Cyber Monday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Google Exam Associate Cloud Engineer Topic 6 Question 71 Discussion

Actual exam question for Google's Associate Cloud Engineer exam
Question #: 71
Topic #: 6
[All Associate Cloud Engineer Questions]

An external member of your team needs list access to compute images and disks in one of your projects. You want to follow Google-recommended practices when you grant the required permissions to this user. What should you do?

Show Suggested Answer Hide Answer
Suggested Answer: B

Contribute your Thoughts:

Xochitl
8 months ago
Yeah, that makes sense. We don't want to give the user more access than they actually require. Gotta keep that principle of least privilege in mind, you know?
upvoted 0 times
...
Malcom
8 months ago
Ah, I see what you mean. Option D sounds like the best choice then - create a custom role based on Compute Storage Admin, but remove any extra permissions that the external user doesn't need.
upvoted 0 times
...
Elbert
8 months ago
I agree, a custom role is the way to go. But I'm not sure if we should be adding all the compute.disks.list and compute.images.list permissions. Maybe we can base it on an existing role and then exclude any unnecessary permissions?
upvoted 0 times
...
Alease
8 months ago
Hmm, this seems like a tricky question. We need to follow the Google-recommended practices, so I think the best approach is to create a custom role with the specific permissions required, rather than just granting a broad admin role.
upvoted 0 times
...

Save Cancel