Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

Google Cloud Fundamentals: Core Services > IAM Roles > Flashcards

IAM Roles Flashcards

1
Q

roles

A

define the can do what on which resource part of Cloud IAM.
is a named list of permissions defined by IAM

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

There are three types of roles in Cloud IAM

A

There are three types of roles in Cloud IAM, basic roles, predefined roles, and custom roles.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

basic roles

A

Basic roles are the original roles that were available in the Cloud console, but they are broad.
You apply them to a Google Crowd project, and they affect all resources in that project.
The basic roles are the owner, editor and viewer roles and billing administrator role

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

basic roles who can do what

A

The owner has full administrative access.This includes the ability to add and remove members and delete projects.
The editor role has modify and delete access.This allows the developer to deploy applications and modify or configure its resources.
The view role has read only access.
billing administrator role manage billing and add or remove administrators without the right to change the resources in the project.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

basic roles are concentric except billing rolle

A

That is the owner role includes the permissions of the editor role.
And the editor role includes the permissions of the viewer role.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

predefined roles

A

Define where the roles can be applied. Provide members with granular access to specific GCP resources and prevent unwanted access to other resources.
These roles are a collection of permissions, because to do any meaningful operations, you usually need more than one permission.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

example GSP service role
instance admin role on a project

A

provides the users of that group:
compute.instances.delete
compute.instances.get
compute.instances.list
compute.instances.setMachineType
compute.instances.start
compute.instances.stop
….

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

permissions themselves are classes and methods in the API’s

A

The permissions themselves are classes and methods in the API’s
For example:
compute.instances.start
can be broken down into the service, resource and verb.
That mean that the permission is used to start a stopped Compute Engine instance.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Which permissions Network Admin role has

A

permissions to create, modify and delete network resources, except for firewall rules and SSL certificates. (read only access to firewall rules SSL certificates, and instances to view their ephemeral IP addresses.)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

The storage admin role contains

A

permissions to create, modify, and delete disks, images, and snapshots.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

which roles allow you to define least privileged permission model

A

custom roles, they are even even finer grained

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

Google Cloud Fundamentals: Core Services (9 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions