ExamTopics Logo
Mail Us[email protected]
Menu
Google Discussions
exam questions

Exam Professional Cloud Developer All Questions

View all questions & answers for the Professional Cloud Developer exam
Go to Exam

Exam Professional Cloud Developer topic 1 question 97 discussion

Actual exam question from Google's Professional Cloud Developer
Question #: 97
Topic #: 1
[All Professional Cloud Developer Questions]

You are a SaaS provider deploying dedicated blogging software to customers in your Google Kubernetes Engine (GKE) cluster. You want to configure a secure multi-tenant platform to ensure that each customer has access to only their own blog and can't affect the workloads of other customers. What should you do?

  • A. Enable Application-layer Secrets on the GKE cluster to protect the cluster.
  • B. Deploy a namespace per tenant and use Network Policies in each blog deployment.
  • C. Use GKE Audit Logging to identify malicious containers and delete them on discovery.
  • D. Build a custom image of the blogging software and use Binary Authorization to prevent untrusted image deployments.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by Blueocean at Jan. 22, 2022, 4:05 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Blueocean
Highly Voted 2 years, 3 months ago
Option B is correct https://cloud.google.com/kubernetes-engine/docs/concepts/multitenancy-overview
upvoted 7 times
...
__rajan__
Most Recent 7 months, 1 week ago
Selected Answer: B
This approach involves creating a separate namespace for each customer (tenant) and using Network Policies to enforce isolation between the namespaces. By deploying a namespace per tenant, you can ensure that each customer has access only to their own blog and cannot affect the workloads of other customers.
upvoted 2 times
...
maxdanny
8 months, 1 week ago
Selected Answer: B
https://cloud.google.com/kubernetes-engine/docs/concepts/multitenancy-overview
upvoted 1 times
...
zellck
1 year, 4 months ago
Selected Answer: B
B is the answer. https://cloud.google.com/kubernetes-engine/docs/concepts/multitenancy-overview#what_is_multi-tenancy Although Kubernetes cannot guarantee perfectly secure isolation between tenants, it does offer features that may be sufficient for specific use cases. You can separate each tenant and their Kubernetes resources into their own namespaces. You can then use policies to enforce tenant isolation. Policies are usually scoped by namespace and can be used to restrict API access, to constrain resource usage, and to restrict what containers are allowed to do.
upvoted 1 times
...
ash_meharun
1 year, 5 months ago
https://cloud.google.com/kubernetes-engine/docs/concepts/multitenancy-overview#:~:text=For%20example%2C%20a,the%20cluster%20operates.
upvoted 1 times
...
TNT87
1 year, 5 months ago
https://cloud.google.com/kubernetes-engine/docs/concepts/multitenancy-overview#network_policies Answer B
upvoted 1 times
...
tomato123
1 year, 8 months ago
Selected Answer: B
B is correct
upvoted 2 times
...
szl0144
1 year, 11 months ago
B is correct
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago