GCP Professional Cloud Security Engineer Practice Question
Your security team must ensure that administrators who sign in to the Google Cloud console are prompted to re-authenticate at least once every 8 hours, while still allowing longer sessions for other Google Workspace web apps such as Gmail and Drive. You are a delegated admin for the organization's Cloud Identity tenant. What is the most appropriate way to meet this requirement?
In the Admin console, enable the Google Cloud session control and set the session length to 8 hours under Security β Access and data control β Google Cloud Platform.
Set a custom SAML session duration of 8 hours on the external identity provider used for single sign-on to Google services.
Create a context-aware access level in Access Context Manager that requires re-authentication after 8 hours for all Google services.
Apply a Google Workspace organization-wide web session timeout of 8 hours in Security β End-user access, which automatically covers the Cloud console.
In the Google Admin console you can create a session-length control that applies only to Google Cloud console and gcloud CLI sessions. By navigating to Security β Access and data control β Google Cloud Platform β Session control, you can enable the dedicated setting "Set session length for Google Cloud Console and gcloud" and configure the timeout to 8 hours (the control supports values from 1 to 24 hours). Because this policy targets only Cloud Console and Cloud SDK access, other Google Workspace services continue to use the default session duration, satisfying the requirement without affecting Gmail or Drive. None of the other options will scope a re-authentication interval specifically to Cloud Console sessions.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is the Google Cloud session control in the Admin console?
Open an interactive chat with Bash
What does the Access Context Manager do, and why isn't it suitable for this use case?
Open an interactive chat with Bash
How does the session length setting differ from a Google Workspace-wide web session timeout?
Open an interactive chat with Bash
What is Cloud Identity in GCP?
Open an interactive chat with Bash
What is Access Context Manager in Google Cloud?
Open an interactive chat with Bash
How does session control in Google Admin console work?
Open an interactive chat with Bash
GCP Professional Cloud Security Engineer
Configuring Access
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99 $11.99
$11.99/mo
Billed monthly, Cancel any time.
$19.99 after promotion ends
3 Month Pass
$44.99 $26.99
$8.99/mo
One time purchase of $26.99, Does not auto-renew.
$44.99 after promotion ends
Save $18!
MOST POPULAR
Annual Pass
$119.99 $71.99
$5.99/mo
One time purchase of $71.99, Does not auto-renew.
$119.99 after promotion ends
Save $48!
BEST DEAL
Lifetime Pass
$189.99 $113.99
One time purchase, Good for life.
Save $76!
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .