Answer-first summary for fast verification
Answer: Google Cloud Directory Sync (GCDS)
The question specifies that the organization has an existing directory service that must remain the 'source of truth' for identities. Google Cloud Directory Sync (GCDS) is specifically designed to synchronize user, group, and contact data from existing directory services (like Microsoft Active Directory or LDAP servers) to Google Cloud Identity, ensuring the Google environment matches the authoritative source. This maintains the existing directory as the source of truth while enabling identity management in GCP. Cloud Identity (B) is a standalone identity service that could replace the existing directory, contradicting the requirement. SAML (C) is for authentication federation, not synchronization of identity data. Pub/Sub (D) is unrelated to identity management. The community discussion shows strong consensus for A, with the highest upvoted comment (17 upvotes) clearly explaining GCDS's role in syncing from the source directory to Google Account without replacing it.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
No comments yet.
An organization is planning to migrate some IT workloads to Google Cloud Platform (GCP). They have an existing, well-established directory service that manages user identities and lifecycle, which must remain the authoritative source of truth for identities. Which solution should they use?
A
Google Cloud Directory Sync (GCDS)
B
Cloud Identity
C
Security Assertion Markup Language (SAML)
D
Pub/Sub