ExamTopics Logo
Mail Us[email protected]
Menu
Google Discussions
exam questions

Exam Professional Cloud Developer All Questions

View all questions & answers for the Professional Cloud Developer exam
Go to Exam

Exam Professional Cloud Developer topic 1 question 99 discussion

Actual exam question from Google's Professional Cloud Developer
Question #: 99
Topic #: 1
[All Professional Cloud Developer Questions]

You are developing an internal application that will allow employees to organize community events within your company. You deployed your application on a single Compute Engine instance. Your company uses Google Workspace (formerly G Suite), and you need to ensure that the company employees can authenticate to the application from anywhere. What should you do?

  • A. Add a public IP address to your instance, and restrict access to the instance using firewall rules. Allow your company's proxy as the only source IP address.
  • B. Add an HTTP(S) load balancer in front of the instance, and set up Identity-Aware Proxy (IAP). Configure the IAP settings to allow your company domain to access the website.
  • C. Set up a VPN tunnel between your company network and your instance's VPC location on Google Cloud. Configure the required firewall rules and routing information to both the on-premises and Google Cloud networks.
  • D. Add a public IP address to your instance, and allow traffic from the internet. Generate a random hash, and create a subdomain that includes this hash and points to your instance. Distribute this DNS address to your company's employees.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by ParagSanyashiv at Jan. 9, 2022, 7:25 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
__rajan__
7 months, 1 week ago
Selected Answer: B
B is correct.
upvoted 1 times
...
zellck
1 year, 4 months ago
Selected Answer: B
B is the answer. https://cloud.google.com/iap/docs/concepts-overview#how_iap_works When an application or resource is protected by IAP, it can only be accessed through the proxy by principals, also known as users, who have the correct Identity and Access Management (IAM) role. When you grant a user access to an application or resource by IAP, they're subject to the fine-grained access controls implemented by the product in use without requiring a VPN. When a user tries to access an IAP-secured resource, IAP performs authentication and authorization checks.
upvoted 3 times
...
tomato123
1 year, 8 months ago
Selected Answer: B
B is correct
upvoted 2 times
...
Blueocean
2 years, 3 months ago
Option B is the best
upvoted 3 times
...
scaenruy
2 years, 3 months ago
I vote B https://cloud.google.com/blog/topics/developers-practitioners/control-access-your-web-sites-identity-aware-proxy
upvoted 3 times
...
ParagSanyashiv
2 years, 3 months ago
Selected Answer: B
B is more suitable answer, because the question states that the employee should access the application from everywhere, IAP will allow your access depending on your workspace credentials.
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago