1. Home
  2. Discussions
  3. Google
  4. Cloud Developer
  5. Professional-Cloud-Developer Discussions
  6. Professional-Cloud-Developer Exam Topic 1 Question 2 Discussion

Google Certified Professional - Cloud Developer Professional-Cloud-Developer Question # 2 Topic 1 Discussion

 Google Discussions      Browse All Questions      Go to Exam Detail      Get Premium Access
 Previous
Next  

Google Certified Professional - Cloud Developer Professional-Cloud-Developer Question # 2 Topic 1 Discussion

Professional-Cloud-Developer Exam Topic 1 Question 2 Discussion:
Question #: 2
Topic #: 1

For this question, refer to the HipLocal case study.

A recent security audit discovers that HipLocal’s database credentials for their Compute Engine-hosted MySQL databases are stored in plain text on persistent disks. HipLocal needs to reduce the risk of these credentials being stolen. What should they do?
A.

Create a service account and download its key. Use the key to authenticate to Cloud Key Management Service (KMS) to obtain the database credentials.

B.

Create a service account and download its key. Use the key to authenticate to Cloud Key Management Service (KMS) to obtain a key used to decrypt the database credentials.

C.

Create a service account and grant it the roles/iam.serviceAccountUser role. Impersonate as this account and authenticate using the Cloud SQL Proxy.

D.

Grant the roles/secretmanager.secretAccessor role to the Compute Engine service account. Store and access the database credentials with the Secret Manager API.

Get Premium Professional-Cloud-Developer Questions
Actual exam question for Google Professional-Cloud-Developer exam by Kai2801 at Aug 3, 2025, 12:19:13 PM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit
 Previous
Next