Topic 1 Question 308
Your organization has users and groups configured in an external identity provider (IdP). You want to leverage the same external IdP to allow Google Cloud console access to all employees. You also want to personalize the sign-in experience by displaying the user's name and photo when users access the Google Cloud console. What should you do?
Configure workforce identity federation with the external IdP, and set up attribute mapping.
Configure a service account for each individual by using the user name and photo, and grant permissions for each user to impersonate their respective service accounts.
Configure workload identity federation to get the external IdP tokens, and use these tokens to sign in to the Google Cloud console.
Create a Google group that includes organization email IDs for all users. Ask users to use the same name, work email ID, and password to register and sign in.
ユーザの投票
コメント(1)
- 正解だと思う選択肢: A
Workforce Identity Federation allows organizations to authenticate and manage access for users from external IdPs (such as Azure AD or Okta) without creating and managing separate Google Cloud accounts. Attribute Mapping enables the personalization of the user experience by mapping attributes such as the user's name and photo from the external IdP, ensuring that the user's details are displayed correctly when accessing the Google Cloud console.
👍 1anshad6662024/10/11
シャッフルモード