Google Professional Cloud Security Engineer
Get started today
Ultimate access to all questions.
Comments
Loading comments...
Ultimate access to all questions.
Your organization operates a hybrid environment connected via Cloud VPN or Interconnect. On-premises developers cannot resolve the Artifact Registry hostname to push or pull artifacts. There is no custom DNS on-premises and no direct internet route. What is the likely cause and how do you resolve it?
A
On-premises DNS servers lack the necessary records to resolve private Google API domains. Create DNS records for restricted.googleapis.com or private.googleapis.com pointing to Google's published IP ranges.
B
Developers must be granted the artifactregistry.writer IAM role. Grant the relevant developer group this role.
C
Private Google Access is not enabled for the subnet hosting the Artifact Registry. Enable Private Google Access for the appropriate subnet.
D
Artifact Registry requires external HTTP/HTTPS access. Create a new firewall rule allowing ingress traffic on ports 80 and 443 from the developer's IP ranges.