Google Associate Cloud Engineer
Get started today
Ultimate access to all questions.
Comments
Loading comments...
Ultimate access to all questions.
Your company utilizes Compute Engine instances to run its Linux workloads on Google Cloud Platform (GCP). A new operations partner, who does not use Google Accounts, will be collaborating with your company and requires access to these instances to maintain and manage the installed tools. What actions should you take to ensure that the operations partner is granted the necessary access?
A
Enable Cloud IAP for the Compute Engine instances, and add the operations partner as a Cloud IAP Tunnel User.
B
Tag all the instances with the same network tag. Create a firewall rule in the VPC to grant TCP access on port 22 for traffic from the operations partner to instances with the network tag.
C
Set up Cloud VPN between your Google Cloud VPC and the internal network of the operations partner.
D
Ask the operations partner to generate SSH key pairs, and add the public keys to the VM instances.