0
0
GCPcloud~20 mins

SSH access and metadata in GCP - Practice Problems & Coding Challenges

Choose your learning style9 modes available
LearnWhyDeepVisualTryChallengeProjectRecallTime
Challenge - 5 Problems
🎖️
SSH Access Mastery
Get all challenges correct to earn this badge!
Test your skills under time pressure!
🧠 Conceptual
intermediate
2:00remaining
Understanding SSH Key Metadata in GCP
In Google Cloud Platform, when you add an SSH public key to a VM instance's metadata, what does this metadata entry control?
AIt allows the specified user to SSH into the VM using the corresponding private key.
BIt disables password authentication for all users on the VM.
CIt restricts SSH access only to users with the Google Cloud Console account.
DIt automatically installs the SSH server software on the VM instance.
Attempts:
2 left
💡 Hint
Think about what SSH keys do in general for secure access.
Configuration
intermediate
2:00remaining
Configuring SSH Access via Project-wide Metadata
You want to allow a new user to SSH into all VM instances in your GCP project without adding keys to each VM individually. Where should you add the user's SSH public key?
AAdd the SSH public key to each VM instance's local metadata individually.
BAdd the SSH public key to the project-wide metadata under the 'ssh-keys' entry.
CAdd the SSH public key to the firewall rules to allow SSH traffic.
DAdd the SSH public key to the service account attached to the VM instances.
Attempts:
2 left
💡 Hint
Think about how project-wide metadata affects all instances.
security
advanced
2:30remaining
Preventing Unauthorized SSH Access via Metadata
Which of the following practices best prevents unauthorized SSH access to your GCP VM instances when using SSH keys in metadata?
AAllow SSH access only from any IP address to avoid connection issues.
BDisable the SSH service on all VM instances and use only serial console access.
CAdd all users' SSH keys to the default service account metadata.
DRegularly rotate SSH keys and remove unused keys from instance and project metadata.
Attempts:
2 left
💡 Hint
Think about key management and minimizing access.
service_behavior
advanced
2:00remaining
Effect of Removing SSH Keys from Metadata
If you remove a user's SSH public key from the project-wide metadata, what happens when that user tries to SSH into a VM instance that does not have their key in its local metadata?
AThe user will be prompted to enter a password instead of using the key.
BThe user will still be able to SSH because keys are cached on the VM.
CThe user will be denied SSH access because their key is no longer authorized.
DThe VM instance will automatically add the user's key back from the Google Cloud Console.
Attempts:
2 left
💡 Hint
Consider how SSH key authorization works with metadata.
Architecture
expert
3:00remaining
Designing Secure SSH Access with Metadata and OS Login
You want to enforce centralized SSH access control using Google Cloud OS Login instead of managing SSH keys in metadata. Which statement correctly describes the behavior when OS Login is enabled on VM instances?
ASSH keys in instance or project metadata are ignored; access is controlled by IAM roles assigned to users.
BSSH keys in metadata override OS Login settings and grant access regardless of IAM roles.
COS Login disables SSH access completely and requires use of the Google Cloud Console only.
DOS Login requires manually adding SSH keys to each VM's local metadata for access.
Attempts:
2 left
💡 Hint
Think about how OS Login integrates with IAM and metadata.