Google Cloud Professional Cloud Security Engineer — Question 126

Your company is moving to Google Cloud. You plan to sync your users first by using Google Cloud Directory Sync (GCDS). Some employees have already created Google Cloud accounts by using their company email addresses that were created outside of GCDS. You must create your users on Cloud Identity.

What should you do?

Answer options

• A. Configure GCDS and use GCDS search rules to sync these users.
• B. Use the transfer tool to migrate unmanaged users.
• C. Write a custom script to identify existing Google Cloud users and call the Admin SDK: Directory API to transfer their account.
• D. Configure GCDS and use GCDS exclusion rules to ensure users are not suspended.

Correct answer: B

Explanation

The correct answer is B because the transfer tool is specifically designed to migrate unmanaged users to Cloud Identity. Option A is incorrect as search rules do not address the migration of existing accounts. Option C, while possible, is overly complex for this scenario, and option D does not resolve the issue of transferring unmanaged users to Cloud Identity.