Topic 1 Question 153
You are configuring Cloud Logging for a new application that runs on a Compute Engine instance with a public IP address. A user-managed service account is attached to the instance. You confirmed that the necessary agents are running on the instance but you cannot see any log entries from the instance in Cloud Logging. You want to resolve the issue by following Google-recommended practices. What should you do?
Export the service account key and configure the agents to use the key.
Update the instance to use the default Compute Engine service account.
Add the Logs Writer role to the service account.
Enable Private Google Access on the subnet that the instance is in.
ユーザの投票
コメント(6)
answer is C. For B, they specified that a user manager service account is attached to the instance, so the default one will not gonna be used.
👍 4khoukha2023/10/29I think answer C is correct in granting the existing service account the least privilege to write logs.
👍 3activist2023/10/21- 正解だと思う選択肢: C
Same reason as KHOUKHA.
👍 3mshafa2023/11/04
シャッフルモード