Professional Documents
Culture Documents
Prep For ACE Journey Q2 2023 Ivan Vlad S - MAP
Prep For ACE Journey Q2 2023 Ivan Vlad S - MAP
E
> Organization level
> Folder level
> Project level
perations Suite
O
IAM > Cloud monitoring and metrics
Overview
> Scoping project - monitor metrics for multiple projects
ervice Accounts
S > Monitored projects
> Create Acc
Managing Access Interacting with GCP
> Assign perms
> Attach to VM > Console - web user interface
> SDK and Cloud Shell - CLI
Audit logs > Mobile app - for iOS and Android
> REST-based API - for custom apps
nsure ongoing access and security for cloud
e
solutions
Configuring Access & Security utcomes of this phase of the migration journey
O
> Establishing resource hierarchy
> Implementing org policies
Data Access logs are disabled by default except for BigQuery > Aanaging projects and quotas
Environment Setup > Aanaging users and groups
ervice Accounts = uses account identity and access key, it
S > Applying access management
Diagnostic Qs
is used by apps to connect to services > Setup billing and monitoring
torage:
S se gsutil to interact with Cloud Storage via SDK in Cloud
U
> MatchesStorageClass = required to look for objects with a nsuring Successful Ops of a
E Shell
standard storage type
> CreatedBefore = specify date Cloud Solution
asic roles are broad and don't use least priv, grant only the
B
roles that someone needs through predefined and custom
loudRun: Max instances controls costs, limits number of
C roles
connections to a backing services CP ACE:
G
Prep for ACE Journey ditor = lowest level basic role that gives permissions to
E
anaged Instance Group config:
M
> Health Checks Diagnostic Qs Q2 2023 Ivan Vlad S. change resource state