ExamTopics Logo
Mail Us[email protected]
Menu
Google Discussions
exam questions

Exam Professional Cloud Security Engineer All Questions

View all questions & answers for the Professional Cloud Security Engineer exam
Go to Exam

Exam Professional Cloud Security Engineer topic 1 question 22 discussion

Actual exam question from Google's Professional Cloud Security Engineer
Question #: 22
Topic #: 1
[All Professional Cloud Security Engineer Questions]

A website design company recently migrated all customer sites to App Engine. Some sites are still in progress and should only be visible to customers and company employees from any location.
Which solution will restrict access to the in-progress sites?

  • A. Upload an .htaccess file containing the customer and employee user accounts to App Engine.
  • B. Create an App Engine firewall rule that allows access from the customer and employee networks and denies all other traffic.
  • C. Enable Cloud Identity-Aware Proxy (IAP), and allow access to a Google Group that contains the customer and employee user accounts.
  • D. Use Cloud VPN to create a VPN connection between the relevant on-premises networks and the company's GCP Virtual Private Cloud (VPC) network.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by SilentSec at July 16, 2020, 7:33 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
[Removed]
Highly Voted 3 years, 6 months ago
Ans - C https://cloud.google.com/iap/docs/concepts-overview#when_to_use_iap
upvoted 12 times
...
[Removed]
Most Recent 9 months, 2 weeks ago
Selected Answer: C
This is the ideal use case for IAP. "C" is the most accurate answer. https://cloud.google.com/iap/docs/concepts-overview#when_to_use_iap
upvoted 1 times
...
GCP72
1 year, 8 months ago
Selected Answer: C
The correct answer is C
upvoted 2 times
...
simbu1299
2 years, 1 month ago
Selected Answer: C
Answer is C
upvoted 1 times
...
mlx
3 years, 5 months ago
B - I think it is about to restrict access to 2 company networks, we can control access using IPs ranges, So Firewall rules should be sufficient. No need an extra product like IAP.. and also need users in Cloud Identity or other Idp federated..
upvoted 1 times
FatCharlie
3 years, 5 months ago
The sites should be accessible from any location, not just from the 2 company networks.
upvoted 4 times
...
...
MohitA
3 years, 8 months ago
C serves the purpose
upvoted 3 times
...
bigdo
3 years, 9 months ago
c is correct
upvoted 2 times
...
ArizonaClassics
3 years, 9 months ago
C is very correct
upvoted 2 times
...
SilentSec
3 years, 9 months ago
C is correct.
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago