Google Associate Cloud Engineer
Get started today
Ultimate access to all questions.
Comments
Loading comments...
Ultimate access to all questions.
You have data stored in both Cloud Storage and BigQuery datasets within Google Cloud Platform. Your goal is to secure this data by implementing three distinct access levels: administrator, read/write, and read-only, adhering to Google's recommended practices. What is the best approach to achieve this?
A
At the Project level, assign your administrator user accounts to the Owner role, read/write user accounts to the Editor role, and read-only user accounts to the Viewer role.
B
Utilize the predefined IAM roles for each required access level in Cloud Storage and BigQuery, assigning users to these roles accordingly.
C
At the Organization level, allocate administrator user accounts to the Owner role, read/write user accounts to the Editor role, and read-only user accounts to the Viewer role.
D
Develop three custom IAM roles with tailored policies for the necessary access levels in Cloud Storage and BigQuery, then assign users to these roles.