Answer-first summary for fast verification
Answer: Add the support team group to the roles/monitoring.viewer role.
The correct answer is A. Adding the support team group to the roles/monitoring.viewer role will grant them read-only access to the monitoring data for all resources in a project. This allows the support team to monitor the environment without providing access to the table data. The other roles either grant access to table data or are not directly related to monitoring the Cloud Spanner environment.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
As a Cloud Engineer, you have developed an application on Google Cloud that leverages Cloud Spanner for its database requirements. To ensure smooth operations, your support team needs the ability to monitor the Cloud Spanner environment. However, it is crucial that they do not have access to the actual table data stored within Cloud Spanner. Your goal is to establish a streamlined solution that grants the appropriate permissions to your support team, adhering strictly to Google-recommended practices. What steps should you take to achieve this?
A
Add the support team group to the roles/monitoring.viewer role.
B
Add the support team group to the roles/spanner.databaseUser role.
C
Add the support team group to the roles/spanner.databaseReader role.
D
Add the support team group to the roles/stackdriver.accounts.viewer role.
No comments yet.