Examtopics

コメント(9)

• BC is correct answer

  👍 2

  K1SMM2023/08/03
• 正解だと思う選択肢: BE

  B. This policy ensures that only trusted images from specific Container Registry repositories can be deployed. This meets one of the requirements

  E. Binary Authorization ensures that only container images that are signed by trusted authorities can be deployed on GKE. Attestations are a component of this, as they provide a verifiable signature by trusted parties that an image meets certain criteria.

  👍 2

  cyberpunk212023/08/22
• 正解だと思う選択肢: BE

  To ensure that only trusted container images are deployed on Google Kubernetes Engine (GKE) clusters in a project and that the containers are deployed from a centrally managed Container Registry and signed by a trusted authority, you should consider the following options:

  Configure the trusted image organization policy constraint for the project (Option B): This will allow you to create an organization policy constraint that enforces the use of only trusted images from a specific Container Registry. You can specify the registry that must be used, ensuring that images are sourced only from that trusted location.

  Configure the Binary Authorization policy with respective attestations for the project (Option E): Binary Authorization for GKE allows you to create policies that enforce the use of only trusted container images. You can specify which images are trusted and require attestation from trusted authorities before deployment. This ensures that only signed and trusted images can be deployed on the GKE clusters in the project.

  👍 2

  Xoxoo2023/09/18