GCP Professional Cloud Security Engineer Practice Question

Your security team has issued a new credential policy for all Cloud Identity users:

Passwords must be at least 14 characters long.
They must contain a mix of upper- and lower-case letters, numbers, and symbols.
Users must change passwords every 90 days.
Users must not be allowed to reuse any of their 10 most recent passwords. You are asked whether these four requirements can be enforced exclusively with built-in Google Cloud Identity password settings, without resorting to external tools or scripts. What should you answer?

Cloud Identity does not support 90-day password expiration; you must rely on third-party identity management to meet that control.
All four requirements can be met using only Cloud Identity's configurable password policy settings.
Cloud Identity cannot enforce a minimum password length higher than 12 characters, so an external tool is required.
Cloud Identity lacks a setting to block reuse of more than five previous passwords, so a custom script is required.

Report Issue

Answer Description

Google Cloud Identity password policies support (1) setting a minimum password length anywhere between 8 and 100 characters, (2) enabling the built-in strong-password control that requires a mix of upper- and lower-case letters, numbers, and symbols, (3) specifying a maximum password age from 30 to 730 days, and (4) preventing users from reusing 1 - 24 previous passwords. Because all four stated requirements fall within those configurable limits-14-character minimum length, mixed-character complexity, 90-day expiry, and blocking reuse of the last 10 passwords-the admin can meet the policy entirely with native Cloud Identity settings. Therefore it is correct to state that the requirements are fully enforceable without additional tooling, and any answer suggesting otherwise is incorrect.

Ask Bash

Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.