Google Cloud Professional Cloud Security Engineer — Question 101

Employees at your company use their personal computers to access your organization's Google Cloud console. You need to ensure that users can only access the Google Cloud console from their corporate-issued devices and verify that they have a valid enterprise certificate.

What should you do?

Answer options

• A. Implement an Access Policy in BeyondCorp Enterprise to verify the device certificate. Create an access binding with the access policy just created.
• B. Implement a VPC firewall policy. Activate packet inspection and create an allow rule to validate and verify the device certificate.
• C. Implement an organization policy to verify the certificate from the access context.
• D. Implement an Identity and Access Management (IAM) conditional policy to verify the device certificate.

Correct answer: A

Explanation

The correct answer is A because BeyondCorp Enterprise allows for device certificate verification as part of an access policy, ensuring only authorized devices can access the console. Options B, C, and D do not specifically target the requirements of using an enterprise certificate for access control in this context.