Topic 1 Question 266
Your organization is migrating a complex application to Google Cloud. The application has multiple internal components that interact with each other across several Google Cloud projects. Security is a major concern, and you must design an authorization scheme for administrators that aligns with the principles of least privilege and separation of duties. What should you do?
Identify the users who will migrate the application, revoke the default user roles and assign the users with purposely created custom roles.
Use multiple external identity providers (IdP) configured to use different SAML profiles and federate the IdPs for each application component.
Configure multi-factor authentication (MFA) to enforce the use of physical tokens for all users who will migrate the application.
No action needed. When a Google Cloud organization is created, the appropriate permissions are automatically assigned to all users in the domain.
ユーザの投票
コメント(3)
- 正解だと思う選択肢: A
I think it's A.
👍 2yokoyan2024/09/05 - 正解だと思う選択肢: A
a
👍 1BondleB2024/11/03 - 正解だと思う選択肢: A
revoke default role and create custom roles with least privilege
👍 1KLei2024/11/13
シャッフルモード