🔥 3-day streak
Professional Cloud Security Engineer125 / 152
Question 125 of 152
A development team stores third-party API credentials in Google Cloud Secret Manager. An application running on a Compute Engine instance needs to read the current value of one specific secret at runtime, but it must not be able to create, delete, modify, or list other secrets in the project. Following least-privilege principles, what should the security engineer configure?
Reviewed for accuracy · Report an issueNext question