You need to enforce that employees can only access the Google Cloud console from corporate-issued devices with a valid enterprise certificate. How do you achieve this?

Exam-Like

Implement an Access Policy in BeyondCorp Enterprise to verify the device certificate. Create an access binding with the access policy just created.

Implement a VPC firewall policy. Activate packet inspection and create an allow rule to validate and verify the device certificate.

Implement an organization policy to verify the certificate from the access context.

Implement an Identity and Access Management (IAM) conditional policy to verify the device certificate.

Google Professional Cloud Security Engineer