Topic 7 Question 6
Mountkirk Games wants you to secure the connectivity from the new gaming application platform to Google Cloud. You want to streamline the process and follow Google-recommended practices. What should you do?
Configure Workload Identity and service accounts to be used by the application platform.
Use Kubernetes Secrets, which are obfuscated by default. Configure these Secrets to be used by the application platform.
Configure Kubernetes Secrets to store the secret, enable Application-Layer Secrets Encryption, and use Cloud Key Management Service (Cloud KMS) to manage the encryption keys. Configure these Secrets to be used by the application platform.
Configure HashiCorp Vault on Compute Engine, and use customer managed encryption keys and Cloud Key Management Service (Cloud KMS) to manage the encryption keys. Configure these Secrets to be used by the application platform.
ユーザの投票
コメント(17)
A is correct . https://cloud.google.com/kubernetes-engine/docs/how-to/workload-identity Workload Identity is the recommended way to access Google Cloud services from applications running within GKE due to its improved security properties and manageability. For information about alternative ways to access Google Cloud APIs from GKE, refer to the alternatives section below.
👍 30muhasinem2021/07/01A) - Because Mountkrik Game is going to use GKE clusters for its new deployment and so work load identity is the preferred way to connect the apps running on GKE
👍 11dhamo_5552021/07/31Answer is A
👍 4MamthaSJ2021/07/07
シャッフルモード