Google Cloud Associate Cloud Engineer — Question 67

Your organization has a dedicated person who creates and manages all service accounts for Google Cloud projects. You need to assign this person the minimum role for projects. What should you do?

Answer options

• A. Add the user to roles/iam.roleAdmin role.
• B. Add the user to roles/iam.securityAdmin role.
• C. Add the user to roles/iam.serviceAccountUser role.
• D. Add the user to roles/iam.serviceAccountAdmin role.

Correct answer: D

Explanation

The correct answer is D because the roles/iam.serviceAccountAdmin role provides the necessary permissions to create and manage service accounts. The other roles do not grant the specific permissions needed for managing service accounts effectively, making them inappropriate for this task.