Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Google Exam Associate-Cloud-Engineer Topic 6 Question 71 Discussion

Actual exam question for Google's Google Associate Cloud Engineer exam
Question #: 71
Topic #: 6
[All Google Associate Cloud Engineer Questions]

An external member of your team needs list access to compute images and disks in one of your projects. You want to follow Google-recommended practices when you grant the required permissions to this user. What should you do?

Show Suggested Answer Hide Answer
Suggested Answer: B

by Andra at Oct 21, 2023, 11:10 AM

Limited Time Offer

25%

Off

Get Premium Associate-Cloud-Engineer Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Xochitl
10 days ago
Yeah, that makes sense. We don't want to give the user more access than they actually require. Gotta keep that principle of least privilege in mind, you know?
upvoted 0 times
...
Malcom
11 days ago
Ah, I see what you mean. Option D sounds like the best choice then - create a custom role based on Compute Storage Admin, but remove any extra permissions that the external user doesn't need.
upvoted 0 times
...
Elbert
12 days ago
I agree, a custom role is the way to go. But I'm not sure if we should be adding all the compute.disks.list and compute.images.list permissions. Maybe we can base it on an existing role and then exclude any unnecessary permissions?
upvoted 0 times
...
Alease
13 days ago
Hmm, this seems like a tricky question. We need to follow the Google-recommended practices, so I think the best approach is to create a custom role with the specific permissions required, rather than just granting a broad admin role.
upvoted 0 times
...

Save Cancel