Examtopics

Professional Cloud Security Engineer

50
52

Topic 1 Question 51
You want to limit the images that can be used as the source for boot disks. These images will be stored in a dedicated project. What should you do?
- Use the Organization Policy Service to create a compute.trustedimageProjects constraint on the organization level. List the trusted project as the whitelist in an allow operation.
- Use the Organization Policy Service to create a compute.trustedimageProjects constraint on the organization level. List the trusted projects as the exceptions in a deny operation.
- In Resource Manager, edit the project permissions for the trusted project. Add the organization as member with the role: Compute Image User.
- In Resource Manager, edit the organization permissions. Add the project ID as member with the role: Compute Image User.
解説
Reference: https://cloud.google.com/compute/docs/images/restricting-image-access

ユーザの投票
コメント(10)
- Ans : A
  
  👍 11
  DebasishLowes2021/03/22
- Ans - A https://cloud.google.com/compute/docs/images/restricting-image-access#trusted_images
  
  👍 7
  [Removed]2020/10/29
- Answer is B. You don’t whitelist in an allow operation. Since there is an implicit allow, the purpose of the whitelist has been defeated.
  
  👍 3
  danielklein092022/03/15
シャッフルモード

50
52