Topic 1 Question 131
Your organization stores all application logs from multiple Google Cloud projects in a central Cloud Logging project. Your security team wants to enforce a rule that each project team can only view their respective logs and only the operations team can view all the logs. You need to design a solution that meets the security team s requirements while minimizing costs. What should you do?
Grant each project team access to the project _Default view in the central logging project. Grant togging viewer access to the operations team in the central logging project.
Create Identity and Access Management (IAM) roles for each project team and restrict access to the _Default log view in their individual Google Cloud project. Grant viewer access to the operations team in the central logging project.
Create log views for each project team and only show each project team their application logs. Grant the operations team access to the _AllLogs view in the central logging project.
Export logs to BigQuery tables for each project team. Grant project teams access to their tables. Grant logs writer access to the operations team in the central logging project.
ユーザの投票
コメント(4)
- 正解だと思う選択肢: C👍 3koo_kai2023/10/28
Answer is B
👍 2khoukha2023/10/28C is the answer.
👍 1mshafa2023/11/03
シャッフルモード