Preparing for Google Cloud Platform - Associate Cloud Engineer

Review By: Mukesh Sharma



Expiry Month


Expiry Year


Time taken to Prepare

120 Days

Resources Used

  • Udemy and GCP platfrom (please see detailed review)

Detailed Review Of Preparation

My Google ACE Certificate Link

My Google ACE Badge Link


The below courses are part of Coursera Specialization - Architecting with Google Compute Engine Specialization


Coursera Course

My Completion Certificate

Google Cloud Platform Fundamentals: Core Infrastructure


Coursera Completion – GCP Core Infrastructure

Essential Google Cloud Infrastructure: Foundation


Coursera Completion – GCP Foundation

Essential Google Cloud Infrastructure: Core Services

Course Completion – Core Services

Elastic Google Cloud Infrastructure: Scaling and Automation

Course Completion – Scaling & Automation

Reliable Google Cloud Infrastructure: Design and Process


Coursera Completion – Design & Process

Preparing for the Google Associate Cloud Engineer Exam

Preparing for the Google ACE


I will request you to take a look at a recent blog by Mohamed Ismail’s blog here – How did I pass my Google ACE!!

I want to mention one thing right away that I feel there is no course available in the market that can really prepare you for the exam. I would compare GCP ACE exam with the same difficulty level of AWS SysOps Administrator exam only with a lot of complete Kubernetes Scenario.

Apart from the intense amounts of the links that follow, I used the following sometimes on a daily basis to check and recheck if Google’s documentation was accurate ???? (IKR…)


Here are some helpful official links for Google ACE:

·         Associate Cloud Engineer certification main information page

·         Associate Cloud Engineer practice exam

·         Google Cloud main documentation page


Associate Cloud Engineer certification exam guide

I have reproduced this section from cloud engineer documentation guide. The main thing is to practice each section as much as possible and ensure that you ask following questions and either document the answer or if you are not sure please ask the certification community or add a question in the comments section below:

  • 1.       While provisioning any resource can you share the resource across projects, if yes, how will you do it (creating default custom role/service count) versus an IAM policy?
  • 2.       Is this resource global/regional or zonal and again can you share the resource type based on what kind it is across projects/organizations etc.
  • 3.       As always, remember there are small hints in the question itself so always use the process of elimination if you do not know the answer at all.

GCP Cloud Engineer Guide
1. Setting up a cloud solution environment

1.1 Setting up cloud projects and accounts. Activities include:

·         Creating projects

·         Assigning users to predefined IAM roles within a project

·         Managing users in Cloud Identity (manually and automated)

·         Enabling APIs within projects and sharing provisioned services across projects.

·         Provisioning one or more Stackdriver workspaces

How would you configure a single workspace for VM’s running in multiple projects/across projects?

1.2 Managing billing configuration. Activities include:

·         Creating one or more billing accounts

Managing resources in a project across multiple departments in an organization

Managing billing in an organization across multiple departments using projects.

·         Linking projects to a billing account

Understand creating multiple billing accounts in an organization or se

·         Establishing billing budgets and alerts

·         Setting up billing exports to estimate daily/monthly charges

Analyzing billing data by creating billing sink to BigQuery.

1.3 Installing and configuring the command line interface (CLI), specifically the Cloud SDK (e.g., setting the default project).


2. Planning and configuring a cloud solution

2.1 Planning and estimating GCP product use using the Pricing Calculator

2.2 Planning and configuring compute resources. Considerations include:

  • Selecting appropriate compute choices for a given workload (e.g., Compute Engine, Google Kubernetes Engine, App Engine, Cloud Run, Cloud Functions)
  • Using preemptible VMs and custom machine types as appropriate

2.3 Planning and configuring data storage options. Considerations include:

  • Product choice (e.g., Cloud SQL, BigQuery, Cloud Spanner, Cloud Bigtable)
  • Choosing storage options (e.g., Standard, Nearline, Coldline, Archive)

2.4 Planning and configuring network resources. Tasks include:

  • Differentiating load balancing options
  • Identifying resource locations in a network for availability
  • Configuring Cloud DNS


3. Deploying and implementing a cloud solution

3.1 Deploying and implementing Compute Engine resources. Tasks include:

  • Launching a compute instance using Cloud Console and Cloud SDK (gcloud) (e.g., assign disks, availability policy, SSH keys)
  • Creating an autoscaled managed instance group using an instance template
  • Generating/uploading a custom SSH key for instances
  • Configuring a VM for Stackdriver monitoring and logging
  • Assessing compute quotas and requesting increases
  • Installing the Stackdriver Agent for monitoring and logging

3.2 Deploying and implementing Google Kubernetes Engine resources. Tasks include:

  • Deploying a Google Kubernetes Engine cluster
  • Deploying a container application to Google Kubernetes Engine using pods
  • Configuring Google Kubernetes Engine application monitoring and logging

3.3 Deploying and implementing App Engine, Cloud Run, and Cloud Functions resources. Tasks include, where applicable:

  • Deploying an application, updating scaling configuration, versions, and traffic splitting
  • Deploying an application that receives Google Cloud events (e.g., Cloud Pub/Sub events, Cloud Storage object change notification events)

3.4 Deploying and implementing data solutions. Tasks include:

  • Initializing data systems with products (e.g., Cloud SQL, Cloud Datastore, BigQuery, Cloud Spanner, Cloud Pub/Sub, Cloud Bigtable, Cloud Dataproc, Cloud Dataflow, Cloud Storage)
  • Loading data (e.g., command line upload, API transfer, import/export, load data from Cloud Storage, streaming data to Cloud Pub/Sub)

3.5 Deploying and implementing networking resources. Tasks include:

  • Creating a VPC with subnets (e.g., custom-mode VPC, shared VPC)
  • Launching a Compute Engine instance with custom network configuration (e.g., internal-only IP address, Google private access, static external and private IP address, network tags)
  • Creating ingress and egress firewall rules for a VPC (e.g., IP subnets, tags, service accounts)
  • Creating a VPN between a Google VPC and an external network using Cloud VPN
  • Creating a load balancer to distribute application network traffic to an application (e.g., Global HTTP(S) load balancer, Global SSL Proxy load balancer, Global TCP Proxy load balancer, regional network load balancer, regional internal load balancer)

3.6 Deploying a solution using Cloud Marketplace. Tasks include:

  • Browsing Cloud Marketplace catalog and viewing solution details
  • Deploying a Cloud Marketplace solution

3.7 Deploying application infrastructure using Cloud Deployment Manager. Tasks include:

  • Developing Deployment Manager templates
  • Launching a Deployment Manager template


4. Ensuring successful operation of a cloud solution

4.1 Managing Compute Engine resources. Tasks include:

  • Managing a single VM instance (e.g., start, stop, edit configuration, or delete an instance)
  • SSH/RDP to the instance
  • Attaching a GPU to a new instance and installing CUDA libraries
  • Viewing current running VM inventory (instance IDs, details)
  • Working with snapshots (e.g., create a snapshot from a VM, view snapshots, delete a snapshot)
  • Working with images (e.g., create an image from a VM or a snapshot, view images, delete an image)
  • Working with instance groups (e.g., set autoscaling parameters, assign instance template, create an instance template, remove instance group)
  • Working with management interfaces (e.g., Cloud Console, Cloud Shell, GCloud SDK)

4.2 Managing Google Kubernetes Engine resources. Tasks include:

  • Viewing current running cluster inventory (nodes, pods, services)
  • Browsing the container image repository and viewing container image details
  • Working with node pools (e.g., add, edit, or remove a node pool)
  • Working with pods (e.g., add, edit, or remove pods)
  • Working with services (e.g., add, edit, or remove a service)
  • Working with stateful applications (e.g. persistent volumes, stateful sets)
  • Working with management interfaces (e.g., Cloud Console, Cloud Shell, Cloud SDK)

4.3 Managing App Engine and Cloud Run resources. Tasks include:

  • Adjusting application traffic splitting parameters
  • Setting scaling parameters for autoscaling instances
  • Working with management interfaces (e.g., Cloud Console, Cloud Shell, Cloud SDK)

4.4 Managing storage and database solutions. Tasks include:

  • Moving objects between Cloud Storage buckets
  • Converting Cloud Storage buckets between storage classes
  • Setting object life cycle management policies for Cloud Storage buckets
  • Executing queries to retrieve data from data instances (e.g., Cloud SQL, BigQuery, Cloud Spanner, Cloud Datastore, Cloud Bigtable)
  • Estimating costs of a BigQuery query
  • Backing up and restoring data instances (e.g., Cloud SQL, Cloud Datastore)
  • Reviewing job status in Cloud Dataproc, Cloud Dataflow, or BigQuery
  • Working with management interfaces (e.g., Cloud Console, Cloud Shell, Cloud SDK)

4.5 Managing networking resources. Tasks include:

  • Adding a subnet to an existing VPC
  • Expanding a subnet to have more IP addresses
  • Reserving static external or internal IP addresses
  • Working with management interfaces (e.g., Cloud Console, Cloud Shell, Cloud SDK)

4.6 Monitoring and logging. Tasks include:

  • Creating Stackdriver alerts based on resource metrics
  • Creating Stackdriver custom metrics
  • Configuring log sinks to export logs to external systems (e.g., on-premises or BigQuery)
  • Viewing and filtering logs in Stackdriver
  • Viewing specific log message details in Stackdriver
  • Using cloud diagnostics to research an application issue (e.g., viewing Cloud Trace data, using Cloud Debug to view an application point-in-time)
  • Viewing Google Cloud Platform status
  • Working with management interfaces (e.g., Cloud Console, Cloud Shell, Cloud SDK)


5. Configuring access and security

5.1 Managing identity and access management (IAM). Tasks include:

  • Viewing IAM role assignments
  • Assigning IAM roles to accounts or Google Groups
  • Defining custom IAM roles

5.2 Managing service accounts. Tasks include:

  • Managing service accounts with limited privileges
  • Assigning a service account to VM instances
  • Granting access to a service account in another project

5.3 Viewing audit logs for project and managed services.


You will find a lot of links across a lot of helpful site and it is very easy to get lost in them. However,

·         Google Cloud Platform Overview:

·         Google Cloud Identity:

·         Google Cloud Pricing Calculator:

·         Google Cloud Billing documentation:

·         Cloud SDK installation and quick start

·         gcloud tool guide

·         Google Cloud Pricing Overview:

·         Google Cloud Pricing Calculator:

·         Google’s Pricing philosophy:

·         Compute Engine Documentation:

·         Choosing the right compute option in GCP:

·         Choosing a compute option:

·         Storage Classes:

·         Cloud Storage Options:

·         Load Balancing:

·         Compute Engine:

·         Cloud Source Repositories

·         Deployment Manager

·         Instance Groups:

·         Autoscaling:

·         Instance Templates:

·         Create VMs from instance template:

·         Creating groups of managed instances with templates:

·         Using VPC networks:

·         Deployment manager fundamentals:

·         VM Images:

·         Creating, deleting, deprecating custom images:

·         Creating snapshots:

·         How App Engine instances are managed:

·         Object lifecycle management:

·         Expanding subnets:

·         Introduction to Alerting:

·         Managing alerting policies:

·         Google Cloud IAM:

·         Cloud IAM Overview:

·         Understanding IAM roles:

·         Understanding Custom IAM roles:

·         Granting or changing access in IAM:

·         Understanding Service Accounts:

·         Service Accounts:

·         Cloud Audit Logging overview:

Services that product Audit Logs:

Benefits From Certification

  • Pay Hike
  • Promotion
  • My Job Needed It
  • Knowledge is Power
  • I just did it for the giggles