Google Cloud – Associate Cloud Engineer Certification learning path
Google Cloud – Associate Cloud Engineer certification exam targets those who work day-in and day-out with Google Cloud Services. It is designed for Cloud Engineers who manage enterprise solutions, monitor operations, and deploy applications. It covers a wide range of concepts and services. The exam is not difficult and the time required to pass it takes only 2 hours, if you are well prepared.
Google Cloud – Associate Cloud Engineer Certification Summary
There are 50 questions that need to be answered in two hours.
It covers a wide range of Google Cloud services, and what they do. It focuses mainly on IAM, Compute, Storage, with a little bit Network, but hardly any data services.
It is essential to be hands-on. This course covers Cloud SDK, CLI commands, and Console operations you would use in your day-to-day work. If you are new to GCP, make sure you do lots of labs. Otherwise you will be completely clueless about some of the commands and questions.
You can be certain that no online course or practice tests will cover everything. I took the ACloud Guru LA course, which covered 60-70%. However, practical knowledge and hands-on skills are essential.
General Services
Cloud Billing: Learn how Cloud Billing works. Monthly vs Threshold, which has priority
You can set budgets to be alert for projects
How to change a billing address for a project. What roles are required. Hint: Project Owner and Billing Manager for the billing account
Cloud Billing can also be exported to BigQuery or Cloud Storage
Resource ManagerUnderstand Resource manager the hierarchy Organization -> Folders Projects -> Ressources
IAM Policy inheritance can be temporary and resources inherit the policies of all their parent resources.
Effective policy for a resource can be defined as the union of the policy that was set on it and the policies that were inherited from higher up the hierarchy.
Cloud SDKunderstand gcloud commands Configurations, i.e. Configurations, i.e.
GKE setting default cluster i.e. gcloud config set container/cluster CLUSTER_NAME
set project gcloud config set project mygcp-demo
set region gcloud config set compute/region us-west1
set zone gcloud config set compute/zone us-west1-a
Get project list and ids for gcloud projects
Auth i.e gcloud authAuth login using user gcloud auth login
Auth login using service accountgcloud auth activate-service-account –key-file=sa_key.json
deployment manager i.e. gcloud deployment-manager
VPC firewalls, i.e. gcloud compute firewall-rulesNetwork Services
Virtual Private Cloud Understand Virtual Private Cloud (VPC), subnets, and the host applications within them Hint VPC spans regions
Learn how Firewall rules work and how they are configured. Focus on Network Tags. There are also 2 implicit firewall rules: default ingress deny or default egress allow.
VPC Peering and VPC Sharing
Learn the difference between static IPs and ephemeral IPs.
Modifying the subnet mask can increase the primary IP range of an existing subnet, or reducing its prefix length, can be done.
Cloud Load BalanceUnderstand Google Cloud Load Balance
Learn about load balancer options and their differences. SSL proxy and HTTPS are required for SSL termination.
Identity and Access Management (IAM) Identify and access Management – IAM allows administrators to centrally manage cloud resources by controlling who can take which action on specific resources.
Learn how IAM works and the rules that apply to you. The hierarchy of Organization -> Folder Project -> Resources
Learn the differences between Pre-defined, Custom and Primitive roles and their uses
IAM Policy inheritance can be temporary and resources inherit the policies of
