nerdexam
ExamsPROFESSIONAL-CLOUD-DEVELOPERQuestions#17
GoogleGoogle

PROFESSIONAL-CLOUD-DEVELOPER · Question #17

PROFESSIONAL-CLOUD-DEVELOPER Question #17: Real Exam Question with Answer & Explanation

The correct answer is B: Use the instance's service account Application Default Credentials to authenticate to the required. https://cloud.google.com/compute/docs/api/how-tos/authorization If you run applications on your Compute Engine instances, application default credentials can get credentials through built-in service accounts.

Develop secure applications

Question

Your application requires service accounts to be authenticated to GCP products via credentials stored on its host Compute Engine virtual machine instances. You want to distribute these credentials to the host instances as securely as possible. What should you do?

Options

  • AUse HTTP signed URLs to securely provide access to the required resources.
  • BUse the instance's service account Application Default Credentials to authenticate to the required
  • CGenerate a P12 file from the GCP Console after the instance is deployed, and copy the
  • DCommit the credential JSON file into your application's source repository, and have your CI/CD

Explanation

https://cloud.google.com/compute/docs/api/how-tos/authorization If you run applications on your Compute Engine instances, application default credentials can get credentials through built-in service accounts.

Topics

#Service Accounts#Application Default Credentials#Compute Engine#Security Best Practices

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full PROFESSIONAL-CLOUD-DEVELOPER PracticeBrowse All PROFESSIONAL-CLOUD-DEVELOPER Questions