As your organization expands its usage of GCP, many teams have started to create their own projects. Projects are further multiplied to accommodate different stages of deployments and target audiences. Each project requires unique access control configurations. The central IT team needs to have access to all projects. Furthermore, data from Cloud Storage buckets and BigQuery datasets must be shared for use in other projects in an ad hoc way. You want to simplify access control management by minimizing the number of policies. Which two steps should you take? (Choose two.)
A) Use Cloud Deployment Manager to automate access provision.
B) Introduce resource hierarchy to leverage access control policy inheritance.
C) Create distinct groups for various teams, and specify groups in Cloud IAM policies.
D) Only use service accounts when sharing data for Cloud Storage buckets and BigQuery datasets.
E) For each Cloud Storage bucket or BigQuery dataset, decide which projects need access. Find all the active members who have access to these projects, and create a Cloud IAM policy to grant access to all these users.
Correct Answer:
Verified
Q244: If you're running a performance test that
Q245: You need to choose a database for
Q246: You are designing a cloud-native historical data
Q247: You have Cloud Functions written in Node.js
Q248: Cloud Bigtable is a recommended option for
Q250: You have a data pipeline that writes
Q251: You work for a shipping company that
Q252: You work for a shipping company that
Q253: You are building a data pipeline on
Q254: Your company has a hybrid cloud initiative.
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents