Correct is A.
As per google best practices it is recommended to use predefined roles and create groups to control access to multiple users with same responsibility
very useful
The organization creates a Google group for these external auditors and adds the current auditor to the group. This group is monitored and is typically granted access to the dashboard application
Based on best practices, A group should be created, and both auditors should be added and predefined 'logging.viewer' and 'bigQuery.dataViewer roles will be granted.
The organization creates a Google group for these external auditors and adds the current auditor to the group. This group is monitored and is typically granted access to the dashboard application.
https://cloud.google.com/iam/docs/job-functions/auditing#scenario_external_auditors
The correct answer is A.
This option follows Google-recommended practices, because it allows you to grant auditors access to view audit logs without granting them access to other resources in your project.
The other options are not as good:
* Option B is not as good, because it requires you to create two new custom IAM roles. This can be complex and time-consuming.
* Option C is not as good, because it grants auditors access to all audit logs in your project, including audit logs for resources that they do not need access to.
* Option D is not as good, because it grants auditors access to all data in your BigQuery datasets, including data that they do not need access to.
C
Option A, which suggests adding the auditors group to predefined roles, might not be as appropriate as using individual auditor user accounts. It's generally a best practice to assign permissions to specific users rather than groups, as it provides better granularity and control over access.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
coldpar
Highly Voted 4 years, 11 months agodroogie
4 years, 8 months agorobor97
4 years, 3 months agoadeice
3 years, 11 months agoJavierCorrea
Highly Voted 4 years, 7 months agoArtistS
1 year, 4 months agotabnaz
Most Recent 2 days, 18 hours agoCloudmoh
3 weeks, 1 day agoEnamfrancis
5 months, 1 week agoSeleth
7 months agogarg.vnay
7 months, 1 week agoandreiboaghe95
8 months, 3 weeks agosinh
1 year, 1 month agosinh
1 year, 2 months agothewalker
1 year, 3 months agogsmasad
1 year, 4 months agoArtistS
1 year, 4 months agoYourCloudGuru
1 year, 5 months agoCaptain1212
1 year, 6 months agosthapit
1 year, 6 months agoExamsFR
1 year, 7 months ago