Google Cloud Professional Cloud Security Engineer — Question 265

You are a security administrator at your company and are responsible for managing access controls (identification, authentication, and authorization) on Google
Cloud. Which Google-recommended best practices should you follow when configuring authentication and authorization? (Choose two.)

Answer options

• A. Use Google default encryption.
• B. Manually add users to Google Cloud.
• C. Provision users with basic roles using Google's Identity and Access Management (IAM) service.
• D. Use SSO/SAML integration with Cloud Identity for user authentication and user lifecycle management.
• E. Provide granular access with predefined roles.

Correct answer: D, E

Explanation

The correct answers, D and E, emphasize using SSO/SAML integration for streamlined user authentication and lifecycle management, along with providing granular access via predefined roles, which enhances security. Options A, B, and C do not align with the recommended practices for effective access control management in Google Cloud.