Your company security team manages access control to production systems using an LDAP directory group. How is this access control managed in the Google Cloud production project?
A.
Assign the proper role to the Service Account in the project's IAM Policy
B.
Grant each user the roles/iam.serviceAccountUser role on a service account that exists in the Google Group.
C.
Assign the proper role to the Google Group in the project's IAM Policy.
D.
Create the project in a folder with the same name as the LDAP directory group.
Identity and Access Management (IAM) allows you to manage access to Google Cloud resources. Within your production project, you can use IAM to grant specific permissions to the LDAP directory group. IAM roles can be assigned to the group, defining the level of access they have within the project. This way, you can control who can perform certain actions on the project's resources.
A is about Service accounts, which is for Apps or VMs, so it's out. B is the typical wrong reply in these kinds of exams where they suggest doing something manually one by one and not efficiently. D sounds wrong to me, just putting the same name and calling it a day? C is the only option, because Google Groups work with LDAP directories.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
cookieMr
Highly Voted 1 year, 4 months agoKessel
Most Recent 5 months agoceeceevee
10 months, 4 weeks agochai_gpt
12 months ago__rajan__
1 year agoKavis
1 year agoKavis
1 year agomdsarfraz69
1 year, 1 month agosamirvarude
1 year, 3 months agoAMMARABO
2 years, 1 month agovictory108
2 years, 7 months agoleyunjohn
2 years, 8 months agodesertlotus1211
2 years, 8 months agoJoeBK
2 years, 8 months ago