Your team is designing the structure of a Cloud Monitoring workspace to oversee multiple projects. To adhere to the principle of least privilege, which role should be assigned to the service account of Compute Engine instances for sending metric data to Cloud Monitoring?

Real Exam

Explanation:

Option B is the correct choice because the Monitoring Metric Writer role provides the precise level of permissions needed for users or service accounts to write metrics to Cloud Monitoring, aligning with the principle of least privilege. Option A and C are incorrect as they grant more permissions than necessary. Option D is also incorrect as it pertains to Cloud Logging access, not Cloud Monitoring. For more details, refer to Google Cloud's documentation on access control.

Powered ByGPT-5

Google Professional Cloud DevOps Engineer

Get started today

Google Professional Cloud DevOps Engineer

Get started today

Your team is designing the structure of a Cloud Monitoring workspace to oversee multiple projects. To adhere to the principle of least privilege, which role should be assigned to the service account of Compute Engine instances for sending metric data to Cloud Monitoring?