Answer-first summary for fast verification
Answer: Storage Admin
The correct answer is B: Storage Admin. The Storage Admin role (roles/storage.admin) grants full control of buckets and objects. When this role is applied, users can create, manage, and delete both buckets and objects within Cloud Storage, as well as set permissions on them. Other options do not provide the required level of control: - Option A, Project Editor, provides too much control as it allows managing all resources in a project, not just Cloud Storage. - Option C, Storage Object Admin, only grants control over objects, not buckets. - Option D, Storage Object Creator, does not provide sufficient control since it does not allow management of buckets or setting permissions for buckets and objects.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
No comments yet.
As the project owner of a Google Cloud Platform (GCP) project, you need to delegate the ability to manage buckets and files in Cloud Storage to your colleagues. To ensure you adhere to Google's recommended best practices for security and access management, which specific IAM roles should you assign to your colleagues?
A
Project Editor
B
Storage Admin
C
Storage Object Admin
D
Storage Object Creator