An organization is planning to migrate some IT workloads to Google Cloud Platform (GCP). They have an existing, well-established directory service that manages user identities and lifecycle, which must remain the authoritative source of truth for identities. Which solution should they use?