Imagine you're on a team developing a containerized application for deployment on GKE. The application, which handles sensitive user data, is set to run on a five-node cluster within a single region. There's a critical requirement to ensure sensitive data is excluded from logs before they're sent to Cloud Logging. Which option best fulfills this requirement?

Real Exam

Enable Cloud Operations in GKE Select System monitoring only (Logging disabled).

Deploy a custom FluentD daemonset to the cluster that filters out the sensitive information, so it is not logged

Enable Cloud Operations in GKE Select System and workload logging and monitoring

Deploy a custom FluentD deployment to the cluster that filters out the sensitive information, so it is not logged

Enable Cloud Operations in GKE Select Legacy logging and monitoring.

Google Professional Cloud DevOps Engineer