What should you do?

While migrating your organization’s infrastructure to GCP, a large number of users will need to access GCP Console. The Identity Management team already has a well-established way to manage your users and want to keep using your existing Active Directory or LDAP server along with the existing SSO password.

What should you do?
A . Manually synchronize the data in Google domain with your existing Active Directory or LDAP server.
B . Use Google Cloud Directory Sync to synchronize the data in Google domain with your existing Active Directory or LDAP server.
C . Users sign in directly to the GCP Console using the credentials from your on-premises Kerberos compliant identity provider.
D . Users sign in using OpenID (OIDC) compatible IdP, receive an authentication token, then use that token to log in to the GCP Console.

Answer: B

Explanation:

https://cloud.google.com/architecture/identity/federating-gcp-with-active-directory-configuring-single-sign-on

Reference: https://cloud.google.com/blog/products/identity-security/using-your-existing-identity-management-system-with-google-cloud-platform

Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments