Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Google Exam Professional Cloud Security Engineer Topic 3 Question 33 Discussion

Actual exam question for Google's Professional Cloud Security Engineer exam
Question #: 33
Topic #: 3
[All Professional Cloud Security Engineer Questions]

You are a Security Administrator at your organization. You need to restrict service account creation capability within production environments. You want to accomplish this centrally across the organization. What should you do?

Show Suggested Answer Hide Answer
Suggested Answer: A, C

https://cloud.google.com/kms/docs/secret-management

by Jani at May 03, 2022, 10:35 PM

Limited Time Offer

25%

Off

Get Premium Professional Cloud Security Engineer Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Tarra
1 months ago
Option B seems like it might work, but it's a bit indirect. Why not just go for the straightforward solution in option D?
upvoted 0 times
...
Shawnee
1 months ago
Haha, option C is pretty funny. I mean, who would want to disable the ability to upload service account keys? That's just asking for trouble!
upvoted 0 times
...
Merlyn
1 months ago
I'm not sure why anyone would choose option A. That's just way too broad and would restrict access for everyone, not just service accounts.
upvoted 0 times
Brynn
15 hours ago
Yeah, option A would be too broad and affect all users, not just service accounts.
upvoted 0 times
...
Tess
3 days ago
I agree, option B is more targeted and will only affect service account creation.
upvoted 0 times
...
Katy
3 days ago
I think option D is the most straightforward way to restrict service account creation.
upvoted 0 times
...
Lynelle
12 days ago
Option C could also work by disabling the creation of new service account keys.
upvoted 0 times
...
Jesse
18 days ago
I agree, option A would be too broad and affect all users.
upvoted 0 times
...
Aaron
20 days ago
Option B is the best choice to specifically disable the creation of new service accounts.
upvoted 0 times
...
Vivan
1 months ago
Option B is the best choice to disable the creation of new service accounts.
upvoted 0 times
...
...
Alpha
2 months ago
Option D is the correct answer. It's the only one that directly disables the creation of new service accounts, which is what the question asks for.
upvoted 0 times
Lashandra
9 days ago
I agree, let's go with option D to centrally disable service account creation.
upvoted 0 times
...
Stephaine
10 days ago
That could work too, but option D seems more direct and specific to the question.
upvoted 0 times
...
Oren
13 days ago
But what about using IAM to restrict access for all users and service accounts?
upvoted 0 times
...
Lilli
16 days ago
I think we should use option D to disable service account creation.
upvoted 0 times
...
...
Lewis
2 months ago
I believe option D is the correct answer, using organization policy constraints to disable service account creation.
upvoted 0 times
...
Elza
2 months ago
I agree with Vanna, using IAM would be the best way to centrally restrict service account creation.
upvoted 0 times
...
Vanna
2 months ago
I think we should use IAM to restrict access to service accounts.
upvoted 0 times
...

Save Cancel
a