Home › GCP Professional Cloud Architect › cloudcomputing › gcppcasecurity › Which GCP service controls who can do what on wh…
Which GCP service controls who can do what on which resource — the foundation of GCP's permission model?
ACloud Memorystore
BIdentity and Access Management (IAM)
CCloud DNS
DCloud Armor
Answer & Solution
Correct answer: B. Identity and Access Management (IAM)
IAM is the principal+role+resource permission model in GCP. The other services aren't permission systems.
Related questions
Which GCP compliance design feature gives an architect audit-grade tamper-evident logs of Which GCP design principle separates production deploy permissions from production data-reWhich Chrome Enterprise feature gives administrators device-aware policies and threat protWhich GCP IAM feature lets a less-privileged user temporarily assume the identity of a morWhich GCP feature lets an architect protect generative-AI deployments from prompt-injectioWhich GCP feature lets an architect enforce constraints across an entire organisation (e.gWhich GCP feature lets a workload outside GCP (e.g. AWS / Azure / on-prem) authenticate toWhich GCP service provides secure remote access to internal apps without a corporate VPN —