Explanation:
The Google-recommended best practice is to use groups to manage access, which simplifies administration and ensures consistency. By adding your SREs to a group and then adding this group to the roles/accessapproval.approver role, you can control access effectively while allowing SREs to approve requests per your requirements. Therefore, the correct answer is D.
Ultimate access to all questions.
Your organization imposes stringent rules to manage access to Google Cloud projects. There is a need to ensure that Site Reliability Engineers (SREs) have the ability to authorize requests initiated by the Google Cloud support team when an SRE files a support case. You aim to adhere to Google's best practices. What steps should you take?
A
Add your SREs to roles/iam.roleAdmin role.
B
Add your SREs to roles/accessapproval.approver role.
C
Add your SREs to a group and then add this group to roles/iam.roleAdmin.role.
D
Add your SREs to a group and then add this group to roles/accessapproval.approver role.
No comments yet.