🔥 3-day streak
Professional Cloud Architect124 / 169
Question 124 of 169

A financial services company has adopted keyless authentication across its Google Cloud organization. During a security review, the compliance team discovers that several development teams are still manually creating and downloading service account key files (JSON keys) and storing them in code repositories. Leadership mandates a preventive control that blocks the creation of user-managed service account keys across all projects, while allowing a narrow exception for one legacy integration project. What should the architect implement?

Reviewed for accuracy · Report an issueNext question