You are designing a cloud application that will be accessed directly by users without a gateway VPN. The company aims to maintain user identity and context to secure access to applications and VMs. What solution would you recommend?

Real Exam

Explanation:

IAP is designed to protect SSH and RDP access to your VMs on GCP, offering an effective whitelisting approach. Notably, your VM instances do not require public IP addresses. Reference: Google Cloud IAP Documentation