Google Cloud Professional Cloud Security Engineer Practice Exam

What two steps should be taken to integrate on-premises Active Directory with Google Cloud?

• A. Install Google Cloud Directory Sync and connect to Active Directory
• B. Create service accounts for Active Directory integration
• C. Set up IAM roles for each Active Directory group
• D. Utilize Google Cloud Identity and create IAM roles

The correct answer is: Install Google Cloud Directory Sync and connect to Active Directory

Integrating on-premises Active Directory with Google Cloud typically requires a mechanism that allows for synchronization and connection between the two environments. Installing Google Cloud Directory Sync (GCDS) is essential for this process as it enables the synchronization of users, groups, and their attributes from Active Directory to Google Cloud. This means that any changes made in your on-premises directory, such as additions or deletions of users, will be reflected in Google Cloud, ensuring that identity management remains consistent across both environments. By connecting Google Cloud Directory Sync to Active Directory, you facilitate a seamless flow of identity information which helps maintain organization and security across cloud applications and on-premises resources. This integration is crucial for organizations looking to implement single sign-on (SSO) or for those who want to manage access to Google Cloud resources using existing Active Directory credentials. The other options touch on important aspects of access management and identity governance but do not directly address the necessary steps for establishing the connection and synchronization between on-premises Active Directory and Google Cloud. Therefore, while they are relevant to cloud security and management, they are not primary steps in the integration process.