GCP Cloud Resource Manager

Question 1

What is GCP Cloud Resource Manager?

Answer 1

Managing

• Quote
• IAM
• Billing

Question 2

What is the organization node?

Answer 2

It is the root node of an organization, the highest level. It has a domain like keith-tobin.com and users.

Question 3

What is the structure of |IAM in GCP?

Answer 3

• Organization
• Folders
• Projects
• Resources

Question 4

What is the highest level of administration for a GCP Organization?

Answer 4

Admin

Question 5

Use cases for GCP Organization admin are?

Answer 5

-Auditing (This I found strange, I would never give Admin rights for auditing, I give least privileges and give view-only access to areas required.

Question 6

What is the use for the GCP Organization owner?

Answer 6

It is reserved for the G Suit super admin

Question 7

What is the best practice for GCP Organizations admin

Answer 7

You should have more than one. If one what to get killed, the other can sill administrate.

Question 8

What are GCP IAM Folders used for?

Answer 8

Enables you to group projects, like,

• Dev
• Test
• Accounting
• Shipping

Question 9

I require the ability to set an IAM policy to a group of projects, how can I do this?

Answer 9

Group the projects under an GCP Organization Folder and apply the policy to the folder

Question 10

I have a GCP Organization Folder with a project, I move the project, will the IAM policy be moved also?

Answer 10

No, the policy is attached to the folder, you have to be careful when you move projects as the IAM policy will not move.

Question 11

Can I atach a personal email to an GCP Orgnizational account?

Answer 11

No, you have to have an email belown to the Orgnizationa account.

Question 12

There are two types of Orgnizational account options, what are they and what dose each do?

Answer 12

G Suit Domain: Gmail, google drive, etc.

Cloud Identity Domain: existing domain

Question 13

What is a GCP Quota?

Answer 13

They are a soft cap on resources.

Question 14

What are the 3 types of GCP Quotas we generaly see?

Answer 14

• Resources per porject
• API rate limit
• Per Region

Question 15

What is the a good use case for GCP Quotas?

Answer 15

The stop errors cause runaway costs.

Question 16

Are Quotas something you cna set through the web portal and CLI?

Answer 16

No, you have to send a support ticket to Google.

Question 17

Where can I see GCP Quotas?

Answer 17

Via the GCP portal under iAM -> Quotas.

Question 18

What are GCP Lables?

Answer 18

Tool for orgnization GCP resources, much the same as tags in AWS and Azure.

Question 19

How many lables can I have per resource?

Answer 19

64

Question 20

When we are using GCP lables, what are they when you have Key/____?

Answer 20

Value

Question 21

In GCP we have tags, what is the difference between tags and lables?

Answer 21

Tags are only used for network/VPC resources
Affects resource operatins(e,g firewall rule application, netwrk route).
Lables are for orgnizational purpus, dos enot affect resource operation.

Question 22

I ahve an instance and I need to set a firewall rule for one or more instances, do i use tags or lables.

Answer 22

Tags. Lables are only used fto organize resources

Question 23

Can GCP Lables affect how a resource operates?

Answer 23

No