Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

GCP Associate engineer > IAM > Flashcards

IAM Flashcards

1
Q

What geographical types of resources are there?

A

Zonal
Regional
Multi-regional (App engine, cloud datastore, cloud storage, cloud bigquery)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is the Resource hierarchy in GCP, how is policy inherited and how are overlapping IAM policies solved?

A

Organization, Folder, Project, resource, policies are inherited down in the resource hierarchy and should a conflict arise between any of these Resources the most generous policy wins out

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What are the components of a IAM policy?

A

Who
Can do what
On which Resource

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What kinds of roles are there?

A 
Primitive (Owner, Editor, Viewer)
Predefined roles (Specific to Resources)
Custom roles (Roles defined by users)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is the Organization Policy Service, describe its constraint types and give examples

A

The OPS is a service that allows the definition of policies made up of constraints to the use of resources or certain configurations of them.
It complements IAM policies.
There are 2 types of constraints list and boolean.
An example of a list constraint would be blocking publicIpAccess to a set of VMs
An example of a boolean constraint would be blocking the creation of service accounts

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What are Identities?

A

Identities can be either service-accounts or users

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What types of service-accounts are there, how do they differ?

A

user-managed and google-managed, google-managed is usually created automatically by resources

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What types of billing accounts are there, how do they differ?

A

self-serve and invoice, self-serve is billed automatically to a card or some other method whilst invoice is only manually paid by the GCP customer.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Can billing data be exported, if so to where and which roles are allowed to do so?

A

Yes, to big query and cloud storage, the billing account cost manager and billing account administrator can perform this task.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What are the roles of cloud billing, describe them

A

Billing Account Administrator - Can do all
Billing Account Cost Manager - Can set budgets, see and analyze spending and export data
Billing Account User - Can link billing account to projects as well as use promotions and credits
Billing Account Creator - Can create billing accounts
Billing Account Viewer - Can view costs and transactions
Billing Manager - Can link and unlink a billing account to a project

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What is Google Cloud Operations?

A

Former stackdriver its a set of services for monitoring, debugging, logging and tracing apps and resources

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

GCP Associate engineer (6 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions