0
0
GCPcloud~5 mins

IAM policy binding in GCP - Cheat Sheet & Quick Revision

Choose your learning style9 modes available
LearnWhyDeepVisualTryChallengeProjectRecallTime
Recall & Review
beginner
What is an IAM policy binding in Google Cloud?
An IAM policy binding connects a role to one or more members, defining who has what permissions on a resource.
Click to reveal answer
beginner
What are the main components of an IAM policy binding?
The main components are: <br>1. Role - a set of permissions.<br>2. Members - users, groups, or service accounts.<br>3. Condition (optional) - a rule to limit when the binding applies.
Click to reveal answer
beginner
How do you specify a member in an IAM policy binding?
Members are specified by their type and identity, for example:<br>- user:email@example.com<br>- serviceAccount:my-sa@project.iam.gserviceaccount.com<br>- group:group@example.com
Click to reveal answer
intermediate
What is the purpose of a condition in an IAM policy binding?
A condition limits when the binding applies, based on attributes like request time or resource properties, adding extra security control.
Click to reveal answer
beginner
Why should you follow the principle of least privilege when creating IAM policy bindings?
To give only the minimum permissions needed, reducing the risk of accidental or malicious actions on your cloud resources.
Click to reveal answer
What does an IAM policy binding connect in Google Cloud?
AA VM to a network
BA role to members
CA project to a billing account
DA storage bucket to a folder
Which of the following is NOT a valid member type in an IAM policy binding?
Auser:email@example.com
BserviceAccount:my-sa@project.iam.gserviceaccount.com
Cdevice:device123
Dgroup:group@example.com
What is the role of a condition in an IAM policy binding?
ATo limit when the binding applies
BTo assign a role permanently
CTo list all members
DTo delete the binding
Which principle helps reduce risk when assigning IAM roles?
APrinciple of least privilege
BPrinciple of maximum access
CPrinciple of open sharing
DPrinciple of unlimited roles
In an IAM policy binding, what does the 'role' represent?
AA billing account
BA user account
CA network location
DA set of permissions
Explain what an IAM policy binding is and its main components.
Think about who gets what permissions and under what conditions.
You got /4 concepts.
    Describe why using conditions in IAM policy bindings can improve security.
    Consider how rules can restrict access based on time or resource attributes.
    You got /4 concepts.