Topic 1 Question 254
Your organization has applications that run in multiple clouds. The applications require access to a Google Cloud resource running in your project. You must use short-lived access credentials to maintain security across the clouds. What should you do?
Create a managed workload identity. Bind an attested identity to the Compute Engine workload.
Create a service account key. Download the key to each application that requires access to the Google Cloud resource.
Create a workload identity pool with a workload identity provider for each external cloud. Set up a service account and add an IAM binding for impersonation.
Create a VPC firewall rule for ingress traffic with an allowlist of the IP ranges of the external cloud applications.
ユーザの投票
コメント(7)
Correct Answer: C Short-lived access credentials: Workload Identity Federation (WIF) allows you to issue short-lived access tokens to external applications, reducing the risk of credential theft and misuse. Multiple clouds: You can create a workload identity pool for each external cloud, allowing applications from different environments to access your Google Cloud resources securely. Centralized management: WIF provides a centralized way to manage access to your Google Cloud resources, simplifying administration and improving security. Impersonation: By setting up a service account and adding an IAM binding for impersonation, you can allow external applications to act as the service account, granting them the necessary permissions to access your Google Cloud resources.
👍 4ABotha2024/09/06C is the correct answer
👍 2SQLbox2024/09/08- 正解だと思う選択肢: C
It's C
👍 21e225222024/09/08
シャッフルモード