Exam4Training

What should you do?

You want to make sure that your organization’s Cloud Storage buckets cannot have data publicly available to the internet. You want to enforce this across all Cloud Storage buckets.

What should you do?
A . Remove Owner roles from end users, and configure Cloud Data Loss Prevention.
B . Remove Owner roles from end users, and enforce domain restricted sharing in an organization policy.
C . Configure uniform bucket-level access, and enforce domain restricted sharing in an organization policy.
D . Remove *.setIamPolicy permissions from all roles, and enforce domain restricted sharing in an organization policy.

Answer: C

Explanation:

– Uniform bucket-level access: https://cloud.google.com/storage/docs/uniform-bucket-level-access#should-you-use – Domain Restricted Sharing: https://cloud.google.com/resource-manager/docs/organization-policy/restricting-domains#public_data_sharing

Exit mobile version