Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Google Exam Professional Cloud Security Engineer Topic 4 Question 76 Discussion

Actual exam question for Google's Professional Cloud Security Engineer exam
Question #: 76
Topic #: 4
[All Professional Cloud Security Engineer Questions]

You are the Security Admin in your company. You want to synchronize all security groups that have an email address from your LDAP directory in Cloud IAM.

What should you do?

Show Suggested Answer Hide Answer
Suggested Answer: A

by Jonelle at Apr 24, 2024, 03:24 PM

Limited Time Offer

25%

Off

Get Premium Professional Cloud Security Engineer Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Tashia
19 days ago
If I had a nickel for every time I had to sync security groups from an LDAP directory, I'd have enough to buy a very secure coffee mug.
upvoted 0 times
...
Crista
24 days ago
I'm just hoping the LDAP directory doesn't have any email addresses like 'security_admin@company.com'. That would make this whole process a bit too meta for my liking.
upvoted 0 times
...
Eric
25 days ago
D mentions using the group object class attribute, but I don't want to make assumptions about my LDAP directory structure. A is the way to go, no doubt.
upvoted 0 times
Ty
18 hours ago
A) Configure Google Cloud Directory Sync to sync security groups using LDAP search rules that have ''user email address'' as the attribute to facilitate one-way sync.
upvoted 0 times
...
...
Shayne
1 months ago
Option C looks like it could work, but I don't want to deal with the hassle of a management tool. I'll stick with the Google Cloud Directory Sync in A.
upvoted 0 times
Elin
16 days ago
I agree, using Google Cloud Directory Sync will make it easier for us.
upvoted 0 times
...
Davida
21 days ago
Option A sounds like the best choice for you.
upvoted 0 times
...
...
Chuck
1 months ago
I'm not sure why I would want bidirectional sync for this scenario. Option B seems overkill. I'd go with A.
upvoted 0 times
...
Nobuko
1 months ago
Option A seems like the most straightforward approach to synchronize the security groups with email addresses from the LDAP directory. One-way sync should be sufficient for this use case.
upvoted 0 times
Carmen
17 days ago
A) Exactly, one-way sync will ensure that the security groups are synchronized without any conflicts.
upvoted 0 times
...
Johnetta
23 days ago
B) I think one-way sync is enough for this scenario. Bidirectional sync might cause conflicts.
upvoted 0 times
...
Brittni
24 days ago
A) Configure Google Cloud Directory Sync to sync security groups using LDAP search rules that have ''user email address'' as the attribute to facilitate one-way sync.
upvoted 0 times
...
...
Titus
2 months ago
I think option C is the best choice. Using a management tool to sync based on email address attribute and creating a group in the Google domain will automatically assign Google Cloud IAM roles.
upvoted 0 times
...
Arthur
2 months ago
I disagree, I believe the answer is B. We need to configure Google Cloud Directory Sync for bidirectional sync to ensure all security groups with email addresses are synchronized.
upvoted 0 times
...
Devora
2 months ago
I think the answer is A. We should configure Google Cloud Directory Sync to sync security groups using LDAP search rules that have 'user email address' as the attribute for one-way sync.
upvoted 0 times
...

Save Cancel