Topic 1 Question 267
You need to containerize a web application that will be hosted on Google Cloud behind a global load balancer with SSL certificates. You don’t have the time to develop authentication at the application level, and you want to offload SSL encryption and management from your application. You want to configure the architecture using managed services where possible. What should you do?
Host the application on Google Kubernetes Engine, and deploy an NGINX Ingress Controller to handle authentication.
Host the application on Google Kubernetes Engine, and deploy cert-manager to manage SSL certificates.
Host the application on Compute Engine, and configure Cloud Endpoints for your application.
Host the application on Google Kubernetes Engine, and use Identity-Aware Proxy (IAP) with Cloud Load Balancing and Google-managed certificates.
ユーザの投票
コメント(3)
D. provides a comprehensive, managed solution that fulfills all the requirements: containerized application hosting on GKE, simplified authentication with IAP, SSL offloading and management with Cloud Load Balancing and Google-managed certificates.
👍 1vspringe2023/11/13- 正解だと思う選択肢: D
It should be D
👍 1diegodoal2023/11/15 - 正解だと思う選択肢: D
IAP provides a way to control access to applications running on GCP without the need for traditional VPNs. It works by verifying a user’s identity and determining if that user should be allowed access to the application. This is especially useful since you do not have the time to develop authentication at the application level. IAP can handle this for you.
👍 1plutonians1232023/12/02
シャッフルモード