Google Associate Cloud Engineer
Get started today
Ultimate access to all questions.
Ultimate access to all questions.
As a cloud engineer in a large airline company, your responsibility includes managing GCP-hosted operational and flight schedule data. The operations team requires administrative access to Compute Engine instances for maintenance. The security team mandates optimal credential distribution and access auditing. What is the best approach?
Explanation:
Option C is correct because it utilizes GCP's IAM for SSH access, eliminating the need to distribute SSH keys manually. It allows for centralized credential management and access auditing. Options A and D involve distributing private keys, which is insecure. Option B requires manual key deployment, lacking centralized management. OS Login with IAM roles provides a secure and manageable solution.