Google Associate Cloud Engineer
Get started today
Ultimate access to all questions.
Comments
Loading comments...
Ultimate access to all questions.
You've developed an application that allows users to upload statistical files and perform analytics on this data, utilizing Google Cloud Storage and BigQuery for their high availability and scalability. Your application is containerized in a Docker image, and you plan to deploy it on your on-premises Kubernetes clusters. To securely connect your on-prem Kubernetes cluster to Google Cloud Storage and BigQuery following Google's recommended practices, what should you do?
A
Use the default service account for Compute Engine, which already has the required permissions.
B
Create a new service account, with editor permissions, generate and download a key. Use the key to authenticate inside the application.
C
Use the default service account for App Engine, which already has the required permissions.
D
Create a new service account, grant it the least viable privileges to the required services, generate and download a JSON key. Use the JSON key to authenticate inside the application.