Answer-first summary for fast verification
Answer: Apply the constraints/gcp.resourceLocations organization policy constraint to in:europe-west3-locations.
The correct approach is to apply the constraints/gcp.resourceLocations organization policy constraint to in:europe-west3-locations. This method ensures resources are limited to the europe-west3 region, aligning with Google's recommended practices for data governance and security. It provides centralized control and enforcement, unlike the other options which either lack centralized enforcement (A), are too broad (B), or are reactive rather than proactive (C).
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
As a member of the data governance team, you're tasked with implementing security measures to restrict resource deployment to the europe-west3 region, following Google's best practices. Which approach should you take?
A
Use Terraform to deploy resources with a variable validation rule ensuring the region is set to europe-west3 for all resources.
B
Implement the constraints/gcp.resourceLocations organization policy constraint to in:eu-locations.
C
Set up a Cloud Function to monitor and automatically destroy resources created outside the europe-west3 region.
D
Apply the constraints/gcp.resourceLocations organization policy constraint to in:europe-west3-locations.
No comments yet.