Google Associate Cloud Engineer Exam - Topic 2 Question 55 Discussion

Actual exam question for Google's Associate Cloud Engineer exam

Question #: 55
Topic #: 2

[All Associate Cloud Engineer Questions]

Your organization uses Active Directory (AD) to manage user identities. Each user uses this identity for federated access to various on-premises systems. Your security team has adopted a policy that requires users to log into Google Cloud with their AD identity instead of their own login. You want to follow the Google-recommended practices to implement this policy. What should you do?

ASync Identities with Cloud Directory Sync, and then enable SAML for single sign-on

BSync Identities in the Google Admin console, and then enable Oauth for single sign-on

CSync identities with 3rd party LDAP sync, and then copy passwords to allow simplified login with (he same credentials

DSync identities with Cloud Directory Sync, and then copy passwords to allow simplified login with the same credentials.

Show Suggested Answer

Suggested Answer: A

by Sylvia at Jul 29, 2022, 03:38 AM

Limited Time Offer

25%

Off

Get Premium Associate Cloud Engineer Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Melinda

4 months ago

Not sure about syncing with third-party LDAP, seems complicated.

upvoted 0 times

...

Casey

4 months ago

Definitely A, it's the recommended practice.

upvoted 0 times

...

Zena

4 months ago

Wait, can we really copy passwords? That sounds risky!

upvoted 0 times

...

Pilar

4 months ago

I think B might be better for OAuth integration.

upvoted 0 times

...

Silvana

4 months ago

A is the way to go for SSO with AD!

upvoted 0 times

...

Brittney

5 months ago

I vaguely recall something about copying passwords for simplified login, but that seems risky. I wonder if that's a recommended practice.

upvoted 0 times

...

Lorita

5 months ago

I think we practiced a similar question where we had to choose between SAML and OAuth. I feel like SAML is more common for AD integrations, but I could be wrong.

upvoted 0 times

...

Gene

5 months ago

I remember we discussed using Cloud Directory Sync for syncing identities, but I'm not sure if SAML is the right choice for single sign-on.

upvoted 0 times

...

Nobuko

5 months ago

I definitely remember that syncing with the Google Admin console was mentioned, but I can't recall if it was for SAML or OAuth. This is tricky!

upvoted 0 times

...

Felicidad

5 months ago

Hmm, this looks straightforward. I'll start by identifying the three correct actions from the options provided.

upvoted 0 times

...

Ty

5 months ago

Okay, I remember learning that non-relational databases are designed to handle unstructured data, so the self-describing entities option sounds right.

upvoted 0 times

...