PROFESSIONAL-CLOUD-DEVELOPER · Question #224
PROFESSIONAL-CLOUD-DEVELOPER Question #224: Real Exam Question with Answer & Explanation
The correct answer is D: Create a new namespace in the existing cluster. Using Kubernetes role-based access control. You define permissions within a Role or ClusterRole object. A Role defines access to resources within a single Namespace, while a ClusterRole defines access to resources in the entire cluster. https://cloud.google.com/kubernetes-engine/docs/how-to/role-based-access-control
Question
Your team manages a Google Kubernetes Engine (GKE) cluster where an application is running. A different team is planning to integrate with this application. Before they start the integration, you need to ensure that the other team cannot make changes to your application, but they can deploy the integration on GKE. What should you do?
Options
- AUsing Identity and Access Management (IAM), grant the Viewer IAM role on the cluster project to
- BCreate a new GKE cluster. Using Identity and Access Management (IAM), grant the Editor role on
- CCreate a new namespace in the existing cluster. Using Identity and Access Management (IAM),
- DCreate a new namespace in the existing cluster. Using Kubernetes role-based access control
Explanation
You define permissions within a Role or ClusterRole object. A Role defines access to resources within a single Namespace, while a ClusterRole defines access to resources in the entire cluster. https://cloud.google.com/kubernetes-engine/docs/how-to/role-based-access-control
Topics
Community Discussion
No community discussion yet for this question.