Google Associate Cloud Engineer
Get started today
Ultimate access to all questions.
Your company mandates that all developers must have identical permissions across various Google Cloud projects. In addition, the company's security policy restricts developer permissions solely to Compute Engine, Cloud Functions, and Cloud SQL. You are tasked with implementing this security policy efficiently with minimal effort. What actions should you take to achieve this?
Your company mandates that all developers must have identical permissions across various Google Cloud projects. In addition, the company's security policy restricts developer permissions solely to Compute Engine, Cloud Functions, and Cloud SQL. You are tasked with implementing this security policy efficiently with minimal effort. What actions should you take to achieve this?
Explanation:
Option D is the correct answer. It combines the security of a custom role tailored to the company's policy with the ease of management provided by organization-level assignment to a Cloud Identity group. By creating a custom role with the required permissions (Compute Engine, Cloud Functions, and Cloud SQL) at the organization level and assigning this custom role to a Google group in Cloud Identity, you ensure consistent permissions for all developers with minimal administrative effort. Additionally, applying roles at the organization level ensures that permissions are inherited across all projects within the organization.