isolation. Question 35. In Kubernetes RBAC, which resource defines permissions granted to a set of users or service accounts? A) RoleBinding B) ServiceAccount C) ClusterRole D) Namespace Answer: C Explanation: ClusterRole (or Role) specifies a set of permissions; RoleBinding/ClusterRoleBinding assigns those permissions to subjects.

Native Ultimate Exam

Answer: B Explanation: Cloud-native migration best practice is to decompose the monolith into microservices, containerize them, and then orchestrate with ACK. Question 39. Which Alibaba Cloud DevOps tool integrates with ACK for CI/CD pipelines? A) Apsara DevOps B) Elastic Compute Service C) DataWorks D) Quick BI Answer: A Explanation: Apsara DevOps provides pipeline orchestration, code repository, and deployment integration with ACK. Question 40. In a multi-cluster ACK deployment, which feature helps synchronize resources across clusters? A) Cluster Autoscaler B) Multi-Cluster Management (MCM) C) Horizontal Pod Autoscaler D) VPC Peering Answer: B Explanation: Multi-Cluster Management allows centralized control, policy propagation, and workload federation across multiple ACK clusters.

Native Ultimate Exam

Question 41. Which of the following Dockerfile best practices reduces image size? A) Use ADD instead of COPY for all files B) Install unnecessary packages for debugging C) Use a minimal base image like alpine D) Combine multiple RUN statements into separate layers Answer: C Explanation: Minimal base images contain fewer libraries, leading to smaller final images; alpine is a common choice. Question 42. What does the Docker --rm flag do when running a container? A) Restarts the container automatically B) Removes the container after it exits C) Removes the image after container exit D) Runs the container in privileged mode Answer: B Explanation: --rm tells Docker to delete the container filesystem once the container stops. Question 43. Which Docker networking driver enables containers on different hosts to communicate directly? A) bridge B) host C) overlay D) none

Native Ultimate Exam

Question 46. What does the kubectl rollout status deployment/myapp command display? A) Current number of nodes in the cluster B) Detailed logs of all pods C) Progress of the latest Deployment rollout, indicating success or failure D) The YAML definition of the deployment Answer: C Explanation: rollout status reports the state of a Deployment’s rollout, showing whether the update has completed. Question 47. In ACK, which storage class would you select to provision an SSD-backed block volume? A) alicloud-disk-standard B) alicloud-nas C) alicloud-oss D) alicloud-disk-ssd Answer: D Explanation: alicloud-disk-ssd is the storage class that provisions high-performance SSD block disks. Question 48. Which of the following metrics is NOT natively collected by the Kubernetes Metrics Server? A) CPU usage per pod B) Memory usage per pod C) Disk I/O per pod D) Node CPU usage

Native Ultimate Exam

Answer: C Explanation: Metrics Server provides CPU and memory usage; detailed disk I/O requires additional exporters like node-exporter. Question 49. What is the effect of setting spec.strategy.type: Recreate in a Deployment? A) Pods are updated one at a time while keeping the old ones running B) All existing pods are terminated before new ones are created C) No rolling update is performed, only scaling occurs D) The deployment creates a new namespace Answer: B Explanation: Recreate strategy deletes all current pods before creating the new version, causing downtime during the transition. Question 50. Which of the following is a key advantage of using a sidecar container pattern? A) It eliminates the need for ConfigMaps B) It allows auxiliary functionality (e.g., logging, proxy) to be added without modifying the main application container C) It reduces the number of pods in the cluster D) It provides automatic load balancing across services Answer: B Explanation: Sidecars run alongside the main container in the same pod, providing supplemental capabilities while keeping the primary container unchanged.