Examtopics

Professional Cloud Developer

95
97

Topic 1 Question 96
You have written a Cloud Function that accesses other Google Cloud resources. You want to secure the environment using the principle of least privilege. What should you do?
- Create a new service account that has Editor authority to access the resources. The deployer is given permission to get the access token.
- Create a new service account that has a custom IAM role to access the resources. The deployer is given permission to get the access token.
- Create a new service account that has Editor authority to access the resources. The deployer is given permission to act as the new service account.
- Create a new service account that has a custom IAM role to access the resources. The deployer is given permission to act as the new service account.
解説
Reference: https://cloud.google.com/blog/products/application-development/least-privilege-for-cloud-functions-using-cloud-iam

ユーザの投票
コメント(5)
- Agree with D
  
  👍 7
  ParagSanyashiv2022/01/08
- 正解だと思う選択肢: D
  D is correct
  
  👍 2
  tomato1232022/08/19
- What 'deployer' means here? The function itself? or the user who set up the function?
  
  👍 1
  megn2022/05/26
シャッフルモード

95
97