GCP Cloud Resource Manager Flashcards

1
Q

What is GCP Cloud Resource Manager?

A

Managing

  • Quote
  • IAM
  • Billing
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is the organization node?

A

It is the root node of an organization, the highest level. It has a domain like keith-tobin.com and users.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is the structure of |IAM in GCP?

A
  • Organization
  • Folders
  • Projects
  • Resources
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is the highest level of administration for a GCP Organization?

A

Admin

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Use cases for GCP Organization admin are?

A

-Auditing (This I found strange, I would never give Admin rights for auditing, I give least privileges and give view-only access to areas required.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is the use for the GCP Organization owner?

A

It is reserved for the G Suit super admin

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is the best practice for GCP Organizations admin

A

You should have more than one. If one what to get killed, the other can sill administrate.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What are GCP IAM Folders used for?

A

Enables you to group projects, like,

  • Dev
  • Test
  • Accounting
  • Shipping
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

I require the ability to set an IAM policy to a group of projects, how can I do this?

A

Group the projects under an GCP Organization Folder and apply the policy to the folder

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

I have a GCP Organization Folder with a project, I move the project, will the IAM policy be moved also?

A

No, the policy is attached to the folder, you have to be careful when you move projects as the IAM policy will not move.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Can I atach a personal email to an GCP Orgnizational account?

A

No, you have to have an email belown to the Orgnizationa account.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

There are two types of Orgnizational account options, what are they and what dose each do?

A

G Suit Domain: Gmail, google drive, etc.

Cloud Identity Domain: existing domain

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What is a GCP Quota?

A

They are a soft cap on resources.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What are the 3 types of GCP Quotas we generaly see?

A
  • Resources per porject
  • API rate limit
  • Per Region
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What is the a good use case for GCP Quotas?

A

The stop errors cause runaway costs.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Are Quotas something you cna set through the web portal and CLI?

A

No, you have to send a support ticket to Google.

17
Q

Where can I see GCP Quotas?

A

Via the GCP portal under iAM -> Quotas.

18
Q

What are GCP Lables?

A

Tool for orgnization GCP resources, much the same as tags in AWS and Azure.

19
Q

How many lables can I have per resource?

A

64

20
Q

When we are using GCP lables, what are they when you have Key/____?

A

Value

21
Q

In GCP we have tags, what is the difference between tags and lables?

A

Tags are only used for network/VPC resources
Affects resource operatins(e,g firewall rule application, netwrk route).
Lables are for orgnizational purpus, dos enot affect resource operation.

22
Q

I ahve an instance and I need to set a firewall rule for one or more instances, do i use tags or lables.

A

Tags. Lables are only used fto organize resources

23
Q

Can GCP Lables affect how a resource operates?

A

No