Notes for the Google Cloud Certified Associate Cloud Engineer exam. These notes list the syllabus. For each item on the syllabus, there is a link to the relevant Google Cloud documentation. These notes will help prepare for the exam.
The textbook, Associate Cloud Engineer Study Guide by Dan Sullivan, was used to aid in the selection of links.
General information for Google Cloud certification is available at https://cloud.google.com/certification. Specific information, and resources, for the Associate Cloud Engineer certification are available at https://cloud.google.com/certification/cloud-engineer.
-
https://cloud.google.com/resource-manager/docs/cloud-platform-resource-hierarchy
-
https://cloud.google.com/resource-manager/docs/quickstart-organizations
-
https://cloud.google.com/resource-manager/docs/default-access-control
-
https://cloud.google.com/resource-manager/docs/creating-managing-organization
-
https://cloud.google.com/resource-manager/docs/organization-setup
-
https://cloud.google.com/resource-manager/docs/cloud-platform-resource-hierarchy
-
https://cloud.google.com/resource-manager/docs/creating-managing-folders
-
https://cloud.google.com/resource-manager/docs/creating-managing-projects
-
https://cloud.google.com/resource-manager/docs/moving-projects-folders
-
https://cloud.google.com/resource-manager/docs/project-migration
-
https://cloud.google.com/resource-manager/docs/organization-resource-management
-
https://cloud.google.com/resource-manager/docs/managing-multiple-orgs
-
https://cloud.google.com/resource-manager/docs/organization-policy/quickstart-constraints
-
https://cloud.google.com/resource-manager/docs/organization-policy/overview
-
https://cloud.google.com/resource-manager/docs/organization-policy/understanding-constraints
-
https://cloud.google.com/resource-manager/docs/organization-policy/understanding-hierarchy
-
https://cloud.google.com/resource-manager/docs/organization-policy/using-constraints
-
https://cloud.google.com/resource-manager/docs/tags/tags-overview
-
https://cloud.google.com/resource-manager/docs/tags/tags-creating-and-managing
-
https://cloud.google.com/resource-manager/docs/organization-policy/tags-organization-policy
-
https://cloud.google.com/resource-manager/docs/organization-policy/restricting-domains
-
https://cloud.google.com/resource-manager/docs/organization-policy/restricting-service-accounts
-
https://cloud.google.com/resource-manager/docs/organization-policy/defining-locations
-
https://cloud.google.com/resource-manager/docs/resource-settings/overview
-
https://cloud.google.com/resource-manager/docs/listing-all-resources
-
https://cloud.google.com/resource-manager/docs/resource-settings/manage-resource-settings
-
https://cloud.google.com/billing/docs/how-to/export-data-bigquery-setup
-
https://cloud.google.com/billing/docs/how-to/export-data-file
1.3 Installing and configuring the command line interface (CLI), specifically the Cloud SDK (e.g., setting the default project)
-
https://cloud.google.com/compute/docs/sustained-use-discounts
-
https://cloud.google.com/compute/docs/instances/signing-up-committed-use-discounts
Selecting appropriate compute choices for a given workload (e.g., Compute Engine, Google Kubernetes Engine, Cloud Run, Cloud Functions)
-
https://cloud.google.com/compute/docs/instances/create-use-preemptible
-
https://cloud.google.com/compute/docs/instances/creating-instance-with-custom-machine-type
Choosing storage options (e.g., Zonal persistent disk, Regional balanced persistent disk, Standard, Nearline, Coldline, Archive)
Launching a compute instance using Cloud Console and Cloud SDK (gcloud) (e.g., assign disks, availability policy, SSH keys)
-
https://cloud.google.com/compute/docs/instances/create-start-instance
-
https://cloud.google.com/compute/docs/access/create-enable-service-accounts-for-instances
-
https://cloud.google.com/compute/docs/instances/startup-scripts
-
https://cloud.google.com/compute/docs/instances/setting-instance-scheduling-options
-
https://cloud.google.com/compute/docs/instances/access-overview
-
https://cloud.google.com/compute/docs/nodes/provisioning-sole-tenant-vms
-
https://cloud.google.com/compute/docs/instance-templates/create-instance-templates
-
https://cloud.google.com/compute/docs/instances/create-vm-from-instance-template
-
https://cloud.google.com/compute/docs/instance-groups/creating-groups-of-managed-instances
-
https://cloud.google.com/compute/docs/instances/access-overview
-
https://cloud.google.com/compute/docs/connect/create-ssh-keys
-
https://cloud.google.com/compute/docs/connect/restrict-ssh-keys
-
https://cloud.google.com/monitoring/agent/monitoring/installation
-
https://cloud.google.com/logging/docs/agent/logging/installation
Deploying a Google Kubernetes Engine cluster with different configurations including AutoPilot, regional clusters, private clusters, etc.
-
https://cloud.google.com/kubernetes-engine/docs/how-to/stateless-apps
-
https://cloud.google.com/kubernetes-engine/docs/how-to/stateful-apps
-
https://cloud.google.com/kubernetes-engine/docs/tutorials/persistent-disk
-
https://cloud.google.com/kubernetes-engine/docs/how-to/creating-an-autopilot-cluster
-
https://cloud.google.com/kubernetes-engine/docs/how-to/creating-a-zonal-cluster
-
https://cloud.google.com/kubernetes-engine/docs/how-to/creating-a-regional-cluster
-
https://cloud.google.com/kubernetes-engine/docs/how-to/private-clusters
3.3 Deploying and implementing Cloud Run and Cloud Functions resources. Tasks include, where applicable:
-
https://cloud.google.com/build/docs/deploying-builds/deploy-cloud-run
-
https://cloud.google.com/build/docs/deploying-builds/deploy-functions
-
https://cloud.google.com/run/docs/about-instance-autoscaling
-
https://cloud.google.com/run/docs/rollouts-rollbacks-traffic-migration
-
https://cloud.google.com/functions/docs/configuring/max-instances
Deploying an application that receives Google Cloud events (e.g., Pub/Sub events, Cloud Storage object change notification events)
Initializing data systems with products (e.g., Cloud SQL, Firestore, BigQuery, Cloud Spanner, Pub/Sub, Cloud Bigtable, Dataproc, Dataflow, Cloud Storage)
Loading data (e.g., command line upload, API transfer, import/export, load data from Cloud Storage, streaming data to Pub/Sub)
-
https://cloud.google.com/storage/docs/copying-renaming-moving-objects
-
https://cloud.google.com/storage-transfer/docs/create-manage-transfer-console
-
https://cloud.google.com/storage-transfer/docs/create-manage-transfer-program
-
https://cloud.google.com/sql/docs/mysql/import-export/import-export-sql
-
https://cloud.google.com/datastore/docs/export-import-entities
-
https://cloud.google.com/sdk/gcloud/reference/beta/dataproc/clusters/export
-
https://cloud.google.com/sdk/gcloud/reference/beta/dataproc/clusters/import
-
https://cloud.google.com/sdk/gcloud/reference/pubsub/subscriptions/pull
Launching a Compute Engine instance with custom network configuration (e.g., internal-only IP address, Google private access, static external and private IP address, network tags)
-
https://cloud.google.com/compute/docs/instances/create-start-instance
-
https://cloud.google.com/vpc/docs/configure-private-google-access
-
https://cloud.google.com/compute/docs/ip-addresses/reserve-static-internal-ip-address
-
https://cloud.google.com/compute/docs/ip-addresses/reserve-static-external-ip-address
Creating ingress and egress firewall rules for a VPC (e.g., IP subnets, network tags, service accounts)
Creating a load balancer to distribute application network traffic to an application (e.g., Global HTTP(S) load balancer, Global SSL Proxy load balancer, Global TCP Proxy load balancer, regional network load balancer, regional internal load balancer)
-
https://cloud.google.com/deployment-manager/docs/step-by-step-guide
-
https://cloud.google.com/deployment-manager/docs/deployments/deleting-deployments
-
https://cloud.google.com/deployment-manager/docs/deployments/viewing-manifest
-
https://cloud.google.com/deployment-manager/docs/reference/cloud-foundation-toolkit
-
https://cloud.google.com/deployment-manager/docs/configuration/use-references
-
https://cloud.google.com/docs/terraform/blueprints/terraform-blueprints
Installing and configuring Config Connector in Google Kubernetes Engine to create, update, delete, and secure resources
-
https://cloud.google.com/config-connector/docs/how-to/install-upgrade-uninstall
-
https://cloud.google.com/config-connector/docs/how-to/configuring-your-client
-
https://cloud.google.com/config-connector/docs/how-to/getting-started
-
https://cloud.google.com/compute/docs/instances/stop-start-instance
-
https://cloud.google.com/compute/docs/instances/schedule-instance-start-stop
-
https://cloud.google.com/compute/docs/instances/deleting-instance
-
https://cloud.google.com/compute/docs/instances/update-instance-properties
-
https://cloud.google.com/compute/docs/instances/preventing-accidental-vm-deletion
-
https://cloud.google.com/compute/docs/instances/moving-instance-across-zones
-
https://cloud.google.com/compute/docs/instances/migrating-interfaces-between-networks
-
https://cloud.google.com/compute/docs/instances/apply-machine-type-recommendations-for-instances
-
https://cloud.google.com/compute/docs/instances/changing-machine-type-of-stopped-instance
-
https://cloud.google.com/compute/docs/instances/connecting-to-instance
-
https://cloud.google.com/compute/docs/instances/transfer-files
-
https://cloud.google.com/compute/docs/instances/connecting-to-windows
-
https://cloud.google.com/compute/docs/instances/transfer-files-windows
-
https://cloud.google.com/compute/docs/disks/create-snapshots
-
https://cloud.google.com/compute/docs/disks/scheduled-snapshots
-
https://cloud.google.com/compute/docs/instances/windows/creating-windows-persistent-disk-snapshot
-
https://cloud.google.com/compute/docs/machine-images/create-machine-images
-
https://cloud.google.com/compute/docs/images/create-delete-deprecate-private-images
Working with instance groups (e.g., set autoscaling parameters, assign instance template, create an instance template, remove instance group)
-
https://cloud.google.com/compute/docs/autoscaler/scaling-cpu
-
https://cloud.google.com/compute/docs/autoscaler/scaling-load-balancing
-
https://cloud.google.com/compute/docs/autoscaler/scaling-stackdriver-monitoring-metrics
-
https://cloud.google.com/compute/docs/autoscaler/scaling-schedules
-
https://cloud.google.com/compute/docs/autoscaler/managing-autoscalers
-
https://cloud.google.com/compute/docs/instance-groups/delete-mig
-
https://cloud.google.com/compute/docs/instance-groups/add-remove-vms-in-mig
-
https://cloud.google.com/compute/docs/instance-templates/create-instance-templates
-
https://cloud.google.com/compute/docs/instance-groups/rolling-out-updates-to-managed-instance-groups
-
https://cloud.google.com/kubernetes-engine/docs/how-to/cluster-admin-overview
-
https://cloud.google.com/kubernetes-engine/docs/how-to/managing-clusters
-
https://cloud.google.com/kubernetes-engine/docs/how-to/upgrading-a-cluster
-
https://cloud.google.com/kubernetes-engine/docs/how-to/resizing-a-cluster
-
https://cloud.google.com/kubernetes-engine/docs/how-to/cluster-autoscaler
-
https://cloud.google.com/kubernetes-engine/docs/how-to/deleting-a-cluster
-
https://cloud.google.com/kubernetes-engine/docs/how-to/node-pools
-
https://cloud.google.com/kubernetes-engine/docs/how-to/node-auto-provisioning
-
https://cloud.google.com/kubernetes-engine/docs/how-to/node-images
-
https://cloud.google.com/kubernetes-engine/docs/how-to/node-auto-upgrades
-
https://cloud.google.com/kubernetes-engine/docs/how-to/node-auto-repair
-
https://cloud.google.com/kubernetes-engine/docs/how-to/exposing-apps
-
https://cloud.google.com/kubernetes-engine/docs/how-to/service-parameters
-
https://cloud.google.com/kubernetes-engine/docs/how-to/horizontal-pod-autoscaling
-
https://cloud.google.com/kubernetes-engine/docs/how-to/vertical-pod-autoscaling
-
https://cloud.google.com/kubernetes-engine/docs/how-to/multidimensional-pod-autoscaling
-
https://cloud.google.com/kubernetes-engine/docs/concepts/dashboards
-
https://cloud.google.com/shell/docs/running-a-kubernetes-engine-app
-
https://cloud.google.com/storage/docs/access-control/create-manage-lists
-
https://cloud.google.com/storage/docs/encryption/default-keys
-
https://cloud.google.com/storage/docs/encryption/customer-managed-keys
-
https://cloud.google.com/storage/docs/encryption/using-customer-managed-keys
-
https://cloud.google.com/storage/docs/encryption/customer-supplied-keys
-
https://cloud.google.com/storage/docs/encryption/using-customer-supplied-keys
-
https://cloud.google.com/storage/docs/encryption/client-side-keys
Executing queries to retrieve data from data instances (e.g., Cloud SQL, BigQuery, Cloud Spanner, Datastore, Cloud Bigtable)
-
https://firebase.google.com/docs/firestore/query-data/queries
-
https://cloud.google.com/bigquery/docs/reference/standard-sql/query-syntax
-
https://cloud.google.com/spanner/docs/tune-query-with-visualizer
-
https://cloud.google.com/spanner/docs/reference/standard-sql/query-syntax
-
https://cloud.google.com/dataflow/docs/guides/sql/dataflow-sql-intro
-
https://cloud.google.com/dataflow/docs/reference/sql/query-syntax
-
https://cloud.google.com/bigquery/external-data-cloud-storage
-
https://cloud.google.com/sql/docs/mysql/backup-recovery/backing-up
-
https://cloud.google.com/sql/docs/mysql/backup-recovery/restore
-
https://cloud.google.com/sql/docs/mysql/backup-recovery/pitr
-
https://firebase.google.com/docs/firestore/manage-data/export-import
-
https://cloud.google.com/bigquery/docs/table-snapshots-intro
-
https://cloud.google.com/bigquery/docs/table-snapshots-create
-
https://cloud.google.com/bigquery/docs/table-snapshots-restore
-
https://cloud.google.com/bigquery/docs/table-snapshots-update
-
https://cloud.google.com/bigquery/docs/table-snapshots-scheduled
-
https://cloud.google.com/datastore/docs/export-import-entities
-
https://cloud.google.com/dataproc/docs/concepts/jobs/life-of-a-job
-
https://cloud.google.com/dataflow/docs/guides/using-monitoring-intf
-
https://cloud.google.com/dataflow/docs/guides/using-command-line-intf
-
https://cloud.google.com/compute/docs/ip-addresses/reserve-static-external-ip-address
-
https://cloud.google.com/compute/docs/ip-addresses/reserve-static-internal-ip-address
-
https://cloud.google.com/monitoring/alerts/using-alerting-ui
-
https://cloud.google.com/monitoring/alerts/using-alerting-api
-
https://cloud.google.com/monitoring/custom-metrics/open-census
-
https://cloud.google.com/monitoring/custom-metrics/creating-metrics
-
https://cloud.google.com/monitoring/custom-metrics/browsing-metrics
-
https://cloud.google.com/logging/docs/view/logs-viewer-interface
-
https://cloud.google.com/logging/docs/reference/tools/gcloud-logging
-
https://cloud.google.com/logging/docs/export/using_exported_logs
Using cloud diagnostics to research an application issue (e.g., viewing Cloud Trace data, using Cloud Debug to view an application point-in-time)
-
https://cloud.google.com/error-reporting/docs/viewing-errors
-
https://cloud.google.com/error-reporting/docs/managing-errors
-
https://cloud.google.com/profiler/docs/interacting-flame-graph
-
https://cloud.google.com/iam/docs/understanding-custom-roles
-
https://cloud.google.com/iam/docs/granting-changing-revoking-access
-
https://cloud.google.com/iam/docs/granting-changing-revoking-access
-
https://cloud.google.com/iam/docs/managing-conditional-role-bindings
-
https://cloud.google.com/iam/docs/configuring-resource-based-access
Managing the various role types and defining custom IAM roles (e.g., primitive, predefined and custom)
-
https://cloud.google.com/iam/docs/creating-managing-service-accounts
-
https://cloud.google.com/iam/docs/creating-managing-service-account-keys
-
https://cloud.google.com/iam/docs/impersonating-service-accounts
-
https://cloud.google.com/iam/docs/manage-lateral-movement-insights