Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
exam questions

Exam Associate Cloud Engineer All Questions

View all questions & answers for the Associate Cloud Engineer exam

Exam Associate Cloud Engineer topic 1 question 106 discussion

Actual exam question from Google's Associate Cloud Engineer
Question #: 106
Topic #: 1
[All Associate Cloud Engineer Questions]

Your organization has a dedicated person who creates and manages all service accounts for Google Cloud projects. You need to assign this person the minimum role for projects. What should you do?

  • A. Add the user to roles/iam.roleAdmin role.
  • B. Add the user to roles/iam.securityAdmin role.
  • C. Add the user to roles/iam.serviceAccountUser role.
  • D. Add the user to roles/iam.serviceAccountAdmin role.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
PhilipAWS
Highly Voted 3 years, 11 months ago
Whoever say C is right answer, please read the question 1000000000 times if not understand - "Your organization has a dedicated person who creates and manages all service accounts for Google Cloud projects. " Dedicated person who creates and manages all service... Now read below; To allow a user to manage service accounts, grant one of the following roles: Service Account User (roles/iam.serviceAccountUser): Includes permissions to list service accounts, get details about a service account, and impersonate a service account. Service Account Admin (roles/iam.serviceAccountAdmin): Includes permissions to list service accounts and get details about a service account. Also includes permissions to create, update, and delete service accounts, and to view or change the IAM policy on a service account. Now look in which role mentioned "CREATE"? Obviously - roles/iam.serviceAccountAdmin....... So Answer is???? 1M% - D only
upvoted 65 times
Jhelum
2 years, 10 months ago
Calm down Jamal, don't pull out the knife...
upvoted 29 times
creativenets
1 year, 5 months ago
He's right. Calm down. Save that bomb for later.
upvoted 3 times
...
...
Romio2023
12 months ago
no, i want to choose C
upvoted 1 times
iooj
2 months, 2 weeks ago
obviously C - 1B%
upvoted 1 times
...
...
...
SIX
Highly Voted 4 years, 5 months ago
The right answer is D.
upvoted 42 times
...
kelliot
Most Recent 12 months ago
Selected Answer: D
No doubt, is D
upvoted 2 times
...
thewalker
1 year ago
Selected Answer: D
D As per the documentation: https://cloud.google.com/iam/docs/understanding-roles#iam.serviceAccountUser https://cloud.google.com/iam/docs/understanding-roles#iam.serviceAccountAdmin
upvoted 2 times
...
BAofBK
1 year ago
The correct answer is D
upvoted 1 times
...
scanner2
1 year, 2 months ago
Selected Answer: D
roles/iam.serviceAccountAdmin --> Create and manage service accounts. https://cloud.google.com/iam/docs/understanding-roles#iam.serviceAccountAdmin roles/iam.serviceAccountUser --> Run operations as the service account. https://cloud.google.com/iam/docs/understanding-roles#iam.serviceAccountUser
upvoted 3 times
...
Captain1212
1 year, 2 months ago
Selected Answer: D
D is the right answer, as the persnon needs to create also
upvoted 1 times
...
Neha_Pallavi
1 year, 3 months ago
D.Service Account Admin (roles/iam.serviceAccountAdmin): Includes permissions to list service accounts and get details about a service account. Also includes permissions to create, update, and delete service accounts, and to view or change the IAM policy on a service account.
upvoted 2 times
...
AzureDP900
2 years, 5 months ago
dedicated person who creates and manages all service accounts is key world makes me select D as right answer.
upvoted 1 times
...
haroldbenites
2 years, 5 months ago
Go for D
upvoted 1 times
...
luciorifa
2 years, 9 months ago
D is the correct answer
upvoted 1 times
...
Priyankahere
2 years, 10 months ago
This was there in exam, go with community answers.
upvoted 2 times
...
kped21
2 years, 10 months ago
D - ServiceAccountUser has no privs on ServiceAccounts so C is wrong.
upvoted 1 times
...
jaffarali
2 years, 11 months ago
D is the right option
upvoted 1 times
...
sharmamohitkr700
2 years, 11 months ago
Selected Answer: D
To allow a user to manage service accounts, grant one of the following roles: Service Account User (roles/iam.serviceAccountUser): Includes permissions to list service accounts, get details about a service account, and impersonate a service account. Service Account Admin (roles/iam.serviceAccountAdmin): Includes permissions to list service accounts and get details about a service account. Also includes permissions to create, update, and delete service accounts, and to view or change the IAM policy on a service account.
upvoted 4 times
...
alaahakim
3 years ago
Selected Answer: D
D is Correct
upvoted 2 times
...
TenshiD
3 years ago
Selected Answer: D
D is correct.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...