Google Professional Cloud Security Engineer
Get started today
Ultimate access to all questions.
Comments
Loading comments...
Ultimate access to all questions.
Your organization has a Cloud Run application that requires access control via Cloud Identity-Aware Proxy (IAP) with the following requirements:
• Only users from the AppDev group are permitted to access the application. • Access must be limited to internal network IP addresses.
What should you do?
A
Deploy a VPN gateway and instruct the AppDev group to connect to the company network before accessing the application.
B
Create an access level that includes conditions for internal IP address ranges and AppDev groups. Apply this access level to the application's IAP policy.
C
Configure firewall rules to limit access to IAP based on the AppDev group and source IP addresses.
D
Configure IAP to enforce multi-factor authentication (MFA) for all users and use network intrusion detection systems (NIDS) to block unauthorized access attempts.