Google Exam Professional Cloud Architect Topic 12 Question 12 Discussion

Actual exam question for Google's Professional Cloud Architect exam

Question #: 12
Topic #: 12

[All Professional Cloud Architect Questions]

Your company is using Google Cloud. You have two folders under the Organization: Finance and Shopping. The members of the development team are in a Google Group. The development team group has been assigned the Project Owner role on the Organization. You want to prevent the development team from creating resources in projects in the Finance folder. What should you do?

AAssign the development team group the Project Viewer role on the Finance folder, and assign the development team group the Project Owner role on the Shopping folder.

BAssign the development team group only the Project Viewer role on the Finance folder.

CAssign the development team group the Project Owner role on the Shopping folder, and remove the development team group Project Owner role from the Organization.

DAssign the development team group only the Project Owner role on the Shopping folder.

Show Suggested Answer

Suggested Answer: C

https://cloud.google.com/resource-manager/docs/cloud-platform-resource-hierarchy

'Roles are always inherited, and there is no way to explicitly remove a permission for a lower-level resource that is granted at a higher level in the resource hierarchy. Given the above example, even if you were to remove the Project Editor role from Bob on the 'Test GCP Project', he would still inherit that role from the 'Dept Y' folder, so he would still have the permissions for that role on 'Test GCP Project'.'

by Ryan at May 07, 2022, 07:19 AM

Limited Time Offer

25%

Off

Get Premium Professional Cloud Architect Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!