Cisco
CompTIA
ISC
EC-Council
EXIN
Fortinet
ITIL
Juniper
Microsoft
VMware
Avaya
SAP
Google
NVIDIA
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk
ServiceNow
All Vendors
  2. Home
  3. Exams
  4. Google
  5. ASSOCIATE-CLOUD-ENGINEER

Google ASSOCIATE-CLOUD-ENGINEER Exam
Associate Cloud Engineer (Page 8 )

Updated On: 25-Jan-2026
Page 8 of 63
PDF with 343 Questions

You are building a multi-player gaming application that will store game information in a database. As the popularity of the application increases, you are concerned about delivering consistent performance. You need to ensure an optimal gaming performance for global users, without increasing the management complexity.
What should you do?

  1. Use Cloud SQL database with cross-region replication to store game statistics in the EU, US, and APAC regions.
  2. Use Cloud Spanner to store user data mapped to the game statistics.
  3. Use BigQuery to store game statistics with a Redis on Memorystore instance in the front to provide global consistency.
  4. Store game statistics in a Bigtable database partitioned by username.

Answer(s): B



You deployed an application on a managed instance group in Compute Engine. The application accepts Transmission Control Protocol (TCP) traffic on port 389 and requires you to preserve the IP address of the client who is making a request. You want to expose the application to the internet by using a load balancer.
What should you do?

  1. Expose the application by using an external TCP Network Load Balancer.
  2. Expose the application by using a TCP Proxy Load Balancer.
  3. Expose the application by using an SSL Proxy Load Balancer.
  4. Expose the application by using an internal TCP Network Load Balancer.

Answer(s): B



You have a managed instance group comprised of preemptible VM's. All of the VM's keepdeleting and recreating themselves every minute.
What is a possible cause of thisbehavior?

  1. Your zonal capacity is limited, causing all preemptible VM's to be shutdown torecover capacity. Try deploying your group to another zone.
  2. You have hit your instance quota for the region.
  3. Your managed instance group's VM's are toggled to only last 1 minute inpreemptible settings.
  4. Your managed instance group's health check is repeatedly failing, either to amisconfigured health check or misconfigured firewall rules not allowing the healthcheck to access the instance

Answer(s): D

Explanation:

as the instances (normal or preemptible) would be terminated and relaunched if the health check fails either due to application not configured properly or the instances firewall do not allow health check to happen.

GCP provides health check systems that connect to virtual machine (VM) instances on a configurable, periodic basis. Each connection attempt is called a probe. GCP records the success or failure of each probe.

Health checks and load balancers work together. Based on a configurable number of sequential successful or failed probes, GCP computes an overall health state for each VM in the load balancer. VMs that respond successfully for the configured number of times are considered healthy. VMs that fail to respond successfully for a separate number of times are unhealthy.

GCP uses the overall health state of each VM to determine its eligibility for receiving new requests. In addition to being able to configure probe frequency and health state thresholds, you can configure the criteria that define a successful probe.



You have files in a Cloud Storage bucket that you need to share with your suppliers. You want to restrict the time that the files are available to your suppliers to 1 hour. You want to follow Google recommended practices.
What should you do?

  1. Create a service account with just the permissions to access files in the bucket. Create a JSON key for the service account. Execute the command gsutil signurl -m 1h gs:///*.
  2. Create a service account with just the permissions to access files in the bucket. Create a JSON key for the service account. Execute the command gsutil signurl -d 1h gs:///**.
  3. Create a service account with just the permissions to access files in the bucket. Create a JSON key for the service account. Execute the command gsutil signurl -p 60m gs:///.
  4. Create a JSON key for the Default Compute Engine Service Account. Execute the command gsutil signurl -t 60m gs:///***

Answer(s): B

Explanation:

This command correctly specifies the duration that the signed url should be valid for by using the -d flag. The default is 1 hour so omitting the -d flag would have also resulted in the same outcome. Times may be specified with no suffix (default hours), or with s = seconds, m = minutes, h = hours, d = days. The max duration allowed is 7d.
Ref: https://cloud.google.com/storage/docs/gsutil/commands/signurl



You have been asked to migrate a docker application from datacenter to cloud. Your solution architect has suggested uploading docker images to GCR in one project and running an application in a GKE cluster in a separate project. You want to store images in the project img-278322 and run the application in the project prod-278986. You want to tag the image as acme_track_n_trace:v1. You want to follow Google-recommended practices.
What should you do?

  1. Run gcloud builds submit --tag gcr.io/img-278322/acme_track_n_trace
  2. Run gcloud builds submit --tag gcr.io/img-278322/acme_track_n_trace:v1
  3. Run gcloud builds submit --tag gcr.io/prod-278986/acme_track_n_trace
  4. Run gcloud builds submit --tag gcr.io/prod-278986/acme_track_n_trace:v1

Answer(s): B

Explanation:

Explanation
Run gcloud builds submit tag gcr.io/img-278322/acme_track_n_trace:v1. is the right answer. This command correctly tags the image as acme_track_n_trace:v1 and uploads the image to the img- 278322 project.

Ref: https://cloud.google.com/sdk/gcloud/reference/builds/submit



Viewing page 8 of 63
Viewing questions 36 - 40 out of 343 questions



Post your Comments and Discuss Google ASSOCIATE-CLOUD-ENGINEER exam prep with other Community members:

Join the ASSOCIATE-CLOUD-ENGINEER Discussion