[Solved] Given this Access Context Manager policy snippet, what will happen if... Given this Access Context Manager policy snippet, what will happen if a user from IP 172.16.5.10 tries to access a resource? | GCP

GCP - Cloud IAM Advanced

Given this Access Context Manager policy snippet, what will happen if a user from IP 172.16.5.10 tries to access a resource? { "accessLevels": { "levelAlpha": { "basic": { "conditions": [ {"ipSubnetworks": ["172.16.0.0/16"]} ] } } } }

AAccess will be denied due to missing device compliance

BAccess will be denied because the IP is outside the subnet

CAccess will be granted only if the user has an MFA token

DAccess will be granted because the IP matches the subnet condition

Step-by-Step Solution

Solution:

Step 1: Analyze IP subnet condition
The condition allows IPs in 172.16.0.0/16, which includes 172.16.5.10.
Step 2: Check other conditions
No other conditions like MFA or device compliance are specified.
Final Answer:
Access will be granted because the IP matches the subnet condition -> Option D
Quick Check:
IP 172.16.5.10 is within 172.16.0.0/16 [OK]

Quick Trick: IP must be within subnet to grant access [OK]

Common Mistakes:

Assuming IP outside subnet when it is inside
Confusing IP subnet with device policy
Adding MFA requirement not in policy

Master "Cloud IAM Advanced" in GCP

9 interactive learning modes - each teaches the same concept differently

Learn Why Deep Visual Try Challenge Project Recall Time

More GCP Quizzes

Given this Access Context Manager policy snippet, what will happen if a user from IP 172.16.5.10 tries to access a resource?

Step 1: Analyze IP subnet condition

Step 2: Check other conditions

Final Answer:

Quick Check:

Want More Practice?