Google Cloud Certified Associate Cloud Engineer Sample Questions -ACE‑001 ( 2025 )

1. Store raw sensor data in Cloud Storage, use Dataflow to process it, and save the results in BigQuery.

2. Stream sensor data into Pub/Sub, process it with Cloud Dataflow, and output to BigQuery.

3. Write sensor data to Cloud SQL, set up database triggers to process data, and query with SQL for analysis.

4. Upload sensor data directly to BigQuery and use BigQuery ML for real-time analysis and storage.

1. Create multiple budget alerts at 70%, 80%, 90%, and 100% of the budget using the GCP console.

2. Use the GCP console to set up a single budget and alert for 70% of the total budget, then manually increase the threshold by 10% whenever an alert is triggered.

3. Use Cloud Monitoring to monitor resource usage and manually notify the CFO when the usage reaches 70% and increases by 10% after that.

4. Use Cloud Billing Account API to create one budget and set custom thresholds at 70%, 80%, 90%, and 100% of the budget.

1. TCP Proxy Load Balancer

2. HTTP(S) Load Balancer

3. Network Load Balancer

4. SSL Proxy Load Balancer

1. Use persistent disk storage to ensure job progress is saved across interruptions.

2. Disable preemptible instances entirely to avoid interruptions.

3. Set a graceful decommissioning timeout to allow tasks to finish before shutting down.

4. Use Cloud Monitoring to identify underutilized workers and scale them down manually.

1. Provision a Cloud Interconnect - Dedicated connection for a direct physical link.

2. Implement Cloud CDN to optimize network latency and increase throughput.

3. Use Cloud VPN with a high-availability configuration to ensure a stable connection.

4. Establish a VPC Peering connection with the on-premises data center.

1. Create two groups, assign roles/iam.serviceAccountUser to the customer service group, and a custom role with necessary permissions to the developer group.

2. Create two groups, assign roles/viewer to the customer service group, and roles/editor to the developer group.

3. Assign roles/viewer to the customer service team and roles/editor to the developers individually.

4. Create two groups, assign a custom role with permissions to view non-sensitive data to the customer service group, and roles/owner to the developer group.

1. Assign the Viewer role to "service-account-1" at the project level of the project that owns "bucket-1".

2. Assign the Storage Object Viewer role to "service-account-1" specifically on "bucket-1".

3. Create a new custom role with all storage permissions and assign it to "service-account-1" at the project level.

4. Assign the Storage Admin role to "service-account-1" at the organization level.

1. Assign multiple ephemeral internal IP addresses to distribute the load.

2. Associate the instance with a static internal IP address only.

3. Associate the instance with an ephemeral internal IP address only.

4. Associate the instance with a regional static internal IP address and enable Direct Peering.

1. Use a Cloud Pub/Sub topic to capture database changes and invoke the compliance process through a subscriber.

2. Run a periodic Python script to query changes from the database and call the compliance process.

3. Use Cloud Functions to trigger the compliance process when a database change is logged.

4. Enable Cloud SQL triggers and call the compliance process directly from the database.

1. Enable Pub/Sub notifications for all billing data and set up a Cloud Function to write these notifications into Firestore for analysis.

2. Set up a BigQuery billing export and create a scheduled query to export the daily costs to a CSV file stored on Google Cloud Storage.

3. Use Cloud Billing Account API to export daily billing data to a Google Sheets document for analysis.

4. Set up a BigQuery billing export and use the data directly from BigQuery for analysis.

1. Assign all team members the Owner role to simplify permissions management.

2. Regularly create and review audit logs to track service usage.

3. Only use single-zone storage for critical data to minimize storage costs.

4. Use a single Virtual Private Cloud (VPC) for all projects to simplify network design.

1. Use a third-party VPN service without Cloud VPN or Cloud Router.

2. Create a VPN tunnel in the Google Cloud Console and use static IP addressing for the external network.

3. Use Cloud VPN and Cloud Router to dynamically manage VPN routes between the Google VPC and the external network.

4. Set up a Cloud VPN with IPsec protocol and enable Cloud Load Balancing.

1. Deploy the application on Cloud Run to auto-scale and pay only for the compute seconds used.

2. Store the data in Firestore for real-time processing and easy scalability.

3. Implement a relational database on Cloud SQL with vertical scaling to manage workload spikes.

4. Use Cloud Dataflow to process and analyze the streaming data in real time.

1. Write a Python script that polls BigQuery datasets for changes and triggers the notification process.

2. Enable Cloud Audit Logs for BigQuery and create a custom monitoring script to analyze logs.

3. Set up a scheduled query to run periodically and log any changes to the dataset.

4. Use a Cloud Function triggered by BigQuery's event notifications to log changes and send notifications.

1. Use in-memory storage options like Memcached.

2. Use Kubernetes ephemeral volumes.

3. Store data in the container's local file system.

4. Use GCE persistent disks in combination with PersistentVolume and PersistentVolumeClaim resources.

1. Cloud Functions

2. Cloud Pub/Sub

3. Cloud BigQuery

4. Cloud Storage

1. Assign roles/viewer to the analytics team.

2. Create a group for the analytics team and assign roles/bigquery.dataViewer to the group.

3. Enable the BigQuery public dataset feature and provide access to the team.

4. Assign roles/bigquery.admin to the analytics team.

1. Create a new service account with the roles/pubsub.editor role and associate it with the Compute Engine instance.

2. Assign the roles/pubsub.publisher role to the Compute Engine's default service account.

3. Create a new service account with the roles/pubsub.admin role and associate it with the Compute Engine instance.

4. Create a new service account with the roles/pubsub.publisher role and associate it with the Compute Engine instance.

1. Implement an SSL proxy to handle SSL certificates outside of GCP services.

2. Use Google-managed SSL certificates in conjunction with Google Cloud Load Balancing.

3. Manually install a self-signed SSL certificate directly on your Compute Engine VM.

4. Upload a private SSL certificate to each VM instance through the instance metadata.

1. Scale up your instances in a different zone within the same region.

2. Migrate your instances to a different machine type in the same region.

3. Wait and try to scale up your instances later when resources might be available.

4. Contact Google support to request additional resources in the region.

1. Regularly monitor access logs with Cloud Audit Logs to ensure data does not leave the region.

2. Utilize Resource Labels to mark the datasets and create a policy that prevents data transfer outside the specified region.

3. Implement an Organization Policy that restricts resource locations to the specified region.

4. Set up a VPC Service Control to define a security perimeter around the resources.

1. Create a private managed zone and enable DNSSEC for the zone.

2. Create a public managed zone and set up a Cloud DNS peering policy.

3. Create a public managed zone and enable DNSSEC for the zone.

4. Create a public managed zone and configure Cloud DNS to use a forwarding DNS server.

1. Create a custom role with view-only permissions and assign it to the HR department group.

2. Assign roles/viewer to the HR department group.

3. Assign roles/bigquery.dataViewer to the HR department group.

4. Assign roles/bigquery.dataEditor to the HR department group.

1. Your GCP project has reached the logging quota. You need to request for quota increase.

2. The log entries have reached their retention period and are deleted. You need to increase the retention period.

3. The Cloud Logging agent is not configured correctly or not installed. You need to ensure the agent is installed and configured properly.

4. The instances are located in a region different from your Cloud Logging region. You need to move your instances to the same region.

1. Retrain the model with data collected during the first month of the platform's launch.

2. Collect more user feedback and delay retraining until at least one year of data is available.

3. Retrain the model with recent data reflecting current preferences and trends. Implement a process to monitor model performance and retrain periodically.

4. Retrain the model with data collected over the last 60 days and deploy the updated model immediately.

1. Create a Compute Engine instance template and manually replicate it across different zones.

2. Utilize regional managed instance groups to distribute instances across multiple zones within a region.

3. Deploy the application across multiple instances within a single zone and use instance groups.

4. Place instances in a single region and use a load balancer to distribute traffic evenly.

1. Utilize App Engine standard environment for automatic scaling based on traffic.

2. Use Compute Engine with preemptible VMs to handle the web application traffic.

3. Deploy the application on a single large Compute Engine VM that is manually scaled during events.

4. Set up a Kubernetes Engine cluster with node autoscaling to manage the deployment.

1. Configure Cloud Logging to monitor for the specific log entries and trigger a Cloud Function when detected.

2. Use a cron job on each instance to periodically send logs to an analysis service like BigQuery.

3. Write a custom script on each instance to send logs to Pub/Sub and analyze them with a Cloud Function.

4. Set up a direct connection from Compute Engine to Cloud Monitoring, and use alerts to notify administrators.

1. Bigtable

2. Cloud Spanner

3. Cloud SQL

4. Firestore

1. Use the Google Cloud Pricing Calculator by entering the number of GBs to be stored.

2. Use the Google Cloud Functions to calculate the cost.

3. Use the Google Cloud Console to estimate the costs.

4. Use the Storage Pricing Page directly to calculate costs.

1. Create a new node pool with the desired Kubernetes version and migrate workloads gradually.

2. Use rolling updates by setting the maxUnavailable parameter to a high value.

3. Manually terminate all the pods before performing the upgrade.

4. Make no changes and rely on the automatic upgrades provided by GKE.

1. CFT templates require manual changes in the GCP Console for deployment.

2. CFT templates only support deployment of compute resources.

3. CFT templates can be used to provision resources on other cloud platforms.

4. CFT templates allow you to create and manage resources as a group.

1. Utilize Google Cloud Storage Coldline for frequently accessed data.

2. Implement Google Cloud Storage Multi-Regional for frequently accessed data.

3. Use Google Cloud Storage Nearline for all data.

4. Store all data in Persistent Disk for constant availability.

1. Regional SSD Persistent Disk

2. Nearline Storage

3. Cloud Storage for Firebase

4. Zonal SSD Persistent Disk

1. Create a logging filter in Cloud Logging with the condition that disk read latency > 10 ms for 5 minutes and set the metric type as compute.googleapis.com/instance/disk/read_latency.

2. Create an alerting policy in Cloud Monitoring with the condition that disk read latency > 10 ms for 5 minutes and set the metric type as compute.googleapis.com/instance/disk/read_latency.

3. Create an alerting policy in Cloud Logging with the condition that disk read latency > 10 ms for 5 minutes and set the metric type as compute.googleapis.com/instance/disk/read_latency.

4. Create an alerting policy in Cloud Monitoring with the condition that disk read latency > 10 ms for 5 minutes and set the metric type as compute.googleapis.com/instance/disk/read_bytes_count.

It is an entry-level certification that validates your ability to deploy applications, monitor operations, and manage Google Cloud projects.

Yes, it's valuable for individuals starting a career in cloud computing and seeking foundational skills in Google Cloud Platform (GCP).

Benefits include increased job opportunities, foundational GCP knowledge, and eligibility for higher-level cloud certifications.

They deploy applications, monitor cloud operations, and manage GCP environments.

Beginners in cloud, IT professionals, and developers aiming to build expertise in Google Cloud.

It is considered moderately difficult and suitable for those with basic GCP experience or thorough study.

The exam contains around 50–60 questions.

The exam consists of multiple-choice and multiple-select questions.

Yes, it includes both multiple-choice and multiple-select questions.

Topics include cloud infrastructure, IAM, storage, compute services, networking, and deployment.

Use CertiMaan's curated practice tests and follow Google Cloud's official training resources.

CertiMaan provides dumps and mock tests. Google Cloud offers hands-on labs and documentation.

Yes, CertiMaan and Google Cloud's official platform provide sample tests and study guides.

Most candidates prepare in 4 to 6 weeks with consistent effort.

Yes, with strong preparation using resources from CertiMaan and Google Cloud.

The exam costs $125 USD.

No prerequisites, but some familiarity with GCP basics is recommended.

You can register through Google Cloud’s official certification website.

Yes, after a 14-day waiting period.

Google does not disclose an official passing score, but 70% is a common benchmark.

It uses a scaled scoring system and results are reported as pass or fail.

The certification is valid for three years.

You must retake the current version of the exam.

The average salary ranges between $90,000 to $120,000 annually in the U.S.

Roles include Cloud Engineer, Cloud Administrator, and GCP Support Specialist.

Yes, Google and many top tech companies hire professionals with this certification.

Yes, it’s designed as a foundational certification for newcomers to cloud.

Yes, it’s a stepping stone to professional-level certifications like Cloud Architect or Data Engineer.