Topic 1 Question 132
Your company uses Jenkins running on Google Cloud VM instances for CI/CD. You need to extend the functionality to use infrastructure as code automation by using Terraform. You must ensure that the Terraform Jenkins instance is authorized to create Google Cloud resources. You want to follow Google-recommended practices. What should you do?
Confirm that the Jenkins VM instance has an attached service account with the appropriate Identity and Access Management (IAM) permissions.
Use the Terraform module so that Secret Manager can retrieve credentials.
Create a dedicated service account for the Terraform instance. Download and copy the secret key value to the GOOGLE_CREDENTIALS environment variable on the Jenkins server.
Add the gcloud auth application-default login command as a step in Jenkins before running the Terraform commands.
ユーザの投票
コメント(7)
- 正解だと思う選択肢: A
I go for A as it looks to be the fundamental thing at least.
👍 3lelele20232023/11/02 A is the answer.
👍 2mshafa2023/11/03- 正解だと思う選択肢: C
The best way to ensure that the Terraform Jenkins instance is authorized to create Google Cloud resources and follow Google-recommended practices is to create a dedicated service account for the Terraform instance and download and copy the secret key value to the GOOGLE_CREDENTIALS environment variable on the Jenkins server.
👍 1Billbalaji2023/11/06
シャッフルモード