Topic 1 Question 195
You are auditing all your Google Cloud resources in the production project. You want to identify all principals who can change firewall rules.
What should you do?
Use Policy Analyzer to query the permissions compute.firewalls.get or compute.firewalls.list.
Use Firewall Insights to understand your firewall rules usage patterns.
Reference the Security Health Analytics – Firewall Vulnerability Findings in the Security Command Center.
Use Policy Analyzer to query the permissions compute.firewalls.create or compute.firewalls.update or compute.firewalls.delete.
ユーザの投票
コメント(6)
D is correct!
👍 4K1SMM2023/08/02- 正解だと思う選択肢: D
D- To identify all principals who can change firewall rules, you should use Policy Analyzer to query for the permissions related to creating, updating, or deleting firewall rules. These permissions are usually associated with compute.firewalls.create, compute.firewalls.update, and compute.firewalls.delete. By checking which principals have these permissions, you can determine who has the ability to change firewall rules in your Google Cloud project.
👍 2akg0012023/08/13 - 正解だと思う選択肢: D
Must be D
👍 2anshad6662023/08/20
シャッフルモード