Google Associate Cloud Engineer
Get started today
Ultimate access to all questions.
You are managing all your service accounts within a project named ‘proj-sa’. You have another separate project called ‘proj-vm’ that contains VMs (Virtual Machines) that you need to take snapshots of. Your goal is to utilize a service account from the ‘proj-sa’ project to perform snapshot operations on the VMs residing in the ‘proj-vm’ project. What steps should you take to achieve this?
You are managing all your service accounts within a project named ‘proj-sa’. You have another separate project called ‘proj-vm’ that contains VMs (Virtual Machines) that you need to take snapshots of. Your goal is to utilize a service account from the ‘proj-sa’ project to perform snapshot operations on the VMs residing in the ‘proj-vm’ project. What steps should you take to achieve this?
Explanation:
The correct answer is C. To use a service account from one project (proj-sa) to perform actions, such as taking snapshots of VMs in another project (proj-vm), you need to grant the service account appropriate permissions in the target project. Specifically, you should grant the service account the IAM Role of Compute Storage Admin in the proj-vm project. This role has the permissions to create, modify, and delete disks, images, and snapshots, which are necessary to take snapshots of VMs.