Cloud ComputingIntermediate

Google Cloud Associate

Name: Google Cloud Associate
Price: 49 USD
Availability: InStock

Google Cloud engineering fundamentals

Modules

180

Practice Questions

Field Missions

ACE

Google Cloud

$49one-time purchase

Pay once. Own forever. No subscription.

Secure payment via Stripe. Own this course forever.

Exam Details

Exam CodeACE

Exam BodyGoogle Cloud

Exam Fee$200

DifficultyIntermediate

Free Preview — Module 1

Module 1 — Setting Up a Cloud Solution Environment

The foundation of every GCP deployment: the resource hierarchy, IAM roles, the gcloud CLI, and billing management — the skills that prevent security incidents and bill shock.

Managing the Google Cloud Resource Hierarchy

Organization → Folders → Projects: how policy inheritance works, why Project IDs are permanent, and the 30-day soft-delete window.

Identity and Access Management (IAM) Fundamentals

Members/Principals, Basic vs. Predefined vs. Custom roles, Service Accounts for machine identities, and why permissions are additive.

Mastering the Cloud SDK and gcloud CLI

gcloud init, named configurations for multi-project work, gsutil for Cloud Storage, bq for BigQuery, and gcloud components install.

Configuring and Monitoring Cloud Billing

Billing Accounts linked to Projects, Billing Account Administrator vs. User roles, budget alerts, forecasted spend, and BigQuery billing export.

Sample Practice Questions

Question 1

A developer's script fails because the project is not set. They have multiple gcloud configurations on their machine. Which command shows all configurations and which one is currently active?

a.gcloud config configurations list

b.gcloud config get-value project

c.gcloud init

d.gcloud config set project

gcloud config configurations list shows all configurations with an asterisk (*) next to the active one, including its account and project. get-value only shows the current project ID; init sets up a new config; set project changes the project without showing status.

Question 2

A security auditor needs read-only access to all 10 projects inside a 'Production' folder, with no modification rights. What is the most efficient approach following least-privilege principles?

a.Assign roles/viewer to the auditor for each individual project

b.Assign roles/viewer to the auditor at the Folder level

c.Assign roles/editor at the Folder level — it includes viewing permissions

d.Assign roles/owner at the Organization level

Assigning roles/viewer at the Folder level is efficient because IAM policies inherit downward — all current and future projects in the folder are covered. Per-project assignment is error-prone; roles/editor and roles/owner grant unnecessary write access.

Question 3

You need a Service Account for an on-premises server application that uploads logs to Cloud Storage. What is the correct creation method and authentication approach?

a.gcloud iam service-accounts create; download a JSON key file

b.gcloud auth login; use the resulting browser session token

c.gcloud iam roles create; assign a basic role to the server IP address

d.gcloud config set account; use the on-premises admin email

Service accounts are created under the iam command group. For external (off-GCP) applications, a JSON key file provides the credentials. gcloud auth login is for interactive human login; roles are assigned to identities, not IP addresses.

Full course includes 8 modules, 180 practice questions, and 5 field missions.

Need team licenses?

One purchase covers your entire crew. No per-seat fees.

View Team Pricing