Topic 1 Question 200
Your company must follow industry specific regulations. Therefore, you need to enforce customer-managed encryption keys (CMEK) for all new Cloud Storage resources in the organization called org1.
What command should you execute?
• organization poli-cy:constraints/gcp.restrictStorageNonCmekServices • binding at: org1 • policy type: allow • policy value: all supported services
• organization policy: con-straints/gcp.restrictNonCmekServices • binding at: org1 • policy type: deny • policy value: storage.googleapis.com
• organization policy: con-straints/gcp.restrictStorageNonCmekServices • binding at: org1 • policy type: deny • policy value: storage.googleapis.com
• organization policy: con-straints/gcp.restrictNonCmekServices • binding at: org1 • policy type: allow • policy value: storage.googleapis.com
ユーザの投票
コメント(8)
- 正解だと思う選択肢: B
B is the correct answer https://cloud.google.com/kms/docs/cmek-org-policy#require-cmek
👍 2anshad6662023/08/20 - 正解だと思う選択肢: B👍 1a190d622023/08/03
- 正解だと思う選択肢: D
D is the correct: Use this constraint by configuring a list of resource hierarchy indicators and setting the constraint to Allow. https://cloud.google.com/kms/docs/cmek-org-policy#project-constraint
👍 1pfilourenco2023/08/05
シャッフルモード