Answer-first summary for fast verification
Answer: Establish a new GCP monitoring project, create a Stackdriver Workspace within it, link the production projects to this workspace, and grant relevant team members read access to the Stackdriver Workspace.
This approach is correct as it follows the principle of least privilege by creating a dedicated GCP monitoring project with a Stackdriver Workspace. This setup ensures that only authorized team members with read access to the Stackdriver Workspace can monitor the production environment, thereby minimizing the risk of false alerts from non-production projects.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
When designing a monitoring strategy for GCP projects in production using Stackdriver Workspaces, a crucial aspect is to quickly identify and address issues in the production environment while avoiding false alarms from development and staging projects. To adhere to the principle of least privilege, what is the recommended approach for granting team members access to Stackdriver Workspaces?
A
Grant relevant team members read access to all GCP production projects and establish Stackdriver workspaces within each project.
B
Choose an existing GCP production project to serve as the monitoring workspace host, link the production projects to this workspace, and provide relevant team members with read access to the Stackdriver Workspace.
C
Assign the Project Viewer IAM role to relevant team members across all GCP production projects and set up Stackdriver workspaces in each project.
D
Establish a new GCP monitoring project, create a Stackdriver Workspace within it, link the production projects to this workspace, and grant relevant team members read access to the Stackdriver Workspace.
No comments yet.