A. Policies can be applied at the folder level and are inherited by projects inside the folder.
Here's an explanation:
In Google Cloud, the resource hierarchy is structured as follows: Organization → Folders → Projects → Resources. This hierarchical structure enables organizations to implement security policies at various levels, and those policies are inherited by resources lower in the hierarchy.
Policies (such as Identity and Access Management (IAM) policies, organization policies, etc.) can be applied at the organization level, folder level, or project level. When applied at the folder level, the policies automatically apply to all projects within that folder, simplifying policy management across multiple projects.
Why the other options are incorrect:
B. Projects in the resource hierarchy are not affected by security policies.
This is incorrect. Projects can indeed be affected by security policies, especially if the policies are applied at higher levels (organization or folder level) and inherited by projects.
C. Policies can only be applied at the organization level and affect all projects.
This is incorrect. While policies can be applied at the organization level, they can also be applied at the folder or project level. Policies applied at the organization level can propagate down to all resources, but policies can also be more granularly applied at other levels.
D. Policies can only be applied to individual projects.
This is incorrect. Policies can be applied at the organization, folder, or project level, and can be inherited by resources at lower levels.
Thus, A is the correct answer because it describes the ability to apply policies at the folder level, which are then inherited by the projects inside that folder.
A: Inheritance in the Resource Hierarchy: In Google Cloud's resource hierarchy, security policies can be applied at various levels, including the organization, folder, and project levels. A key aspect of this hierarchy is the inheritance of policies. When a policy is applied at the folder level, all projects and resources within that folder automatically inherit the policy. This feature simplifies security management by allowing organizations to apply broad policies at higher levels (like folders) and have them cascade down to all contained resources and projects. This hierarchical policy management ensures that all underlying resources comply with the organization's security protocols without the need to configure each project individually.
upvoted 3 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
joshnort
12 hours, 34 minutes agojoshnort
12 hours, 33 minutes agoshanwford
1 month, 2 weeks agoVivek007
2 months, 2 weeks ago