Topic 1 Question 263
Your organization relies heavily on virtual machines (VMs) in Compute Engine. Due to team growth and resource demands, VM sprawl is becoming problematic. Maintaining consistent security hardening and timely package updates poses an increasing challenge. You need to centralize VM image management and automate the enforcement of security baselines throughout the virtual machine lifecycle. What should you do?
Use VM Manager to automatically distribute and apply patches to YMs across your projects. Integrate VM Manager with hardened, organization-standard VM images stored in a central repository.
Configure the sole-tenancy feature in Compute Engine for all projects. Set up custom organization policies in Policy Controller to restrict the operating systems and image sources that teams are allowed to use.
Create a Cloud Build trigger to build a pipeline that generates hardened VM images. Run vulnerability scans in the pipeline, and store images with passing scans in a registry. Use instance templates pointing to this registry.
Activate Security Command Center Enterprise. Use VM discovery and posture management features to monitor hardening state and trigger automatic responses upon detection of issues.
ユーザの投票
コメント(7)
- 正解だと思う選択肢: A
It's A 100%
👍 41e225222024/09/08 A is the correct answer ,VM Manager allows you to centrally manage and automate patching, configuration management, and compliance enforcement for VMs. By integrating with hardened VM images stored in a central repository, you ensure that VMs are consistently created with security baselines and regularly updated. • This solution provides automation and central control, which addresses both the challenges of VM sprawl and the need for consistent security.
👍 3SQLbox2024/09/08- 正解だと思う選択肢: C
I think it's C.
👍 2yokoyan2024/09/05
シャッフルモード