Google Cloud Associate Cloud Engineer — Question 182

All development (dev) teams in your organization are located in the United States. Each dev team has its own Google Cloud project. You want to restrict access so that each dev team can only create cloud resources in the United States (US). What should you do?

Answer options

• A. Create a folder to contain all the dev projects. Create an organization policy to limit resources in US locations.
• B. Create an organization to contain all the dev projects. Create an Identity and Access Management (IAM) policy to limit the resources in US regions.
• C. Create an Identity and Access Management (IAM) policy to restrict the resources locations in the US. Apply the policy to all dev projects.
• D. Create an Identity and Access Management (IAM) policy to restrict the resources locations in all dev projects. Apply the policy to all dev roles.

Correct answer: A

Explanation

The correct answer is A because creating a folder for all dev projects and implementing an organization policy is the most effective way to manage resource location restrictions at a higher organizational level. Options B, C, and D are incorrect as they either misinterpret the scope of organization policies or do not align with the requirement to limit resources across multiple projects effectively.