🔥 3-day streak
Professional Cloud Architect121 / 169
Question 121 of 169

A financial services company runs hundreds of Compute Engine VMs across many projects. Their security team requires that all SSH access to VMs be centrally auditable, tied to IAM identities, and that access can be revoked immediately when an employee leaves. Currently, engineers manage their own project-level and instance-level SSH metadata keys, which the security team cannot easily track. Which approach best meets these requirements with minimal ongoing operational overhead?

Reviewed for accuracy · Report an issueNext question