Practice Test 1 | Google Cloud Certified Professional Cloud DevOps Engineer | Dumps | Mock Test

Question 41

Your company has several Google Projects. As part of the CI/CD pipeline it has a Project where automated Compute and Docker Image creation is done. Users in the developer, staging and Production Projects require access to the images created for deployments.

Following principle of least privilege, what IAM role would you need to assign to users to achieve this?

A. Allow users to create instances from these images by granting them the compute.imageUser role in the image creation Project.
B. Allow users to create instances from these images by granting them the compute.instanceAdmin role in the image creation Project.
C. Allow users to create instances from these images by granting them the compute.imageUser role in their different Projects.
D. Allow users to create instances from these images by granting them the compute.instanceAdmin role in their different Projects

Answer

Correct Answer: A

Option A is CORRECT. Assign the compute.imageUser role to users in the Project where the images are created.
Option B is incorrect. This role is too permissive.
Options C and D is incorrect. The role is assigned in the Project where the images are created.

Reference:

https://cloud.google.com/compute/docs/images/image-management-best-practices

Pages: 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50

PCDevE

Practice Test 1 | Google Cloud Certified Professional Cloud DevOps Engineer | Dumps | Mock Test

Question 41

Answer

Ads Blocker Detected!!!