Security & Identity Fundamentals
Fundamental 7 Steps 시간 35 크레딧
Security is an uncompromising feature of Google Cloud Platform services, and GCP has developed specific tools for ensuring safety and identity across your projects. In this fundamental-level quest, you will get hands-on practice with GCP’s Identity and Access Management (IAM) service, which is the go-to for managing user and virtual machine accounts. You will get experience with network security by provisioning VPCs and VPNs, and learn what tools are available for security threat and data loss protections.
Prerequisites:Although this quest will teach you the fundamentals of Identity and Access Management (IAM) and Security in GCP, you will still need hands-on experience with the platform's core tools and services. It is recommended that the student have at least earned a Badge by completing the GCP Essentials and/or the Baseline: Infrastructure Quests before beginning.
Google Cloud IAM은 Cloud Platform 서비스의 액세스 제어를 단일 시스템으로 통합하여 일관된 작업을 제공합니다. 짧은 동영상 Manage Access Control with Google Cloud IAM(Google Cloud IAM으로 액세스 제어 관리)을 시청하세요.
Cloud IAM provides the right tools to manage resource permissions with minimum fuss and high automation. You don't directly grant users permissions. Instead, you grant them roles, which bundle one or more permissions. This allows you to map job functions within your company to groups and roles.
In this hands-on lab, you will learn how to create and manage Service Accounts
이 실습에서는 Google Cloud Platform에 Forseti 서버를 설치합니다. Forseti Security는 GCP 환경의 보안을 개선하는 데 도움이 되는 오픈소스 도구 모음입니다. Forseti는 독립적으로 사용, 구성 및 실행할 수 있는 핵심 모듈로 구성됩니다.
Google Cloud Platform (GCP) Virtual Private Cloud (VPC) Network Peering allows private connectivity across two VPC networks regardless of whether or not they belong to the same project or the same organization.
Learn how to restrict access selected authenticated users with Identity-Aware Proxy without special programming. Discover how to retrieve user identity information from IAP.
In this lab you'll work with advanced features of Google Cloud Security and Privacy APIs, including setting up a secure Cloud Storage bucket, managing keys and encrypted data using Key Management Storage, and viewing Cloud Storage audit logs.