Practice Test 1 | Google Cloud Certified Professional Cloud DevOps Engineer | Dumps | Mock Test
Your company has several Google Projects. As part of the CI/CD pipeline it has a Project where automated Compute and Docker Image creation is done. Users in the developer, staging and Production Projects require access to the images created for deployments.
Following principle of least privilege, what IAM role would you need to assign to users to achieve this?
A. Allow users to create instances from these images by granting them the compute.imageUser role in the image creation Project.
B. Allow users to create instances from these images by granting them the compute.instanceAdmin role in the image creation Project.
C. Allow users to create instances from these images by granting them the compute.imageUser role in their different Projects.
D. Allow users to create instances from these images by granting them the compute.instanceAdmin role in their different Projects
Correct Answer: A
- Option A is CORRECT. Assign the compute.imageUser role to users in the Project where the images are created.
- Option B is incorrect. This role is too permissive.
- Options C and D is incorrect. The role is assigned in the Project where the images are created.
Reference:
Comments are closed, but trackbacks and pingbacks are open.