How can you ensure that all Compute Engine VMs are properly labeled for compliance without altering the existing deployment process, using the most scalable approach, when your infrastructure team manages VMs via Google Cloud console and gcloud CLI?

(If including a code block from OCR, correct any syntax errors/typos here while preserving the original intent.)

Exam-Like

Use a Cloud Audit Logs trigger to invoke a Cloud Function when a Compute Engine VM is created. Check for missing labels and assign them if necessary.

47.6%

Deploy resources with Terraform. Use the gcloud terraform vet command with a policy to ensure that every Compute Engine VM that is provisioned by Terraform has labels set.

42.9%

Write a script to check all Compute Engine VMs for missing labels regularly by using Cloud Scheduler. Use the script to assign the labels.

9.5%

Check all Compute Engine VMs for missing labels regularly. Use the console to assign the labels.

0.0%

Google Professional Cloud Developer

Get started today

Comments