Answer-first summary for fast verification
Answer: 1. Add all developers to a Google group in Cloud Identity. 2. Create a custom role with permissions for Compute Engine, Cloud Functions, and Cloud SQL at the organization level. 3. Assign the custom role to the Google group.
Option D is correct because it involves creating a Google group in Cloud Identity for all developers, then creating a custom role with precisely the required permissions at the organization level, and assigning this role to the group. This approach is efficient, centrally managed, and adheres to the principle of least privilege by granting only necessary permissions across all projects. Options A, B, and C are incorrect due to either granting excessive permissions, lacking central management, or being inefficient in implementation. For more details, refer to [Google Cloud Identity](https://cloud.google.com/identity) and [Creating Custom Roles](https://cloud.google.com/iam/docs/creating-custom-roles).
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
At a startup, all developers require uniform access to all Google Cloud projects within the organization, limited to Compute Engine, Cloud Functions, and Cloud SQL for security reasons. What is the most efficient method to implement this security policy?
A
B
C
D
No comments yet.