Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Google Exam Professional Cloud Security Engineer Topic 2 Question 80 Discussion

Actual exam question for Google's Professional Cloud Security Engineer exam
Question #: 80
Topic #: 2
[All Professional Cloud Security Engineer Questions]

You are setting up a new Cloud Storage bucket in your environment that is encrypted with a customer managed encryption key (CMEK). The CMEK is stored in Cloud Key Management Service (KMS). in project "pr j -a", and the Cloud Storage bucket will use project "prj-b". The key is backed by a Cloud Hardware Security Module (HSM) and resides in the region europe-west3. Your storage bucket will be located in the region europe-west1. When you create the bucket, you cannot access the key. and you need to troubleshoot why.

What has caused the access issue?

Show Suggested Answer Hide Answer
Suggested Answer: D

When you use a customer-managed encryption key (CMEK) to secure a Cloud Storage bucket, the key and the bucket must be located in the same region. In this case, the key is in europe-west3 and the bucket is in europe-west1, which is why you're unable to access the key.


by Tyisha at May 29, 2024, 05:13 PM

Limited Time Offer

25%

Off

Get Premium Professional Cloud Security Engineer Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Larae
12 months ago
A) A firewall rule prevents the key from being accessible. Wouldn't that be just my luck? I bet the network team is laughing it up right now.
upvoted 0 times
...
Dudley
12 months ago
I bet the person setting this up was like, 'Hey, let's make this extra complicated!' C'mon, just put the key and the bucket in the same project, it's not rocket science!
upvoted 0 times
...
Youlanda
1 years ago
D) The CMEK is in a different region than the Cloud Storage bucket. Gotta make sure those are aligned, or else you're gonna have a bad time.
upvoted 0 times
Brigette
11 months ago
D) The CMEK is in a different region than the Cloud Storage bucket. Gotta make sure those are aligned, or else you're gonna have a bad time.
upvoted 0 times
...
Thad
12 months ago
C) The CMEK is in a different project than the Cloud Storage bucket
upvoted 0 times
...
Laticia
12 months ago
A) A firewall rule prevents the key from being accessible.
upvoted 0 times
...
...
Lavonda
1 years ago
C) The CMEK is in a different project than the Cloud Storage bucket. That's the key issue here. The projects need to match for the encryption to work properly.
upvoted 0 times
Emelda
11 months ago
D) The CMEK is in a different region than the Cloud Storage bucket.
upvoted 0 times
...
Abel
12 months ago
C) The CMEK is in a different project than the Cloud Storage bucket. That's the key issue here.
upvoted 0 times
...
Earlean
12 months ago
C) The CMEK is in a different project than the Cloud Storage bucket. That's the key issue here. The projects need to match for the encryption to work properly.
upvoted 0 times
...
Susy
12 months ago
A) A firewall rule prevents the key from being accessible.
upvoted 0 times
...
Giovanna
12 months ago
C
upvoted 0 times
...
Artie
12 months ago
C
upvoted 0 times
...
Merilyn
12 months ago
A) A firewall rule prevents the key from being accessible.
upvoted 0 times
...
...
Paris
1 years ago
I agree with Vincent. The key needs to be in the same project as the bucket for access.
upvoted 0 times
...
Vincent
1 years ago
I think the issue is that the CMEK is in a different project than the Cloud Storage bucket.
upvoted 0 times
...

Save Cancel