Practice Test 1 | Google Cloud Certified Professional Cloud DevOps Engineer | Dumps | Mock Test
You are part of the DevOps team in a growing analytics company. The company currently deploys its docker applications on Virtual Machines on-premises. The company has three different environments: dev, staging and production. The company is planning to move its applications to GKE. The key requirement is the need to have the environments separate in a way the allows for restricting access using IAM policy.
Which of the following helps you meet the requirement following GCP’s best practice?
A. Create a VPC with three subnets in a Project, Create a GKE cluster in each subnet for the different environments
B. Create three VPCs with one subnet in a Project, Create a GKE cluster in each VPC for the different environments
C. Create one GKE cluster with three namespaces for the different environments
D. Create three Projects, Create a GKE cluster in each Project for the different environment
Correct Answer: D
- Options A, B and C are incorrect. There is no way to manage the IAM permissions at a VPC level or Subnet level. While it is possible to apply RBAC using namespaces in a GKE Cluster to separate environments, this is not the best practice for separating environments.
- Option D is CORRECT. Best practice for managing environments and IAM policy is at the Project level.
Reference:
Comments are closed, but trackbacks and pingbacks are open.