ASSOCIATE-CLOUD-ENGINEER Exam Details

  • Exam Code
    :ASSOCIATE-CLOUD-ENGINEER
  • Exam Name
    :Associate Cloud Engineer
  • Certification
    :Google Certifications
  • Vendor
    :Google
  • Total Questions
    :427 Q&As
  • Last Updated
    :Jul 14, 2026

Google ASSOCIATE-CLOUD-ENGINEER Online Questions & Answers

  • Question 31:

    You have a website hosted on App Engine standard environment. You want 1% of your users to see a new test version of the website. You want to minimize complexity. What should you do?

    A. Deploy the new version in the same application and use the --migrate option.
    B. Deploy the new version in the same application and use the --splits option to give a weight of 99 to the current version and a weight of 1 to the new version.
    C. Create a new App Engine application in the same project. Deploy the new version in that application. Use the App Engine library to proxy 1% of the requests to the new version.
    D. Create a new App Engine application in the same project. Deploy the new version in that application. Configure your network load balancer to send 1% of the traffic to that new application.

  • Question 32:

    You are deploying an application to Cloud Run. Your application requires the use of an API that runs on Google Kubernetes Engine (GKE). You need to ensure that your Cloud Run service can privately reach the API on GKE, and you want to follow Google-recommended practices. What should you do?

    A. Deploy an ingress resource on the GKE cluster to expose the API to the internet. Use Cloud Armor to filter for IP addresses that can connect to the API. On the Cloud Run service, configure the application to fetch its public IP address and update the Cloud Armor policy on startup to allow this IP address to call the API on ports 80 and 443.
    B. Create an ingress firewall rule on the VPC to allow connections from 0.0.0.0/0 on ports 80 and 443.
    C. Create an egress firewall rule on the VPC to allow connections to 0.0.0.0/ on ports 80 and 443.
    D. Deploy an internal Application Load Balancer to expose the API on GKE to the VPC. Configure Cloud DNS with the IP address of the internal Application Load Balancer. Deploy a Serverless VPC Access connector to allow the Cloud Run service to call the API through the FQDN on Cloud DNS.

  • Question 33:

    An external member of your team needs list access to compute images and disks in one of your projects. You want to follow Google-recommended practices when you grant the required permissions to this user. What should you do?

    A. Create a custom role, and add all the required compute.disks.list and compute.images.list permissions as includedPermissions. Grant the custom role to the user at the project level.
    B. Create a custom role based on the Compute Image User role. Add the compute.disks.list to the includedPermissions field. Grant the custom role to the user at the project level.
    C. Create a custom role based on the Compute Storage Admin role. Exclude unnecessary permissions from the custom role. Grant the custom role to the user at the project level.
    D. Grant the Compute Storage Admin role at the project level.

  • Question 34:

    You need to create a copy of a custom Compute Engine virtual machine (VM) to facilitate an expected increase in application traffic due to a business acquisition. What should you do?

    A. Create a Compute Engine snapshot of your base VM. Create your images from that snapshot.
    B. Create a Compute Engine snapshot of your base VM. Create your instances from that snapshot.
    C. Create a custom Compute Engine image from a snapshot. Create your images from that image.
    D. Create a custom Compute Engine image from a snapshot. Create your instances from that image.

  • Question 35:

    Your company developed a mobile game that is deployed on Google Cloud. Gamers are connecting to the game with their personal phones over the Internet. The game sends UDP packets to update the servers about the gamers' actions while they are playing in multiplayer mode. Your game backend can scale over multiple virtual machines (VMs), and you want to expose the VMs over a single IP address. What should you do?

    A. Configure an SSL Proxy load balancer in front of the application servers.
    B. Configure an Internal UDP load balancer in front of the application servers.
    C. Configure an External HTTP(s) load balancer in front of the application servers.
    D. Configure an External Network load balancer in front of the application servers.

  • Question 36:

    You need to assign a Cloud Identity and Access Management (Cloud IAM) role to an external auditor. The auditor needs to have permissions to review your Google Cloud Platform (GCP) Audit Logs and also to review your Data Access logs. What should you do?

    A. Assign the auditor the IAM role roles/logging.privateLogViewer. Perform the export of logs to Cloud Storage.
    B. Assign the auditor the IAM role roles/logging.privateLogViewer. Direct the auditor to also review the logs for changes to Cloud IAM policy.
    C. Assign the auditor's IAM user to a custom role that has logging.privateLogEntries.list permission. Perform the export of logs to Cloud Storage.
    D. Assign the auditor's IAM user to a custom role that has logging.privateLogEntries.list permission. Direct the auditor to also review the logs for changes to Cloud IAM policy.

  • Question 37:

    You have a Dockerfile that you need to deploy on Kubernetes Engine. What should you do?

    A. Use kubectl app deploy .
    B. Use gcloud app deploy .
    C. Create a docker image from the Dockerfile and upload it to Container Registry. Create a Deployment YAML file to point to that image. Use kubectl to create the deployment with that file.
    D. Create a docker image from the Dockerfile and upload it to Cloud Storage. Create a Deployment YAML file to point to that image. Use kubectl to create the deployment with that file.

  • Question 38:

    Your company runs a variety of applications and workloads on Google Cloud, and you are responsible for managing cloud costs. You need to identify a solution that enables you to perform detailed cost analysis. You also must be able to visualize the cost data in multiple ways on the same dashboard. What should you do?

    A. Use the cost breakdown report with the available filters from Cloud Billing to visualize the data.
    B. Enable the Cloud Billing export to BigQuery, and use Looker Studio to visualize the data.
    C. Run queries in Cloud Monitoring. Create dashboards to visualize the billing metrics.
    D. Enable Cloud Monitoring metrics export to BigQuery, and use Looker to visualize the data.

  • Question 39:

    Your team has created 4 projects, one for each distinct application. You have a single budget for all of these projects. What is the best way to pay for all of these projects?

    A. Create a Billing Account for each project.
    B. Use an invoiced account, which will pay for all projects inside a Google Cloud account.
    C. Use a single Billing Account linked to all 4 projects.
    D. Use a single Billing Account linked to the Google Cloud account.

  • Question 40:

    You have an application that runs on Compute Engine VM instances in a custom Virtual Private Cloud (VPC). Your company's security policies only allow the use to internal IP addresses on VM instances and do not let VM instances connect to the internet. You need to ensure that the application can access a file hosted in a Cloud Storage bucket within your project. What should you do?

    A. Enable Private Service Access on the Cloud Storage Bucket.
    B. Add slorage.googleapis.com to the list of restricted services in a VPC Service Controls perimeter and add your project to the list to protected projects.
    C. Enable Private Google Access on the subnet within the custom VPC.
    D. Deploy a Cloud NAT instance and route the traffic to the dedicated IP address of the Cloud Storage bucket.

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Google exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your ASSOCIATE-CLOUD-ENGINEER exam preparations and Google certification application, do not hesitate to visit our Vcedump.com to find your solutions here.