-
Notifications
You must be signed in to change notification settings - Fork 0
/
Google Cloud Service Accounts.txt
49 lines (49 loc) · 2.63 KB
/
Google Cloud Service Accounts.txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
What is the characteristic of Google-managed key pairs?
They support JSON Web Key (JWK) public key format
.
.
Which roles allow service account impersonation in Google Cloud?
Service Account User
.
.
Service Account Token Creator
.
.
Which field of Google Cloud’s projects.serviceAccounts.signJwt API endpoint defines the claims of a JWT?
payload
.
.
What are the characteristics of the principle of least privilege?
Privileges are revoked when they are not required
.
.
Users are given the privileges they need
.
.
Which name field value is valid for the projects.serviceAccounts.delete Google Cloud API call?
projects/MyProject/serviceAccounts/[email protected]
.
.
Which IAM role will allow you to call the Google Cloud’s projects.serviceAccounts.getIamPolicy API endpoint?
View Service Accounts
.
.
Which Google Cloud monitoring component offers the most flexibility in specifying which data to display?
Metrics Explorer
.
.
What are the characteristics of a Google Cloud service account?
Uses public/private RSA key pairs for security
.
.
Does not contain a password
.
.
Which formats does Google Cloud support for private service account key downloads?
Which fields does Google Cloud’s projects.serviceAccounts.generateAccessToken API endpoint return?
expireTime
.
.
accessToken
.
.