ExamTopics Logo
Mail Us[email protected]
Menu
Google Discussions
exam questions

Exam Professional Cloud Security Engineer All Questions

View all questions & answers for the Professional Cloud Security Engineer exam
Go to Exam

Exam Professional Cloud Security Engineer topic 1 question 99 discussion

Actual exam question from Google's Professional Cloud Security Engineer
Question #: 99
Topic #: 1
[All Professional Cloud Security Engineer Questions]

You are asked to recommend a solution to store and retrieve sensitive configuration data from an application that runs on Compute Engine. Which option should you recommend?

  • A. Cloud Key Management Service
  • B. Compute Engine guest attributes
  • C. Compute Engine custom metadata
  • D. Secret Manager
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by Tabayashi at April 29, 2022, 2:58 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Tabayashi
Highly Voted 3 years ago
Answer is (D). Secret Manager is a secure and convenient storage system for API keys, passwords, certificates, and other sensitive data. Secret Manager provides a central place and single source of truth to manage, access, and audit secrets across Google Cloud. https://cloud.google.com/secret-manager
upvoted 13 times
...
cloudprincipal
Highly Voted 2 years, 11 months ago
Selected Answer: D
You need a secrets management solution https://cloud.google.com/secret-manager
upvoted 5 times
cloudprincipal
2 years, 11 months ago
Sorry, this should be C
upvoted 1 times
badrik
2 years, 10 months ago
sensitive information can never be stored/retrieved through custom meta data !
upvoted 4 times
...
...
...
BPzen
Most Recent 5 months ago
Selected Answer: D
Explanation: Secret Manager is the recommended solution for storing and retrieving sensitive configuration data in Google Cloud. It is purpose-built for managing sensitive information like API keys, passwords, and other secrets securely, with robust access control and encryption.
upvoted 1 times
...
tia_gll
1 year, 1 month ago
Selected Answer: D
ans is D
upvoted 1 times
...
dija123
1 year, 1 month ago
Selected Answer: D
Secret Manager
upvoted 1 times
...
[Removed]
1 year, 9 months ago
Selected Answer: D
"D" There's ambiguity in the question in terms of what type of configuration data we're talking about and how large. Even though the compute metadata server can hold sensitive values like ssh keys, there are limitations with respect to how much data you can put in there (reference A below). Secret manager also has a size limit on how much you can store. (reference B below). However, secret manager is explicitly said to be a good use case for Sensitive Configuration information (reference C below) which makes it the preferred answer. References: A- https://cloud.google.com/compute/docs/metadata/setting-custom-metadata#limitations B- https://cloud.google.com/secret-manager/quotas C- https://cloud.google.com/secret-manager/docs/overview#secret_manager
upvoted 3 times
...
AzureDP900
2 years, 5 months ago
D is correct
upvoted 2 times
...
AwesomeGCP
2 years, 6 months ago
Selected Answer: D
D. Secret Manager
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago