nerdexam
ExamsPROFESSIONAL-CLOUD-DEVELOPERQuestions#148
GoogleGoogle

PROFESSIONAL-CLOUD-DEVELOPER · Question #148

PROFESSIONAL-CLOUD-DEVELOPER Question #148: Real Exam Question with Answer & Explanation

The correct answer is B: Install Istio, enable proxy injection on your application namespace, and then enable mTLS.. https://cloud.google.com/istio/docs/istio-on-gke/installing

Securing applications and services

Question

Your security team is auditing all deployed applications running in Google Kubernetes Engine. After completing the audit, your team discovers that some of the applications send traffic within the cluster in clear text. You need to ensure that all application traffic is encrypted as quickly as possible while minimizing changes to your applications and maintaining support from Google. What should you do?

Options

  • AUse Network Policies to block traffic between applications.
  • BInstall Istio, enable proxy injection on your application namespace, and then enable mTLS.
  • CDefine Trusted Network ranges within the application, and configure the applications to allow
  • DUse an automated process to request SSL Certificates for your applications from Let's Encrypt

Explanation

https://cloud.google.com/istio/docs/istio-on-gke/installing

Topics

#Istio#mTLS#Service Mesh#GKE Security

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full PROFESSIONAL-CLOUD-DEVELOPER PracticeBrowse All PROFESSIONAL-CLOUD-DEVELOPER Questions