ExamTopics Logo
Mail Us[email protected]
Menu
Google Discussions
exam questions

Exam Professional Cloud DevOps Engineer All Questions

View all questions & answers for the Professional Cloud DevOps Engineer exam
Go to Exam

Exam Professional Cloud DevOps Engineer topic 1 question 173 discussion

Actual exam question from Google's Professional Cloud DevOps Engineer
Question #: 173
Topic #: 1
[All Professional Cloud DevOps Engineer Questions]

Your company stores a large volume of infrequently used data in Cloud Storage. The projects in your company's CustomerService folder access Cloud Storage frequently, but store very little data. You want to enable Data Access audit logging across the company to identify data usage patterns. You need to exclude the CustomerService folder projects from Data Access audit logging. What should you do?

  • A. Enable Data Access audit logging for Cloud Storage at the organization level, and configure exempted principals to include users of the CustomerService folder.
  • B. Enable Data Access audit logging for Cloud Storage at the organization level, with no additional configuration.
  • C. Enable Data Access audit logging for Cloud Storage for all projects and folders other than the CustomerService folder.
  • D. Enable Data Access audit logging for Cloud Storage for all projects and folders, and configure exempted principals to include users of the CustomerService folder.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by exam987_654 at Feb. 16, 2025, 8:51 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
kleranti
2 weeks, 1 day ago
Selected Answer: C
vote for C
upvoted 1 times
...
RushinthJohn
3 weeks ago
Selected Answer: C
A and D don't work because this approach is designed to exempt specific users or service accounts from audit logging. It does not allow you to exempt entire projects or folders. Even if you exempted all users associated with CustomerService projects, new users or service accounts added later might not be exempted, and it would be administratively complex to manage. The requirement is to exclude projects/folder, not just principals.
upvoted 1 times
...
8136dd0
1 month ago
Selected Answer: A
It is A
upvoted 1 times
...
enry99ita
4 months ago
Selected Answer: C
you should enable Data Access audit logging individually for each project and folder that requires it, excluding the CustomerService folder. This approach ensures that only the desired parts of your organization have audit logging enabled, while the CustomerService folder remains excluded.
upvoted 1 times
odinson
1 month, 2 weeks ago
question specifically mentions that you need to enale this ACROSS THE COMPANY. So it means correct answer is A.
upvoted 1 times
...
...
kitaharazyl
4 months, 3 weeks ago
Selected Answer: C
C. Enable Data Access audit logging for Cloud Storage for all projects and folders other than the CustomerService folder.
upvoted 2 times
...
GCP001
5 months, 3 weeks ago
Selected Answer: D
A and B is wrong as you can enable data access logs on organisation level than you can not disable folder or project level, https://cloud.google.com/logging/docs/audit/configure-data-access. D) Looks more feasible and uniform way.
upvoted 2 times
...
exam987_654
6 months ago
Selected Answer: A
Question says across company, so Organisation and we need to excule the CustomerService folder
upvoted 1 times
soady
5 months, 1 week ago
A excludes the users, not the folder. Users could be accessing stuff in other folders/projects that should be logged. C is the only one that excludes at the folder level.
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel