GCP Cloud Resource Manager Flashcards
What is GCP Cloud Resource Manager?
Managing
-Quote
-IAM
-Billing
What is the organization node?
It is the root node of an organization, the highest level. It has a domain like keith-tobin.com and users.
What is the structure of |IAM in GCP?
-Organization
-Folders
-Projects
-Resources
What is the highest level of administration for a GCP Organization?
Admin
Use cases for GCP Organization admin are?
-Auditing (This I found strange, I would never give Admin rights for auditing, I give least privileges and give view-only access to areas required.
What is the use for the GCP Organization owner?
It is reserved for the G Suit super admin
What is the best practice for GCP Organizations admin
You should have more than one. If one what to get killed, the other can sill administrate.
What are GCP IAM Folders used for?
Enables you to group projects, like,
-Dev
-Test
-Accounting
-Shipping
I require the ability to set an IAM policy to a group of projects, how can I do this?
Group the projects under an GCP Organization Folder and apply the policy to the folder
I have a GCP Organization Folder with a project, I move the project, will the IAM policy be moved also?
No, the policy is attached to the folder, you have to be careful when you move projects as the IAM policy will not move.
Can I atach a personal email to an GCP Orgnizational account?
No, you have to have an email belown to the Orgnizationa account.
There are two types of Orgnizational account options, what are they and what dose each do?
G Suit Domain: Gmail, google drive, etc.
Cloud Identity Domain: existing domain
What is a GCP Quota?
They are a soft cap on resources.
What are the 3 types of GCP Quotas we generaly see?
-Resources per porject
-API rate limit
-Per Region
What is the a good use case for GCP Quotas?
The stop errors cause runaway costs.
