Domain 3.1: Deploying and implementing Compute Engine resources — GCP ACE Practice Question 21

How to approach this question

Identify the GCP feature that links Linux SSH access to Google Workspace/Cloud Identity accounts.

Full Answer

Enable OS Login at the project level., Grant the users the 'roles/compute.osLogin' or 'roles/compute.osAdminLogin' IAM role.

OS Login is the GCP feature that ties SSH access to IAM. To use it, you must first enable it (usually by setting `enable-oslogin=TRUE` in project metadata) and then grant users the appropriate IAM roles (`compute.osLogin` for standard user access, or `compute.osAdminLogin` for sudo access).

Common mistakes

Selecting manual SSH key management, which is exactly what OS Login is designed to prevent.

Your security team requires that all SSH access to Compute Engine instances be tied to users' Google Cloud IAM identities, rather than managing individual SSH keys manually. You need to configure this for a new project.

Which TWO steps should you take to implement this? (Select TWO)

How to approach this question

Full Answer

Common mistakes

Practice the full GCP Associate Cloud Engineer Practice Exam 2

More questions from this exam

Your security team requires that all SSH access to Compute Engine instances be tied to users' Google Cloud IAM identities, rather than managing individual SSH keys manually. You need to configure this for a new project. Which TWO steps should you take to implement this? (Select TWO)

How to approach this question

Full Answer

Common mistakes

Practice the full GCP Associate Cloud Engineer Practice Exam 2

More questions from this exam

Your security team requires that all SSH access to Compute Engine instances be tied to users' Google Cloud IAM identities, rather than managing individual SSH keys manually. You need to configure this for a new project.

Which TWO steps should you take to implement this? (Select TWO)