You’ve been tasked with granting a new IAM member the necessary permissions to run queries on BigQuery, adhering to Google's recommended best practices and the principle of least privilege. What is the most appropriate method to assign this access?

Real Exam

Assign roles/bigquery.dataViewer and roles/bigquery.jobUser roles directly to the users

12.5%

Create a custom role combining roles/bigquery.dataViewer and roles/bigquery.jobUser roles, then assign this custom role to the users

12.5%

Assign roles/bigquery.dataViewer and roles/bigquery.jobUser roles to a group, then add users to this group

56.3%

Create a custom role combining roles/bigquery.dataViewer and roles/bigquery.jobUser roles, assign this custom role to a group, then add users to this group

18.8%

Google Associate Cloud Engineer

Get started today

Comments

You’ve been tasked with granting a new IAM member the necessary permissions to run queries on BigQuery, adhering to Google's recommended best practices and the principle of least privilege. What is the most appropriate method to assign this access?