🔥 3-day streak
Associate Cloud Engineer140 / 150
Question 140 of 150
A developer on your team stored a downloaded service-account JSON key in a local script three months ago to authenticate to Google Cloud APIs. Your security team now requires that no user-managed service-account keys older than 90 days remain active, and they want to minimize the ongoing risk of leaked long-lived credentials. The script runs on a Compute Engine instance in the same project. What should you recommend?
Reviewed for accuracy · Report an issueNext question