For IndividualsFor Educators
    ExpertMinds LogoExpertMinds
    HomeGCP ACECheat Sheet
    Cheat SheetGoogle CloudGCP ACE

    GCP Associate Cloud Engineer Cheat Sheet 2026

    The essential GCP ACE reference — compute, storage, databases, networking, IAM, and operations services with exam trigger phrases and decision rules.

    ExpertMinds Editorial·3 February 2026·8 min read
    Take the GCP ACE practice exams →

    The GCP ACE tests your ability to deploy and operate workloads on Google Cloud. Questions are scenario-based: a team needs to deploy X with constraint Y. The exam expects you to know gcloud CLI commands, IAM role names, and the difference between similar services (Cloud Run vs GKE, Cloud SQL vs Spanner). This reference is organised by the exam's five domains.

    Key fact:50 questions · 2 hours · Pass score approximately 70%. The exam is performance-based; some questions test gcloud command knowledge directly.

    Compute

    ServiceWhat it isExam trigger phrase
    Compute EngineIaaS — VMs with full OS control"full control", "custom OS", "lift and shift"
    App Engine StandardPaaS — language runtimes, auto-scale to zero"no server management", "scales to zero", "Python/Java/Go/Node"
    App Engine FlexiblePaaS on VMs — Docker containers, no scale to zero"custom runtime", "background threads", "Docker"
    Cloud RunServerless containers — auto-scale to zero"stateless container", "HTTP-triggered", "no cluster"
    Cloud Run JobsRun containers to completion (batch/jobs)"batch job", "no HTTP endpoint", "runs to completion"
    GKE StandardManaged Kubernetes — you manage nodes"Kubernetes", "container orchestration", "node control"
    GKE AutopilotFully managed Kubernetes — Google manages nodes"serverless Kubernetes", "no node management", "pay per pod"
    Cloud Functions (2nd gen)Event-driven serverless functions"event-driven", "lightweight function", "Pub/Sub trigger"
    Preemptible / Spot VMsShort-lived Compute Engine VMs at up to 91% discount"fault-tolerant batch", "can be interrupted", "cost savings"
    Tip:Cloud Run vs GKE: Cloud Run is for stateless, HTTP-driven containers that need fast auto-scaling. GKE is for complex microservices needing inter-service networking, custom scheduling, or stateful workloads. If the question says "no cluster to manage" — Cloud Run.

    Storage

    Service / ClassWhat it isExam trigger phrase
    Cloud Storage StandardObject storage — frequently accessed"frequently accessed", "serving web content"
    Cloud Storage NearlineObject storage — accessed less than once/month"backup", "accessed monthly"
    Cloud Storage ColdlineObject storage — accessed less than once/quarter"DR archive", "accessed quarterly"
    Cloud Storage ArchiveLowest cost — accessed less than once/year"long-term retention", "compliance archive"
    Persistent Disk (Standard)HDD-backed block storage for VMs"sequential reads", "large data", "cost-sensitive"
    Persistent Disk (SSD)SSD block storage — lower latency"database workload", "random IO", "low latency disk"
    FilestoreManaged NFS file storage"shared file system", "NFS", "lift and shift NAS"

    Databases

    Test yourself on GCP ACE

    Practice questions graded with detailed guidance.

    Sign up freePractice now →
    ServiceTypeExam trigger phrase
    Cloud SQLManaged MySQL, PostgreSQL, SQL Server"relational", "existing MySQL/Postgres app", "managed SQL"
    Cloud SpannerGlobally distributed relational DB with ACID transactions"global scale", "relational + horizontal", "financial transactions"
    FirestoreServerless document database (NoSQL)"mobile app", "offline sync", "document database", "Firebase"
    BigtableWide-column NoSQL — petabyte scale, low latency"IoT time-series", "10ms latency", "petabyte", "HBase compatible"
    BigQueryServerless data warehouse — SQL analytics"analytics", "data warehouse", "petabyte SQL queries"
    Memorystore (Redis)Managed in-memory cache"session cache", "sub-millisecond", "Redis"

    IAM — Roles & Permissions

    Role typeExamplesWhen to use
    Primitive (basic)Owner, Editor, ViewerAvoid — too broad; legacy; not recommended for production
    Predefinedroles/storage.objectViewer, roles/compute.instanceAdminDefault choice — scoped to specific service and action
    CustomDefine exact permissions neededLeast-privilege edge cases not covered by predefined roles
    Key fact:IAM policy hierarchy: Organisation → Folder → Project → Resource. Policies are inherited downward. A DENY at a lower level cannot override an ALLOW from above — policies are additive (union). To restrict, use Deny policies (IAM Deny, distinct from IAM Allow policies).

    Practice GCP ACE questions

    The ACE exam tests service selection under constraints. Practice scenario questions to build the pattern recognition needed to choose quickly.

    Sign up freePractice now →

    Networking

    ServiceWhat it doesExam trigger phrase
    VPCGlobal virtual private network (subnets are regional)"private network", "isolate resources", "custom subnets"
    Cloud Load Balancing — Global HTTP(S)Layer 7, anycast, global"global HTTP", "SSL offload", "URL-based routing"
    Cloud Load Balancing — TCP/UDPRegional Layer 4"TCP", "non-HTTP", "regional"
    Cloud CDNCache content at Google edge nodes"static content", "reduce latency", "cache"
    Cloud Interconnect (Dedicated)Private 10G/100G circuit to Google"dedicated", "private", "not over internet"
    Cloud VPNIPsec tunnel over internet to GCP"on-premises to GCP", "encrypted", "over internet"
    Cloud NATOutbound internet for private VMs without public IPs"private VMs need internet access", "no public IP"

    Operations & Monitoring

    ServiceWhat it doesKey use
    Cloud MonitoringMetrics, dashboards, alertingUptime checks; alert policies; custom metrics
    Cloud LoggingCentralised log ingestion and storageAudit logs; log-based metrics; log sinks to BigQuery/Storage
    Cloud TraceDistributed tracing for latency analysisFind slow requests across microservices
    Cloud ProfilerContinuous CPU and memory profilingFind performance bottlenecks in running code
    Error ReportingAggregate and alert on application errorsGroup exceptions; alert on new error types

    Ready to Practice the full GCP ACE?

    Graded results, exam simulation, and detailed guidance on every question.

    Sign up freePractice now

    About this exam

    50 questions · 120 minutes · 2-year validity
    Pass mark: Not published by Google

    Quick links

    Practice examsBrowse topicsOfficial exam page

    Exam topics

    Setting Up a Cloud Solution Environment17.5%Planning & Configuring a Cloud Solution17.5%Deploying & Implementing a Cloud Solution25%Ensuring Successful Operation20%Configuring Access & Security20%

    Related reading

    Google Cloud Moves All Exams to Pearson VUE from March 2026 — What Changes for ACE Candidates

    3 min read

    GCP ACE Walkthrough: GKE Workload Identity and IAM Minimum Permissions

    5 min read

    ExpertMinds

    Ace your certifications with Practice Exams and AI assistance.

    • Browse Exams
    • For Educators
    • Blog
    • Privacy Policy
    • Terms of Service
    • Cookie Policy
    • Support
    • AWS SAA Exam Prep
    • PMI PMP Exam Prep
    • CPA Exam Prep
    • GCP PCA Exam Prep

    © 2026 TinyHive Labs. Company number 16262776.