Answer-first summary for fast verification
Answer: Set the reauthentication frequency for the Google Cloud Session Control to one hour.
The question focuses on reducing the risk of open Google Cloud CLI sessions by setting them to the minimum duration. Option B is correct because it directly addresses user session management through Google Cloud Session Control's reauthentication frequency, which forces users to reauthenticate after a specified period (one hour), thereby limiting session exposure. This is supported by the community consensus (68% selected B) and official Google documentation links provided in the discussion. Option A is incorrect as 'Google session control' is not a standard term, and session duration settings are typically managed via reauthentication. Options C and D are unsuitable because they pertain to service account credentials and keys, not user CLI sessions, which are the focus of the question.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
You need to reduce the risk of attackers exploiting open Google Cloud CLI sessions by setting the session duration to the minimum possible value. What should you do?
A
Set the session duration for the Google session control to one hour.
B
Set the reauthentication frequency for the Google Cloud Session Control to one hour.
C
Set the organization policy constraint constraints/iam.allowServiceAccountCredentialLifetimeExtension to one hour.
D
Set the organization policy constraint constraints/iam.serviceAccountKeyExpiryHours to one hour and inheritFromParent to false.
No comments yet.