Mountkirk Games wants you to secure the connectivity from the new gaming application platform to Google Cloud. You want to streamline the process and follow
Google-recommended practices. What should you do?
Mountkirk Games wants you to secure the connectivity from the new gaming application platform to Google Cloud. You want to streamline the process and follow
Google-recommended practices. What should you do?
Configuring Workload Identity and service accounts is the recommended approach for securing connectivity from applications running on GKE to Google Cloud services. Workload Identity allows for seamless and secure integration between Kubernetes service accounts and Google Cloud IAM, enhancing security by avoiding the need to manage long-lived service account keys. This practice aligns with Google Cloud's best practices for managing identities and access in a cloud-native environment.
A is correct . https://cloud.google.com/kubernetes-engine/docs/how-to/workload-identity Workload Identity is the recommended way to access Google Cloud services from applications running within GKE due to its improved security properties and manageability. For information about alternative ways to access Google Cloud APIs from GKE, refer to the alternatives section below.
A) - Because Mountkrik Game is going to use GKE clusters for its new deployment and so work load identity is the preferred way to connect the apps running on GKE
Answer is A
The correct answer is: A. Configure Workload Identity and service accounts to be used by the application platform. Workload Identity is a feature of Google Cloud that allows you to map identities from your on-premises or Google Cloud identity provider to Google Cloud service accounts. By using Workload Identity, you can secure the connectivity of your application platform to Google Cloud by using the service accounts to authenticate and authorize access to Google Cloud resources. Service accounts are Google Cloud resources that represent non-human users that your application platform can use to authenticate and authorize access to Google Cloud resources. By using service accounts, you can secure the connectivity of your application platform to Google Cloud by controlling which resources the service accounts can access and what actions they can perform.
To configure Workload Identity and service accounts, you will need to create a service account and bind it to the identity of your workload. You can then use the service account to authenticate to Google Cloud APIs and access the resources needed by your application platform. This will help to secure the connectivity from the platform to Google Cloud and streamline the process of managing access and permissions.
hey guys new Qs posted as of July 12th, 2021, All 21 new Qs in Question #152
A is the correct answer https://cloud.google.com/kubernetes-engine/docs/how-to/workload-identity
I answered A in real exam
A. Configure Workload Identity and service accounts to be used by the application platform.
A for sure if you are using GKE :)
"Secure the connectivity" - gaming platform runs on GKE, and Workload Identity is the recommended way to connect to Google Cloud services from GKE. Hence A.
vote A
A is the best option, as we know the work loads in Mountkirk. Read more what will be managed by GCP, if we go with Workload Identity: https://cloud.google.com/kubernetes-engine/docs/concepts/workload-identity#what_is
from my view looks like C
A. Workload Identity is the recommended way to access Google Cloud services from applications running within GKE due to its improved security properties and manageability https://cloud.google.com/kubernetes-engine/docs/how-to/workload-identity
A is right
A is ok
This question is vague and confusing, I have no idea what it wants to secure exactly. If we're talking about secrets like api keys and tokens another things, I'd use secrets manager, but that's not a choice, if we're talking about service account access it's workload identity. None of this is specified and thus the question is unanswerable.