PROFESSIONAL-CLOUD-SECURITY-ENGINEER Question #166: Real Exam Question with Answer & Explanation

Sign in or unlock PROFESSIONAL-CLOUD-SECURITY-ENGINEER to reveal the answer and full explanation for question #166. The question stem and answer options stay visible for context.

Submitted by yuriko_h· Apr 18, 2026Configuring access within a cloud solution environment

Question

Your security team wants to reduce the risk of user-managed keys being mismanaged and compromised. To achieve this, you need to prevent developers from creating user-managed service account keys for projects in their organization. How should you enforce this?

Options

AConfigure Secret Manager to manage service account keys.
BEnable an organization policy to disable service accounts from being created.
CEnable an organization policy to prevent service account keys from being created.
DRemove the iam.serviceAccounts.getAccessToken permission from users.

Unlock PROFESSIONAL-CLOUD-SECURITY-ENGINEER to see the answer

You've previewed enough free PROFESSIONAL-CLOUD-SECURITY-ENGINEER questions. Unlock PROFESSIONAL-CLOUD-SECURITY-ENGINEER for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.

Unlock PROFESSIONAL-CLOUD-SECURITY-ENGINEER - $49.99 / 30 days Sign in

Topics

#Organization Policy#Service Accounts#IAM#Key Management

Full PROFESSIONAL-CLOUD-SECURITY-ENGINEER Practice Browse All PROFESSIONAL-CLOUD-SECURITY-ENGINEER Questions