Google Cloud Professional Cloud Security Engineer — Question 280

Which Identity-Aware Proxy role should you grant to an Identity and Access Management (IAM) user to access HTTPS resources?

Answer options

• A. Security Reviewer
• B. IAP-Secured Tunnel User
• C. IAP-Secured Web App User
• D. Service Broker Operator

Correct answer: C

Explanation

The correct answer is C, IAP-Secured Web App User, as this role specifically allows users to access web applications that are protected by Identity-Aware Proxy. The other options, such as Security Reviewer and Service Broker Operator, do not provide the necessary permissions for accessing HTTPS resources, while IAP-Secured Tunnel User is geared towards tunneling rather than web access.