ExamTopics Logo
Mail Us[email protected]
Menu
Google Discussions
exam questions

Exam Professional Cloud Security Engineer All Questions

View all questions & answers for the Professional Cloud Security Engineer exam
Go to Exam

Exam Professional Cloud Security Engineer topic 1 question 91 discussion

Actual exam question from Google's Professional Cloud Security Engineer
Question #: 91
Topic #: 1
[All Professional Cloud Security Engineer Questions]

You need to provide a corporate user account in Google Cloud for each of your developers and operational staff who need direct access to GCP resources.
Corporate policy requires you to maintain the user identity in a third-party identity management provider and leverage single sign-on. You learn that a significant number of users are using their corporate domain email addresses for personal Google accounts, and you need to follow Google recommended practices to convert existing unmanaged users to managed accounts.
Which two actions should you take? (Choose two.)

  • A. Use Google Cloud Directory Sync to synchronize your local identity management system to Cloud Identity.
  • B. Use the Google Admin console to view which managed users are using a personal account for their recovery email.
  • C. Add users to your managed Google account and force users to change the email addresses associated with their personal accounts.
  • D. Use the Transfer Tool for Unmanaged Users (TTUU) to find users with conflicting accounts and ask them to transfer their personal Google accounts.
  • E. Send an email to all of your employees and ask those users with corporate email addresses for personal Google accounts to delete the personal accounts immediately.
Show Suggested Answer Hide Answer
Suggested Answer: AD 🗳️
by lordb at Sept. 18, 2020, 6:04 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
VicF
Highly Voted 3 years ago
A&D. A- Requires third-party IDp and wants to leverage single sign-on. D- https://cloud.google.com/architecture/identity/migrating-consumer-accounts#initiating_a_transfer "In addition to showing you all unmanaged accounts, the transfer tool for unmanaged users lets you initiate an account transfer by sending an account transfer request."
upvoted 17 times
...
skshak
Highly Voted 3 years, 7 months ago
Is the answer is A,D A - Requirement is third-party identity management provider and leverage single sign-on. D - https://cloud.google.com/architecture/identity/assessing-existing-user-accounts (Use the transfer tool for unmanaged users to identify consumer accounts that use an email address that matches one of the domains you've added to Cloud Identity or G Suite.)
upvoted 8 times
...
dsafeqf
Most Recent 7 months ago
C, D are correct - https://cloud.google.com/architecture/identity/assessing-existing-user-accounts
upvoted 1 times
...
Littleivy
1 year, 5 months ago
Selected Answer: AD
A to sync IdP D to transfer unmanaged accounts
upvoted 3 times
...
AzureDP900
1 year, 5 months ago
AD is right
upvoted 2 times
...
AwesomeGCP
1 year, 6 months ago
Selected Answer: AD
A. Use Google Cloud Directory Sync to synchronize your local identity management system to Cloud Identity. D. Use the Transfer Tool for Unmanaged Users (TTUU) to find users with conflicting accounts and ask them to transfer their personal Google accounts.
upvoted 4 times
...
cloudprincipal
1 year, 11 months ago
Selected Answer: AD
see other comments
upvoted 3 times
...
sudarchary
2 years, 3 months ago
Answers are: A&C https://cloud.google.com/architecture/identity/assessing-existing-user-accounts
upvoted 1 times
...
CloudTrip
3 years, 2 months ago
The keyword is here "convert" follow Google recommended practices to convert existing unmanaged users to managed accounts. So why sync unmanaged with Cloud Identity. I would prefer Answers C and D
upvoted 2 times
ThisisJohn
2 years, 4 months ago
But dont forget about "Corporate policy requires you to maintain the user identity in a third-party identity management provider". I believe that makes it A and D
upvoted 1 times
...
...
mikelabs
3 years, 5 months ago
Answer is C,D. From GSuite Console you can do both.
upvoted 2 times
...
[Removed]
3 years, 6 months ago
Ans - AD
upvoted 4 times
[Removed]
3 years, 6 months ago
https://cloud.google.com/architecture/identity/migrating-consumer-accounts#initiating_a_transfer
upvoted 7 times
...
...
saurabh1805
3 years, 6 months ago
A, D is correct answer
upvoted 4 times
...
lordb
3 years, 7 months ago
https://cloud.google.com/architecture/identity/assessing-existing-user-accounts
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago