GoogleGoogle
PROFESSIONAL-CLOUD-DEVELOPER · Question #114
PROFESSIONAL-CLOUD-DEVELOPER Question #114: Real Exam Question with Answer & Explanation
The correct answer is B: Deploy a namespace per tenant and use Network Policies in each blog deployment.. https://cloud.google.com/kubernetes-engine/docs/concepts/multitenancy-overview
Implementing Security for Applications
Question
You are a SaaS provider deploying dedicated blogging software to customers in your Google Kubernetes Engine (GKE) cluster. You want to configure a secure multi-tenant platform to ensure that each customer has access to only their own blog and can't affect the workloads of other customers. What should you do?
Options
- AEnable Application-layer Secrets on the GKE cluster to protect the cluster.
- BDeploy a namespace per tenant and use Network Policies in each blog deployment.
- CUse GKE Audit Logging to identify malicious containers and delete them on discovery.
- DBuild a custom image of the blogging software and use Binary Authorization to prevent untrusted
Explanation
https://cloud.google.com/kubernetes-engine/docs/concepts/multitenancy-overview
Topics
#Multi-tenancy#Kubernetes Namespaces#Network Policies#GKE Security
Community Discussion
No community discussion yet for this question.