You have an application running on Google Kubernetes Engine (GKE) that needs to make authenticated requests to Google Cloud managed services. The solution should be a one-time setup adhering to security best practices, including automatic key rotation and encrypted storage of credentials. A service account with the necessary permissions has already been created. What is the next step to configure this securely?

Exam-Like

Assign the Google Cloud service account to your GKE Pod using Workload Identity.

69.6%

Export the Google Cloud service account, and share it with the Pod as a Kubernetes Secret.

17.4%

Export the Google Cloud service account, and embed it in the source code of the application.

0.0%

Export the Google Cloud service account, and upload it to HashiCorp Vault to generate a dynamic service account for your application.

13.0%

Google Professional Cloud Developer