Answer-first summary for fast verification
Answer: Configure Workload Identity and service accounts to be used by the application platform.
The correct answer is A: Configure Workload Identity and service accounts to be used by the application platform. Workload Identity is the recommended way to access Google Cloud services from applications running within Google Kubernetes Engine (GKE). It offers improved security properties and manageability. By mapping identities from on-premises or Google Cloud identity providers to Google Cloud service accounts, Workload Identity ensures a secure and streamlined process for authenticating and authorizing access to Google Cloud resources. This is particularly important for maintaining the security and efficiency of Mountkirk Games' new multiplayer game backend.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
Mountkirk Games is building a new multiplayer game, deploying its backend on Google Kubernetes Engine (GKE) to scale rapidly and using Google's global load balancer to route players to the closest regional game arenas. They plan to use a multi-region Spanner cluster to keep the global leaderboard in sync. To secure the connectivity from the new gaming application platform to Google Cloud while following Google-recommended practices, what should you do?
A
Configure Workload Identity and service accounts to be used by the application platform.
B
Use Kubernetes Secrets, which are obfuscated by default. Configure these Secrets to be used by the application platform.
C
Configure Kubernetes Secrets to store the secret, enable Application-Layer Secrets Encryption, and use Cloud Key Management Service (Cloud KMS) to manage the encryption keys. Configure these Secrets to be used by the application platform.
D
Configure HashiCorp Vault on Compute Engine, and use customer managed encryption keys and Cloud Key Management Service (Cloud KMS) to manage the encryption keys. Configure these Secrets to be used by the application platform.
No comments yet.