Exam Professional Cloud DevOps Engineer topic 1 question 67 discussion

https://cloud.google.com/architecture/prep-kubernetes-engine-for-prod#roles_and_groups Ans D

Option D

GKE has two access control systems: Identity and Access Management (IAM) and role-based access control (RBAC). IAM is Google Cloud's access control system for managing authentication and authorization for Google Cloud resources. You use IAM to grant users access to GKE and Kubernetes resources. RBAC is built into Kubernetes and grants granular permissions for specific resources and operations within your clusters.

D is correct

Option D is a good approach for creating the development and production environments for each team while minimizing costs and ensuring that different teams cannot access other teams' environments. This approach involves creating a Development and Production GKE cluster in separate GCP projects. In each cluster, a Kubernetes namespace is created per team. Then, Kubernetes Role-based access control (RBAC) is configured so that each team can only access its own namespace. This ensures that the teams are isolated from each other and can only access the resources they need, while minimizing costs by using the same clusters for different teams.

Appeard in 7/11/2022 exam keys : least no of clusters + separation

D is correct

D is the answer.

I vote for D as the correct answer, considering cost reduction is stated in the question.

D - Different project for Prod and UAT. RBAC to access each app team GKE area.

D is correct

The answer is D (enterprise multi-tenancy using GKE, reduce costs and control access by RBAC)

D -100%

Sound like B is good ans B. Create one GCP Project per team. In each project, create a cluster with a Kubernetes namespace for Development and one for Production. Grant the teams IAM access to their respective clusters. 1 project and 1 cluster per team with 2 namespace

I go with A.

Ans: D

Will go with D