Answer-first summary for fast verification
Answer: In the Logging section of the console, specify GCE Network as the logging section. Search for the Create Insert entry
The correct answer is C. In the Logging section of the console, you need to specify GCE Network as the logging section and search for the 'Create Insert' entry. This will provide a JSON code string that contains the creator's email and other relevant details, allowing you to trace back the origin of the network. Options A and B are incorrect because Stackdriver alerting needs to be set up beforehand and Data Access logs only contain read-only operations. Option D is incorrect because it focuses on who logged in, not who created the network.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
You have recently discovered through an audit that a new network was created in your Google Cloud Platform (GCP) project. Within this network, a Google Compute Engine (GCE) instance was found with its SSH port open to the public internet. To ensure security and compliance, you need to trace back the origin of this network to identify who created it and understand the context. What should you do?
A
Search for Create VM entry in the Stackdriver alerting console
B
Navigate to the Activity page in the Home section. Set category to Data Access and search for Create VM entry
C
In the Logging section of the console, specify GCE Network as the logging section. Search for the Create Insert entry
D
Connect to the GCE instance using project SSH keys. Identify previous logins in system logs, and match these with the project owners list
No comments yet.