Google Professional Cloud DevOps Engineer

Ultimate access to all questions.

Explanation:

Correct Answer: B

Option A is incorrect because IAM permissions manage access to services like GKE and Container Registry but do not directly control the images deployed on a cluster.
Option B is correct. Binary Authorization allows you to enforce policies that approve or deny image deployments based on their compliance with predefined rules.
Option C is incorrect as custom routes are designed for network traffic management and do not influence image deployment policies.
Option D is incorrect since firewall rules regulate network traffic flow and cannot restrict the images used in cluster deployments.

Explanation:

Correct Answer: B

Option A is incorrect because IAM permissions manage access to services like GKE and Container Registry but do not directly control the images deployed on a cluster.
Option B is correct. Binary Authorization allows you to enforce policies that approve or deny image deployments based on their compliance with predefined rules.
Option C is incorrect as custom routes are designed for network traffic management and do not influence image deployment policies.
Option D is incorrect since firewall rules regulate network traffic flow and cannot restrict the images used in cluster deployments.

Comments (0)

No comments yet.

Real Exam

Implement IAM permissions to limit which container images can be deployed on the clusters.

Enable binary authorization on the clusters and define a policy to regulate permissible images.

Configure custom routes to manage traffic directed towards the clusters.

Apply firewall rules within the VPCs to control image deployment.