Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Google Exam Professional Cloud Security Engineer Topic 1 Question 93 Discussion

Actual exam question for Google's Professional Cloud Security Engineer exam
Question #: 93
Topic #: 1
[All Professional Cloud Security Engineer Questions]

You are setting up a new Cloud Storage bucket in your environment that is encrypted with a customer managed encryption key (CMEK). The CMEK is stored in Cloud Key Management Service (KMS). in project "pr j -a", and the Cloud Storage bucket will use project "prj-b". The key is backed by a Cloud Hardware Security Module (HSM) and resides in the region europe-west3. Your storage bucket will be located in the region europe-west1. When you create the bucket, you cannot access the key. and you need to troubleshoot why.

What has caused the access issue?

Show Suggested Answer Hide Answer
Suggested Answer: D

When you use a customer-managed encryption key (CMEK) to secure a Cloud Storage bucket, the key and the bucket must be located in the same region. In this case, the key is in europe-west3 and the bucket is in europe-west1, which is why you're unable to access the key.


by Julio at Oct 23, 2024, 05:48 AM

Limited Time Offer

25%

Off

Get Premium Professional Cloud Security Engineer Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Eileen
3 months ago
I bet the real problem is that the CMEK is stored in a region called 'europe-west3', and the bucket is like 'Dude, I'm in 'europe-west1', you can't expect me to just teleport over there and grab the key, can you?'
upvoted 0 times
...
Annita
3 months ago
Hmm, maybe the real issue is that the CMEK is stored in a Cloud 'Hardware' Security Module, and the bucket is like 'Yo, where's the software version, man?' Gotta be on the same wavelength, you know?
upvoted 0 times
Fanny
2 months ago
Yeah, it seems like the key and bucket need to be in sync for access.
upvoted 0 times
...
Bethanie
2 months ago
D) The CMEK is in a different region than the Cloud Storage bucket.
upvoted 0 times
...
Roslyn
3 months ago
C) The CMEK is in a different project than the Cloud Storage bucket
upvoted 0 times
...
Nettie
3 months ago
A) A firewall rule prevents the key from being accessible.
upvoted 0 times
...
...
Vincenza
4 months ago
Ah, the old 'different project, different region' problem. Classic Cloud Storage setup headache. I'd say C is the way to go, my dudes.
upvoted 0 times
Lonna
3 months ago
D) The CMEK is in a different region than the Cloud Storage bucket.
upvoted 0 times
...
Rosina
3 months ago
Yeah, that makes sense. Different projects can cause access issues.
upvoted 0 times
...
Nenita
3 months ago
C) The CMEK is in a different project than the Cloud Storage bucket
upvoted 0 times
...
Shasta
3 months ago
A) A firewall rule prevents the key from being accessible.
upvoted 0 times
...
...
Sol
4 months ago
Ah, I got it! The answer is C. Gotta have that CMEK in the same project as the bucket, duh. Rookie mistake, really.
upvoted 0 times
Corazon
3 months ago
Definitely a rookie mistake, but now we know for next time.
upvoted 0 times
...
Matt
3 months ago
Exactly, once the CMEK is in the same project, we should be able to access it when creating the bucket.
upvoted 0 times
...
Mariann
3 months ago
So, we need to move the CMEK to project 'prj-b' to resolve the access issue.
upvoted 0 times
...
Mozell
3 months ago
That's why we can't access the key when creating the bucket in a different project.
upvoted 0 times
...
Harley
3 months ago
That's why we can't access the key when creating the bucket in a different project.
upvoted 0 times
...
Reena
3 months ago
Yeah, you're right. The CMEK needs to be in the same project as the bucket.
upvoted 0 times
...
Jean
4 months ago
Yeah, you're right. The CMEK needs to be in the same project as the bucket.
upvoted 0 times
...
...
Tayna
4 months ago
Woah, this is a tricky one. I'm going with D, the CMEK is in a different region. That's gotta be the issue, right?
upvoted 0 times
...
Catina
4 months ago
I agree with Xochitl. The key needs to be in the same project as the bucket for access.
upvoted 0 times
...
Dorothy
4 months ago
Hmm, I think the answer is C. The CMEK is in a different project than the Cloud Storage bucket, so the bucket can't access it. Simple as that!
upvoted 0 times
Juliann
3 months ago
Exactly. Once that's done, the access issue should be resolved.
upvoted 0 times
...
Valentin
3 months ago
So, we need to make sure the CMEK is moved to the same project as the Cloud Storage bucket.
upvoted 0 times
...
Kenny
4 months ago
That makes sense. The key needs to be in the same project as the bucket for it to work properly.
upvoted 0 times
...
Melda
4 months ago
I think the answer is C. The CMEK is in a different project than the Cloud Storage bucket, so the bucket can't access it.
upvoted 0 times
...
...
Xochitl
5 months ago
I think the issue is that the CMEK is in a different project than the Cloud Storage bucket.
upvoted 0 times
...

Save Cancel