Practice Test 2 | Google Cloud Certified Professional Cloud DevOps Engineer | Dumps | Mock Test
Your Site Reliability (SRE) team members are managing the CICD of your organization. The organization uses GCP Projects to separate environments. The pipeline consists of Cloud Source Repository, Cloud Build and Spinnaker. There is a security requirement to send the logs of Cloud Build in the Production Project to a user-created bucket in a Project designated for logs.
Which step can you take to achieve this?
A. Grant the Cloud Build Service account of the Production Project the Storage Admin role in the logging Project.
B. Grant the Cloud Build Service account of the Production Project the Storage Admin role in the Production Project.
C. Grant the Cloud Build Service account of the Production Project the Project Viewer role in the logging Project
D. Grant the Cloud Build Service account of the Production Project the Project Viewer role in the Production Project
Correct Answer: A
- Option A is CORRECT. The Storage Admin role should be given to the Cloud Build Service account of the production Project in the logging Project.
- Option B and D are incorrect. The permission should be added in the logging Project.
- Options C is incorrect. The viewer role is not sufficient for Cloud Build to put logs.
Reference:
Comments are closed, but trackbacks and pingbacks are open.