0
0
GCPcloud~5 mins

Service accounts for applications in GCP - Cheat Sheet & Quick Revision

Choose your learning style9 modes available
LearnWhyDeepVisualTryChallengeProjectRecallTime
Recall & Review
beginner
What is a service account in Google Cloud Platform?
A service account is a special Google account used by applications or virtual machines to make authorized API calls. It acts like an identity for the app to access cloud resources securely.
Click to reveal answer
beginner
Why should applications use service accounts instead of user accounts?
Applications use service accounts because they provide controlled, automated access to resources without needing a human user. This improves security and avoids sharing personal credentials.
Click to reveal answer
intermediate
How do you assign permissions to a service account?
You assign permissions by granting roles to the service account. Roles define what actions the service account can perform on specific resources.
Click to reveal answer
intermediate
What is the difference between a user-managed and a Google-managed service account?
User-managed service accounts are created and controlled by you for your applications. Google-managed service accounts are created and managed by Google for specific services to work properly.
Click to reveal answer
advanced
How can you securely use a service account key in your application?
Store the service account key securely, such as in Secret Manager or environment variables, and avoid embedding it directly in code. Rotate keys regularly to reduce risk.
Click to reveal answer
What does a service account represent in GCP?
AA billing account
BAn application identity to access resources
CA user login for cloud console
DA network firewall rule
Which of the following is a best practice when using service account keys?
ANever rotate keys once created
BEmbed keys directly in source code
CShare keys with all team members via email
DStore keys in a secure location like Secret Manager
How do you control what a service account can do?
ABy assigning roles with specific permissions
BBy changing the service account password
CBy modifying the billing account
DBy updating the network firewall
Which type of service account is created and managed by Google?
AGoogle-managed service account
BUser-managed service account
CBilling service account
DNetwork service account
Why should applications avoid using user accounts for automated access?
AUser accounts have no permissions
BUser accounts expire too quickly
CUser accounts require manual login and are less secure
DUser accounts cannot access cloud resources
Explain what a service account is and why it is important for applications in Google Cloud.
Think about how apps prove who they are to Google Cloud.
You got /4 concepts.
    Describe how you would securely manage and use service account keys in an application.
    Consider how to keep keys safe and limit damage if compromised.
    You got /4 concepts.