nerdexam
ExamsPROFESSIONAL-CLOUD-DEVELOPERQuestions#165
GoogleGoogle

PROFESSIONAL-CLOUD-DEVELOPER · Question #165

PROFESSIONAL-CLOUD-DEVELOPER Question #165: Real Exam Question with Answer & Explanation

The correct answer is B: Enable Workload Identity in the cluster via the gcloud command-line tool.. https://cloud.google.com/kubernetes-engine/docs/how-to/workload-identity

Deploying Applications

Question

You are developing a microservice-based application that will run on Google Kubernetes Engine (GKE). Some of the services need to access different Google Cloud APIs. How should you set up authentication of these services in the cluster following Google-recommended best practices? (Choose two.)

Options

  • AUse the service account attached to the GKE node.
  • BEnable Workload Identity in the cluster via the gcloud command-line tool.
  • CAccess the Google service account keys from a secret management service.
  • DStore the Google service account keys in a central secret management service.
  • EUse gcloud to bind the Kubernetes service account and the Google service account using

Explanation

https://cloud.google.com/kubernetes-engine/docs/how-to/workload-identity

Topics

#Workload Identity#GKE Security#Service Accounts#API Authentication

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full PROFESSIONAL-CLOUD-DEVELOPER PracticeBrowse All PROFESSIONAL-CLOUD-DEVELOPER Questions