You are the Security Admin for your company. You need to synchronize all security groups that have an email address from your on-premises LDAP directory to Cloud IAM. What should you do?

Exam-Like

Configure Google Cloud Directory Sync to sync security groups using LDAP search rules that have ג€user email addressג€ as the attribute to facilitate one-way sync.

Configure Google Cloud Directory Sync to sync security groups using LDAP search rules that have ג€user email addressג€ as the attribute to facilitate bidirectional sync.

Use a management tool to sync the subset based on the email address attribute. Create a group in the Google domain. A group created in a Google domain will automatically have an explicit Google Cloud Identity and Access Management (IAM) role.

Use a management tool to sync the subset based on group object class attribute. Create a group in the Google domain. A group created in a Google domain will automatically have an explicit Google Cloud Identity and Access Management (IAM) role.

Google Professional Cloud Security Engineer

Get started today

Comments

You are the Security Admin for your company. You need to synchronize all security groups that have an email address from your on-premises LDAP directory to Cloud IAM. What should you do?