New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Google Professional Cloud Security Engineer Exam - Topic 4 Question 85 Discussion

Actual exam question for Google's Professional Cloud Security Engineer exam
Question #: 85
Topic #: 4
[All Professional Cloud Security Engineer Questions]

You have the following resource hierarchy. There is an organization policy at each node in the hierarchy as shown. Which load balancer types are denied in VPC A?

Show Suggested Answer Hide Answer
Suggested Answer: C, D

https://cloud.google.com/confidential-computing/confidential-vm/docs/creating-cvm-instance#considerations

Confidential VM does not support live migration. You can only enable Confidential Computing on a VM when you first create the instance. https://cloud.google.com/confidential-computing/confidential-vm/docs/creating-cvm-instance


by Delila at Aug 07, 2024, 02:39 PM

Limited Time Offer

25%

Off

Get Premium Professional Cloud Security Engineer Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Kristofer
3 months ago
I thought external load balancers were usually allowed, this is surprising!
upvoted 0 times
...
Karon
3 months ago
Wait, are you sure about that? Seems like a lot to deny.
upvoted 0 times
...
Julian
4 months ago
Totally agree with option D, seems like the most comprehensive.
upvoted 0 times
...
Mozell
4 months ago
I think it's just INTERNAL_TCP_UDP and INTERNAL_HTTP_HTTPS that are denied.
upvoted 0 times
...
Colette
4 months ago
All load balancer types are denied in VPC A.
upvoted 0 times
...
Verda
4 months ago
I feel like option B could be correct since it specifically mentions the folder's policy, but I need to double-check the details on internal versus external load balancers.
upvoted 0 times
...
Stephane
5 months ago
I'm a bit confused about the difference between the global node's policy and the folder's policy. Does anyone recall how that affects the load balancers?
upvoted 0 times
...
Karl
5 months ago
I think we had a similar question in practice about load balancer types and their restrictions based on hierarchy. I might lean towards option D.
upvoted 0 times
...
Ming
5 months ago
I remember that organization policies can override lower-level policies, but I'm not sure how that applies here.
upvoted 0 times
...
Benedict
5 months ago
This seems straightforward enough. I just need to carefully read the policies and match them up with the load balancer types mentioned. As long as I don't miss any details, I should be able to get this right.
upvoted 0 times
...
Novella
5 months ago
I'm a bit confused by the different policy levels. Do I need to consider all of them, or just the one that's closest to the VPC A resource? I want to make sure I don't overcomplicate my approach.
upvoted 0 times
...
Jennie
5 months ago
Okay, let me think this through step-by-step. The global node's policy applies to all resources, so that's the first thing I need to check. Then I'll look at the folder and project policies to see if they override or add any additional restrictions.
upvoted 0 times
...
Ilene
5 months ago
Hmm, this looks like a tricky one. I'll need to carefully analyze the resource hierarchy and the policies at each level to determine which load balancer types are denied in VPC A.
upvoted 0 times
...
Veda
5 months ago
I've got a good strategy here. I'll start by identifying the load balancer types listed in the question, then check each policy level to see which ones are denied. That should give me the answer.
upvoted 0 times
...
Helaine
5 months ago
This looks like a tricky one. I'll need to think through the different scenarios where the model might not be found, like issues with the Content Service or problems with the normalization rules.
upvoted 0 times
...
Davida
10 months ago
Hmm, this question is a real head-scratcher. I bet the answer is hidden in the hieroglyphics of the resource hierarchy! *chuckles*
upvoted 0 times
Sabra
9 months ago
That makes sense. It's important to pay attention to the policies at each level of the hierarchy.
upvoted 0 times
...
Jesus
9 months ago
Yeah, I agree. The policies at both levels would deny those specific load balancer types.
upvoted 0 times
...
Maricela
9 months ago
I think the answer is D, because it mentions both folder and project policies.
upvoted 0 times
...
...
Yoko
10 months ago
This question is a real brain-teaser! I'm going to have to go with D. The folder and project policies combine to deny all the load balancer types listed.
upvoted 0 times
Jody
9 months ago
D is the best option here. The policies at both the folder and project levels restrict all the load balancer types mentioned.
upvoted 0 times
...
Gail
9 months ago
It's definitely a tricky question, but I also think D is the right choice. The combination of folder and project policies covers all the denied load balancer types.
upvoted 0 times
...
Carin
9 months ago
I agree, D is the correct answer. The policies at both the folder and project levels deny all the load balancer types.
upvoted 0 times
...
...
Fletcher
11 months ago
I'm going with C. The project policy denies EXTERNAL_TCP_PROXY and EXTERNAL_SSL_PROXY, so those are the load balancer types that are denied in VPC A.
upvoted 0 times
Gracie
9 months ago
Agreed. C is the right choice based on the project's policy for load balancer types in VPC A.
upvoted 0 times
...
Lorita
9 months ago
I think C is the correct answer too. The project's policy is the one that applies to VPC A in this case.
upvoted 0 times
...
Kerry
10 months ago
That makes sense. The project policy does specify those load balancer types to be denied.
upvoted 0 times
...
Barrett
10 months ago
I'm going with C. The project policy denies EXTERNAL_TCP_PROXY and EXTERNAL_SSL_PROXY, so those are the load balancer types that are denied in VPC A.
upvoted 0 times
...
...
Justa
11 months ago
But what about INTERNAL_TCP_UDP and INTERNAL_HTTP_HTTPS? Are they also denied?
upvoted 0 times
...
Valentin
11 months ago
I agree with Jolanda. The project's policy specifically denies those types.
upvoted 0 times
...
Vincenza
11 months ago
I'm not sure about this one. Let me think it through... Ah, I think B is the right answer. The folder policy denies INTERNAL_TCP_UDP and INTERNAL_HTTP_HTTPS, so those are the load balancer types that are denied in VPC A.
upvoted 0 times
Micah
9 months ago
Yes, B is the right choice. The folder's policy specifically denies INTERNAL_TCP_UDP and INTERNAL_HTTP_HTTPS in VPC A.
upvoted 0 times
...
Darrel
10 months ago
I agree, B is the correct answer. The folder policy dictates which load balancer types are denied in VPC A.
upvoted 0 times
...
...
Alesia
11 months ago
Hmm, I think the correct answer is D. The folder and project policies both deny some types of load balancers, so the final set of denied load balancers would be EXTERNAL_TCP_PROXY, EXTERNAL_SSL_PROXY, INTERNAL_TCP_UDP, and INTERNAL_HTTP_HTTPS.
upvoted 0 times
Jani
9 months ago
Definitely, understanding the organization policy at each node is crucial for making the right decision.
upvoted 0 times
...
Tina
10 months ago
That makes sense, it's important to consider all levels of the hierarchy when determining the denied load balancer types.
upvoted 0 times
...
Johna
10 months ago
So, the correct answer would be D, which includes all the denied load balancer types from both policies.
upvoted 0 times
...
Olga
10 months ago
I agree, the folder and project policies both contribute to the denied load balancer types.
upvoted 0 times
...
...
Jolanda
11 months ago
I think the denied load balancer types in VPC A are EXTERNAL_TCP_PROXY and EXTERNAL_SSL_PROXY.
upvoted 0 times
...

Save Cancel