gcloud Commands

Question 1

What is the basic command syntax?

Answer 1

Format: gcloud [GROUP] [GROUP] [COMMAND] –arguments Example: gcloud compute instances create instance-1 –zone us-central1-a

Question 2

Create a new project and set it as the default

black-butterfly-4450 is the project ID (must be globally unique)
black-butterfly is the project name (must be unique in your account)

Answer 2

gcloud projects create black-butterfly-4450 \
–name black-butterfly \
–set-as-default

Question 3

What are the different groups of commands for the group argument?
gcloud “group” command arg

Answer 3

config
iam
auth
storage
kubernetes
compute instances
Compute networks
components
deployments - Deployment Manager

Question 4

Set a default project
black-butterfly-4450

Answer 4

gcloud config set core/project black-butterfly-4450
You must specify the project ID (globally unique) not the project name.

Question 5

Set a default compute region and zone

Answer 5

gcloud config set compute/region europe-west6
gcloud config set compute/zone europe-west6-a

Question 6

Disable interactive prompts

Answer 6

gcloud config set core/disable_prompts 1
Disables all interactive prompts, for example, when deleting resources.

Question 7

List the current CLI configuration

Answer 7

gcloud config list

Question 8

Create a VPC network without any subnets

Answer 8

gcloud compute networks create my-vpc –subnet-mode custom
A VPC network is is global. Subnets are regional.

Question 9

Manually create a subnet

Answer 9

gcloud compute networks subnets create my-subnet-1 \
–network my-vpc \
–range 10.240.0.0/24

Question 10

Create a VPC network with automatic subnets

Answer 10

gcloud compute networks create my-vpc
Automatically creates a subnet in every region.

Subnets have a */20 CIDR range (e.g. 10.128.0.0/20).

Question 11

Get all subnets of a VPC network

Answer 11

gcloud compute networks subnets list –filter=”network:my-vpc”

Question 12

What are gcloud CLI properties?

Answer 12

The gcloud CLI properties are settings that affect the behavior of the gcloud CLI tools. Some of these properties can be set by either global or command options—in which case, the value set by the option takes precedence.

Question 13

What is a gcloud configuration?

Answer 13

A configuration is a set of gcloud CLI properties.
A configuration works like a profile.

Question 14

What is the gcloud default configuration?

Answer 14

When you start using the gcloud CLI, you’ll work with a single configuration named default and you can set properties by running gcloud init or gcloud config set. This single default configuration is suitable for most use cases.

Question 15

How can you work with multiple projects or authorization accounts?

Answer 15

You can set up multiple configurations with gcloud config configurations create and switch among the configurations. Within a configuration, you can customize properties. For example, to set your project within an active configuration use the project property:

gcloud config set project <project-id></project-id>

Question 16

How can you control prompting?

Answer 16

To protect against unintended destructive actions, the gcloud CLI confirms your intentions before executing commands such as gcloud projects delete.

You might be prompted when additional information is needed. For example you will be asked to choose a zone when you create a Compute Engine virtual machine instance using gcloud compute instances create test-instance.

To disable prompting, use the –quiet option.

Question 17

What is a gcloud CLI Component?

Answer 17

Components are the installable parts of the Google Cloud CLI. A component can be a command-line tool (gcloud, bq, and gsutil), a set of gcloud CLI commands at the Alpha or Beta release levels, or a package that contains dependencies used by a tool in the gcloud CLI.

Question 18

What can you do with gcloud CLI Components?

Answer 18

Managing gcloud CLI components
You can list, install, update, and remove gcloud CLI components to suit your needs.

Question 19

How can your personalize your gcloud CLI environment?

Answer 19

personalize your configuration with properties.

gcloud config set: Define a property (like compute/zone) for the current configuration.
gcloud config get-value: Fetch the value of a gcloud CLI property.
gcloud config list: Display all the properties for the current configuration.
gcloud config configurations create: Create a new named configuration.
gcloud config configurations list: Display a list of all available configurations.
gcloud config configurations activate: Switch to an existing named configuration

Question 20

To see a list of components that are available and currently installed, run?

Answer 20

gcloud components list

Question 21

To install a component at the current version of your gcloud CLI installation, run?

Answer 21

run gcloud components install:
gcloud components install [COMPONENT-ID]

Question 22

Grant and revoke authorization to the gcloud CLI and manage credentials use these commands?

Answer 22

gcloud auth login: Authorize Google Cloud access for the gcloud CLI with Google Cloud user credentials and set the current account as active.
gcloud auth activate-service-account: Authorize Google Cloud access similar to gcloud auth login but with service account credentials.
gcloud auth application-default: Manage your Application Default Credentials (ADC) for Cloud Client Libraries.
gcloud auth list: List all credentialed accounts.
gcloud auth print-access-token: Display the current account’s access token.
gcloud auth revoke: Remove access credentials for an account.

Question 23

Configuring Identity and Access Management (IAM) preferences and service accounts.

Answer 23

gcloud iam list-grantable-roles: List IAM grantable roles for a resource.
gcloud iam roles create: Create a custom role for a project or org.
gcloud iam service-accounts create: Create a service account for a project.
gcloud iam service-accounts add-iam-policy-binding: Add an IAM policy binding to a service account.
gcloud iam service-accounts set-iam-policy-binding: Replace existing IAM policy binding.
gcloud iam service-accounts keys list: List a service account’s keys.

Question 24

What commands would you use to manage docker containers and GKE?

Answer 24

gcloud auth configure-docker: Register the gcloud CLI as a Docker credential helper.
gcloud container clusters create: Create a cluster to run GKE containers.
gcloud container clusters list: List clusters for running GKE containers.
gcloud container clusters get-credentials: Update kubeconfig to get kubectl to use a GKE cluster.
gcloud container images list-tags: List tag and digest metadata for a container image.

Question 25

What commands would you use to create, run, and manage VMs on Google Cloud infrastructure?

Answer 25

gcloud compute zones list: List Compute Engine zones. gcloud compute instances create: Create a VM instance. gcloud compute instances describe: Display a VM instance's details. gcloud compute instances list: List all VM instances in a project. gcloud compute disks snapshot: Create snapshot of persistent disks. gcloud compute snapshots describe: Display a snapshot's details. gcloud compute snapshots delete: Delete a snapshot. gcloud compute ssh: Connect to a VM instance by using SSH.

Question 26

Serverless & App Engine Build highly scalable applications on a fully managed serverless platform

Answer 26

gcloud app deploy: Deploy your app's code and configuration to the App Engine server. gcloud app versions list: List all versions of all services deployed to the App Engine server. gcloud app browse: Open the current app in a web browser. gcloud app create: Create an App Engine app within your current project. gcloud app logs read: Display the latest App Engine app logs.

Question 27

Get all subnets of a VPC network, "my-vpc"

Answer 27

gcloud compute networks subnets list --filter="network:my-vpc"

Question 28

Create a compute instance with a specific machine type, n1-standard-2

Answer 28

gcloud compute instances create i1 --machine-type=n1-standard-2 👉 Machine types 👈 Default machine type is n1-standard-1 (1 CPU, 3.75 GB RAM) Instance name argument can be repeated to create multiple instances

Question 29

Create a compute instance in a specific VPC network and subnet

Answer 29

gcloud compute instances create i1 \ --network my-vpc \ --subnet my-subnet-1 Default VPC network is default If --network is set to a VPC network with “custom” subnet mode, then --subnet must also be specified Instance name argument can be repeated to create multiple instances

Question 30

Create a compute instance with a specific OS image

Answer 30

gcloud compute instances create i1 \ --image-family ubuntu-1804-lts \ --image-project ubuntu-os-cloud

Question 31

How does gcloud compute instance handle images?

Answer 31

👉 Images 👈 Default image family is debian-9 User either --image-family (uses latest image of this family) or --image (a concrete image) --image-project serves as a namespace for --image and --image-family(may have multiple images/image families with same name in multiple projects)

Question 32

List all available images (including projects and families) with:

Answer 32

gcloud compute images list

Question 33

Get the names of all compute instances

Answer 33

gcloud compute instances list --format="value(name)" 👉 Format syntax 👈 Can be used, for example, for deleting all existing compute instances: gcloud compute instances delete \ $(gcloud compute instances list --format="value(na

Question 34

Allow ingress traffic to a VPC network

Answer 34

gcloud compute firewall-rules create my-vpc-allow-ssh-icmp \ --network my-vpc \ --allow tcp:22,icmp \ --source-ranges 0.0.0.0/0 0.0.0.0/0 is the default for --source-ranges and could be omitted. This allows incoming ICMP and SSH (TCP port 22) traffic to any instances in the VPC network from any source (e.g. from the public Internet). After creating this firewall rule, you’re able to: Ping instances in the VPC network: ping EXTERNAL_IP SSH to instances in the VPC network: gcloud compute ssh i1

Question 35

Create a regional static IP address

Answer 35

gcloud compute addresses create addr-1 --region=europe-west6 Regional IP addresses an be attached to compute instances, regional load balancers, etc. in the same region as the IP address. The name argument can be repeated to create multiple addresses One of --global or --region must be specified.

Question 36

What is a standard grouping for gcloud commands?

Answer 36

gcloud GROUP | COMMAND [--account=ACCOUNT] [--billing-project=BILLING_PROJECT] [--configuration=CONFIGURATION] [--flags-file=YAML_FILE] [--flatten=[KEY,…]] [--format=FORMAT] [--help] [--project=PROJECT_ID] [--quiet, -q]

Question 37

What are some gcloud flags for a command?

Answer 37

Some flags are available throughout the gcloud experience, like: --project If using a project other than the current one --quiet Disable interactive prompts (and apply default values for inputs) --verbosity Can set verbosity levels at , , , , , debug info warning error critical none --version Display gcloud version information (only available at the global level) --format Set output format as , , , , , , , , , , , , , , , or . conf

Question 38

Most gcloud instances follow what format?

Answer 38

gcloud component entity operation positional args flags Where: Component refers to different Google Cloud services Entity refers to the plural form of an element or collection of elements under a component Operation refers to the imperative verb form of the operation to be performed on the entity Positional args refer to the required, order-specific arguments needed to execute the command Flags refer to the additional arguments, --flag-name(=value) passed in to the command after positional args disks firewalls images instances regions , , , , , for zones compute

Question 39

Define a property (like compute/zone) for current configuration

Answer 39

gcloud config set

Question 40

Fetch value of a gcloud CLI property

Answer 40

gcloud config get value

Question 41

Display all the properties for the current configuration

Answer 41

gcloud config list

Question 42

Create a new named configuration

Answer 42

gcloud config configurations create

Question 43

Authorize access for gcloud with Google user credentials and set current account as active

Answer 43

gcloud auth login

Question 44

Like gcloud auth login but with service account credentials

Answer 44

gcloud auth activate-service-account

Question 45

List all credentialed accounts

Answer 45

gcloud auth list

Question 46

Display the current account’s access token

Answer 46

gcloud auth print-access-token

Question 47

Remove access credentials for an account

Answer 47

gcloud auth revoke

Question 48

Display metadata for a project (including its ID)

Answer 48

gcloud projects describe

Question 49

Add an IAM policy binding to a project

Answer 49

gcloud projects add-iam-policy-binding

Question 50

What is the difference between flags and arguments?

Answer 50

Arguments can be , which are set after command name and must respect the order of positional args or , which are set after positional args where the order of flags doesn’t matter. positional args flags A flag is either a (--foo=bar) or (--force/no force). Additionally, flags can either be force or optional When optional, the default value is used if the flag isn’t defined.

Question 51

gcloud auth login

Answer 51

Authorize access for gcloud with Google user credentials and set current account as active

Question 52

Like gcloud auth login but with service account credentials gcloud auth list

Answer 52

gcloud auth activate-service-account

Question 53

List all credentialed accounts

Answer 53

gcloud auth list

Question 54

Display the current account’s access token

Answer 54

gcloud auth print-access-token

Question 55

Remove access credentials for an account

Answer 55

gcloud auth revoke

Question 56

Display metadata for a project (including its ID)

Answer 56

gcloud projects describe

Question 57

Add an IAM policy binding to a project

Answer 57

gcloud projects add-iam-policy-binding

Question 58

Register gcloud as a Docker credential helper

Answer 58

gcloud auth configure-docker

Question 59

Create a cluster to run GKE containers

Answer 59

gcloud container clusters create

Question 60

List clusters to run GKE containers

Answer 60

gcloud container clusters list

Question 61

Update kubeconfig to get kubectl to use a GKE cluster

Answer 61

gcloud container clusters get-credentials

Question 62

List tag and digest metadata for a container image

Answer 62

gcloud container images list-tags

Question 63

List IAM grantable roles for a resource

Answer 63

gcloud iam list-grantable-roles

Question 64

Create a custom role for a project or org

Answer 64

gcloud iam roles create

Question 65

Create a service account for a project

Answer 65

gcloud iam service-accounts create

Question 66

List a service account’s keys

Answer 66

gcloud iam service-accounts keys list

Question 67

Add an IAM policy to a service account

Answer 67

gcloud iam service-accounts add-iam-policy-binding

Question 68

Replace existing IAM policy

Answer 68

gcloud iam service-accounts set-iam-policy

Question 69

List Compute Engine zones

Answer 69

gcloud compute zones list

Question 70

Display a virtual machine (VM) instance’s details

Answer 70

gcloud compute instances describe

Question 71

gcloud compute instances list

Answer 71

List all VM instances in a project

Question 72

Create snapshot of persistent disks

Answer 72

gcloud compute disks snapshot

Question 73

Display a specified snapshot’s details

Answer 73

gcloud compute snapshots describe

Question 74

Delete a snapshot

Answer 74

gcloud compute snapshots delete

Question 75

Connect to a VM instance by using SSH

Answer 75

gcloud compute ssh

Question 76

Deploy your app’s code and configuration to App Engine server

Answer 76

gcloud app deploy

Question 77

List all versions of all services deployed to the App Engine server

Answer 77

gcloud app versions list

Question 78

Open the current app in a web browser

Answer 78

gcloud app browse

Question 79

Create an App Engine app within your current project

Answer 79

gcloud app create

Question 80

Display the latest App Engine app logs

Answer 80

gcloud app logs read

Question 81

Show the organization?

Answer 81

gcloud organizations list

Question 82

What are config command group for in gcloud?

Answer 82

view and edit Google Cloud CLI properties SYNOPSIS gcloud config GROUP | COMMAND [GCLOUD_WIDE_FLAG …] DESCRIPTION The gcloud config command group lets you set, view and unset properties used by Google Cloud CLI. A configuration is a set of properties that govern the behavior of gcloud and other Google Cloud CLI tools. The initial default configuration is set when gcloud init is run. You can create additional named configurations using gcloud init or gcloud config configurations create.

Question 83

What are the available gcloud config cli commands?

Answer 83

COMMAND is one of the following: get Print the value of a Google Cloud CLI property. list List Google Cloud CLI properties for the currently active configuration. set Set a Google Cloud CLI property. unset Unset a Google Cloud CLI property.

Question 84

get project roles

Answer 84

gcloud projects get-iam-policy

Question 85

copy roles across org and projects

Answer 85

gcloud iam roles copy

Question 86

List all buckets and files

Answer 86

gsutil ls, gsutil ls -lh gs://

Question 87

Create bucket

Answer 87

gsutil mb gs://

Question 88

Download file

Answer 88

gsutil cp gs:////app.txt

Question 89

Upload file

Answer 89

gsutil cp gs:////

Question 90

Delete file

Answer 90

gsutil rm gs:///

Question 91

Move file gsutil

Answer 91

mv gs:////

Question 92

List all networks

Answer 92

gcloud compute networks list

Question 93

Detail of one network

Answer 93

gcloud compute networks describe --format json

Question 94

How to create a network

Answer 94

gcloud compute networks create

Question 95

Create subnet

Answer 95

gcloud compute networks subnets create subnet1 --network subnet-1 --range 10.0.0.0/24

Question 96

List all firewall rules

Answer 96

gcloud compute firewall-rules list

Question 97

List all forwarding rules

Answer 97

gcloud compute forwarding-rules list

Question 98

Create a signed URL for downloading an object valid for 10 minutes?

Answer 98

gsutil signurl -d 10m gs:///