Practice Test 3 | Google Cloud Certified Professional Cloud Network Engineer | Dumps | Mock Test
As the GCP network engineer for a growing organisation. You have been asked to design an Identity and Access system for the company’s over five thousand staff that will be using the new GCP platform for development and deployment.
Which of the following is the most efficient way of assigning permissions and follows the principle of least privilege? Choose two.
A. Google Accounts
B. Pre-defined roles
C. Custom roles
D. Google groups
Answer: C & D
Option A is incorrect, this is not an efficient way of managing of five thousand users
Option B is incorrect, this type of roles always have more permissions than might be needed hence does not follow the principle of least privilege
Option C is correct, this type of role is designed to have only the needed permissions.
Option D is correct, this is the easiest way to manage lots of users
Reference
Comments are closed, but trackbacks and pingbacks are open.