ExamTopics Logo
Mail Us[email protected]
Menu
Google Discussions
exam questions

Exam Professional Cloud Architect All Questions

View all questions & answers for the Professional Cloud Architect exam
Go to Exam

Exam Professional Cloud Architect topic 1 question 171 discussion

Actual exam question from Google's Professional Cloud Architect
Question #: 171
Topic #: 1
[All Professional Cloud Architect Questions]

Your company has a Google Workspace account and Google Cloud Organization. Some developers in the company have created Google Cloud projects outside of the Google Cloud Organization.
You want to create an Organization structure that allows developers to create projects, but prevents them from modifying production projects. You want to manage policies for all projects centrally and be able to set more restrictive policies for production projects.
You want to minimize disruption to users and developers when business needs change in the future. You want to follow Google-recommended practices. Now should you design the Organization structure?

  • A. 1. Create a second Google Workspace account and Organization. 2. Grant all developers the Project Creator IAM role on the new Organization. 3. Move the developer projects into the new Organization. 4. Set the policies for all projects on both Organizations. 5. Additionally, set the production policies on the original Organization.
  • B. 1. Create a folder under the Organization resource named ג€Production.ג€ 2. Grant all developers the Project Creator IAM role on the new Organization. 3. Move the developer projects into the new Organization. 4. Set the policies for all projects on the Organization. 5. Additionally, set the production policies on the ג€Productionג€ folder.
  • C. 1. Create folders under the Organization resource named ג€Developmentג€ and ג€Production.ג€ 2. Grant all developers the Project Creator IAM role on the ג€Developmentג€ folder. 3. Move the developer projects into the ג€Developmentג€ folder. 4. Set the policies for all projects on the Organization. 5. Additionally, set the production policies on the ג€Productionג€ folder.
  • D. 1. Designate the Organization for production projects only. 2. Ensure that developers do not have the Project Creator IAM role on the Organization. 3. Create development projects outside of the Organization using the developer Google Workspace accounts. 4. Set the policies for all projects on the Organization. 5. Additionally, set the production policies on the individual production projects.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by StelSen at Dec. 28, 2021, 3:19 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
cloudmon
Highly Voted 1 year, 8 months ago
Selected Answer: C
C, because managing multiple organizations is not a Google best practice
upvoted 14 times
...
devnul
Most Recent 4 months ago
the requirement is "...You want to manage policies for all projects centrally..." With multiple organizations that wont be possible as you would have to set policies on multiple organizations. Therefore I opt for "C".
upvoted 1 times
...
aaa7
5 months, 3 weeks ago
for everyone commenting that multiple organizations is bad practice according to google check https://cloud.google.com/architecture/identity/best-practices-for-planning
upvoted 3 times
cerveza7
3 weeks, 5 days ago
"The right number of organizations to use depends on the number of independent groups of administrative users in your company: - If your company is organized by function, you might have a single department that's in charge of overseeing all Google Cloud deployments. - If your company is organized by division or owns a number of autonomously-run subsidiaries, then there might not be a single department that's in charge. No divisions is mentioned in the questions. Developer is a function.
upvoted 1 times
...
...
AugustoKras011111
10 months, 1 week ago
Selected Answer: C
C, Bcuz manage multiple organizations is not a Google best practice
upvoted 1 times
...
OttomanSheikhIran
11 months, 3 weeks ago
clearly C. Two orgs is a BAD practice
upvoted 1 times
...
omermahgoub
1 year ago
I would recommend option C, creating two folders under the Organization resource named "Development" and "Production" and placing developer and production projects in the respective folders. This approach would allow you to centrally manage policies for all projects, while also being able to set more restrictive policies for production projects. It would also allow you to easily move projects between the Development and Production folders as business needs change, without disrupting users or developers. Option D, designating the Organization for production projects only, would not allow developers to create projects within the Organization and could lead to confusion around project ownership and management. It would also make it more difficult to move projects between development and production environments.
upvoted 3 times
omermahgoub
1 year ago
Option A, creating a second Google Workspace account and Organization, would not be a recommended practice as it would create unnecessary complexity and make it more difficult to manage policies and move projects between environments. Option B, creating a single folder under the Organization resource and placing all projects in that folder, would not allow you to set different policies for development and production projects.
upvoted 1 times
...
...
surajkrishnamurthy
1 year ago
Selected Answer: C
C Is the Correct Answer
upvoted 1 times
...
ashrafh
1 year, 1 month ago
all 4 answers seems stupid
upvoted 2 times
...
megumin
1 year, 1 month ago
Selected Answer: C
C is ok
upvoted 1 times
...
AzureDP900
1 year, 2 months ago
C is the best option
upvoted 2 times
...
6721sora
1 year, 3 months ago
Selected Answer: C
C is Ok
upvoted 2 times
...
cloudinit
1 year, 4 months ago
Selected Answer: C
I don't think anyone can create projects outside the organization using the workspace account as it redirects the users into the organization.
upvoted 2 times
...
gardislan18
1 year, 5 months ago
Answer is C A - you only want to create and Organization structure not Google Workspace B - best practice is to move your projects to a folders D - developers are allowed to create projects
upvoted 1 times
...
szefco
1 year, 5 months ago
Selected Answer: C
C makes most sense in this scenario
upvoted 1 times
...
amxexam
1 year, 7 months ago
Selected Answer: D
D is better than C.
upvoted 1 times
...
sjmsummer
1 year, 11 months ago
Selected Answer: C
C seems to be more organized solution than D.
upvoted 3 times
...
technodev
1 year, 12 months ago
Selected Answer: C
I would go with C
upvoted 2 times
...
Load full discussion...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago