1. You are here:
  2. Home
  3. Exams
  4. Digital Leader
  5. Your manager wants to restrict communication of all virtual machines

Exam: Cloud Digital Leader 0 Likes

Your manager wants to restrict communication of all virtual machines (Digital Leader)

Updated on 05/24/2024

Your manager wants to restrict communication of all virtual machines with internet access; with resources in another network; or with a resource outside Compute Engine. It is expected that different teams will create new folders and projects in the near future.

How would you restrict all virtual machines from having an external IP address?

A) Define an organization policy at the root organization node to restrict virtual machine instances from having an external IP address.
B) Define an organization policy on all existing folders to define a constraint to restrict virtual machine instances from having an external IP address.
C) Define an organization policy on all existing projects to restrict virtual machine instances from having an external IP address.
D) Communicate with the different teams and agree that each time a virtual machine is created, it must be configured without an external IP address.

Solution

Correct answer: A) Define an organization policy at the root organization node to restrict virtual machine instances from having an external IP address.
Root Organization Node: Applying the organization policy at the root organization node ensures that it is effective across all folders and projects within the organization. This helps maintain a consistent policy across different teams and future projects.
Organization Policy: By using organization policies, you can enforce consistent restrictions on resources, in this case, virtual machine instances, throughout the organization. The specified policy can be set to restrict the assignment of external IP addresses to virtual machines.
Future Projects: As new folders and projects are created in the future, the organization policy applied at the root will automatically apply to them, ensuring that the restriction on external IP addresses is maintained.
Therefore, option A is the recommended approach for achieving the specified restriction on virtual machines.

Category: Google Cloud security and operations

Previous Question Next Question
There are no comments yet.

Authentication required

You must log in to post a comment.
Log in to like this solution

Log in

Support us!
Subscribe Now

Cookies Consent

We use cookies to enhance your browsing experience, serve personalized ads or content, and analyze our traffic. By clicking "Accept All" you consent to our use of cookies. Privacy Policy.