Your organization is migrating business-critical applications to Google Cloud across multiple projects. You have IAM permissions only at the organization level. You need to grant project access to support engineers from two partner organizations, allowing them to use their existing identity provider (IdP) credentials. What should you do?

Exam-Like

Create two single sign-on (SSO) profiles for the internal and partner IdPs by using SSO for Cloud Identity.

Create users manually by using the Google Cloud console. Assign the users to groups.

Create two workforce identity pools for the partner IdPs.

Sync user identities from their existing IdPs to Cloud Identity by using Google Cloud Directory Sync (GCDS).

Google Professional Cloud Security Engineer