🔥 3-day streak
Professional Cloud DevOps Engineer91 / 165
Question 91 of 165

Your organization runs a legacy on-premises batch application that cannot use Workload Identity Federation. It authenticates to Google Cloud APIs using a downloaded service account key. Security has flagged that the key has not been rotated in over a year, and they require a repeatable, automated process that minimizes the window during which any single key is valid while avoiding application downtime. Which approach should you implement?

Reviewed for accuracy · Report an issueNext question