Free Preparation Discussions
MENU
Google Professional Cloud Security Engineer Exam - Topic 1 Question 119 Discussion
Topic #: 1
While migrating your organization's infrastructure to GCP, a large number of users will need to access GCP Console. The Identity Management team already has a well-established way to manage your users and want to keep using your existing Active Directory or LDAP server along with the existing SSO password.
What should you do?
To allow a large number of users to access the GCP Console while keeping the existing Active Directory or LDAP server for identity management, use Google Cloud Directory Sync (GCDS).
Install GCDS:
Download and install Google Cloud Directory Sync from here.
Configure GCDS:
Set up the synchronization by specifying the LDAP server details and the Google domain.
Map the LDAP attributes to Google attributes to ensure user data is synchronized correctly.
Run Synchronization:
Perform an initial synchronization to populate the Google domain with existing users from the LDAP server.
Schedule regular synchronizations to keep the data up-to-date.
Benefits:
Automated Sync: Ensures that user data is consistently updated without manual intervention.
Secure Access: Users can log in to the GCP Console using their existing credentials, enhancing security and user experience.
Google Cloud Directory Sync Documentation
GCDS Administration Guide
Currently there are no comments in this discussion, be the first to comment!