Google Professional Cloud Security Engineer

Get started today

Ultimate access to all questions.

Quick Answer

Answer-first summary for fast verification

Answer: IAP-Secured Web App User

The correct answer is C (IAP-Secured Web App User) because this role specifically provides permission to access HTTPS resources that use Identity-Aware Proxy, as confirmed by multiple community comments with high upvotes and direct references to Google Cloud documentation. The IAP-Secured Web App User role (roles/iap.httpsResourceAccessor) is explicitly designed for granting access to HTTPS resources protected by IAP, including App Engine, Cloud Run, and Compute Engine resources. Other options are incorrect: A (Security Reviewer) is for audit purposes, B (IAP-Secured Tunnel User) is for TCP tunneling (not HTTPS), and D (Service Broker Operator) is unrelated to IAP resource access.

Author: LeetQuiz Editorial Team

Quick Answer

Answer-first summary for fast verification

Answer: IAP-Secured Web App User

Author: LeetQuiz Editorial Team

Comments (0)

No comments yet.

Which Identity and Access Proxy (IAP) role should you assign to a user to allow access to HTTPS resources?

Exam-Like

Security Reviewer

0.0%

IAP-Secured Tunnel User

0.0%

IAP-Secured Web App User

100.0%

Service Broker Operator