ExamTopics Logo
Mail Us[email protected]
Menu
Google Discussions
exam questions

Exam Associate Cloud Engineer All Questions

View all questions & answers for the Associate Cloud Engineer exam
Go to Exam

Exam Associate Cloud Engineer topic 1 question 303 discussion

Actual exam question from Google's Associate Cloud Engineer
Question #: 303
Topic #: 1
[All Associate Cloud Engineer Questions]

You are managing the security configuration of your company’s Google Cloud organization. The Operations team needs specific permissions on both a Google Kubernetes Engine (GKE) cluster and a Cloud SQL instance. Two predefined Identity and Access Management (IAM) roles exist that contain a subset of the permissions needed by the team. You need to configure the necessary IAM permissions for this team while following Google-recommended practices. What should you do?

  • A. Create a custom IAM role that combines the permissions from the two relevant predefined roles.
  • B. Grant the team the two predefined IAM roles.
  • C. Create a custom IAM role that includes only the required permissions from the predefined roles.
  • D. Grant the team the IAM roles of Kubernetes Engine Admin and Cloud SQL Admin.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by MohannadSamir at May 18, 2025, 2:21 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
MohannadSamir
3 weeks, 6 days ago
Selected Answer: C
contain a subset of the permissions needed --> Can't use predefined IAM roles For least privilege take the neccesary permission only That's why it's C "In collaboration with Tito"
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel