Google Exam Professional Cloud Architect Topic 10 Question 57 Discussion

Actual exam question for Google's Professional Cloud Architect exam

Question #: 57
Topic #: 10

[All Professional Cloud Architect Questions]

Your company has just recently activated Cloud Identity to manage users. The Google Cloud Organization has been configured as wed. The security learn needs to secure protects that will be part of the Organization. They want to prohibit IAM users outside the domain from gaining permissions from now on. What should they do?

AConfigure an organization policy to restrict identities by domain

BConfigure an organization policy to block creation of service accounts

CConfigure Cloud Scheduler o trigger a Cloud Function every hour that removes all users that don't belong to the Cloud identity domain from all projects.

DCreate a technical user (e g . crawler@yourdomain com), and give it the protect owner rote at root organization level Write a bash script that
* Lists all me IAM rules of all projects within the organization
* Deletes all users that do not belong to the company domain
Create a Compute Engine instance m a project within the Organization and configure gcloud to be executed with technical user credentials Configure a cron job that executes the bash script every hour.

Show Suggested Answer

Suggested Answer: A

by Vallie at Sep 17, 2022, 12:01 PM

Limited Time Offer

25%

Off

Get Premium Professional Cloud Architect Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!