Google Cloud Professional Cloud Architect — Question 34
Your customer is moving their corporate applications to Google Cloud Platform. The security team wants detailed visibility of all projects in the organization. You provision the Google Cloud Resource Manager and set up yourself as the org admin.
What Google Cloud Identity and Access Management (Cloud IAM) roles should you give to the security team?
Answer options
- A. Org viewer, project owner
- B. Org viewer, project viewer
- C. Org admin, project browser
- D. Project owner, network admin
Correct answer: B
Explanation
The correct answer is B, as the 'Org viewer' role allows the security team to see all organization resources, while the 'Project viewer' role provides access to view project details without the ability to modify them. The other options grant either too much access or roles that do not align with the need for visibility without control over the resources.