Module 3: Controlling Access to VPC Networks

Looking for ‘Networking in Google Cloud: Network Security Module 3 Answers’?

In this post, I provide complete, accurate, and detailed explanations for the answers to Module 3: Controlling Access to VPC Networks of Course 6: Networking in Google Cloud: Network SecurityPreparing for Google Cloud Certification: Cloud Security Engineer Professional Certificate.

Whether you’re preparing for quizzes or brushing up on your knowledge, these insights will help you master the concepts effectively. Let’s dive into the correct answers and detailed explanations for each question!

Module Quiz

Graded Assignment

1. Which IAM role contains permissions to create, modify, and delete networking resources, except for firewall rules and SSL certificates?

  • Network administrator ✅
  • Network viewer
  • Security viewer
  • Security administrator

Explanation:
The Network Administrator role (roles/compute.networkAdmin) allows a user to:

  • Create, modify, and delete networking resources like VPC networks, subnets, and routes.
  • Does NOT include permissions to manage firewall rules or SSL certificates, which are handled by other roles such as Security Admin.

2. Which type of IAM member belongs to an application or virtual machine instead of an individual end user?

  • Service account ✅
  • Google account
  • Cloud Identity domain
  • Google group

Explanation:
A service account is a special type of Google account intended to represent:

  • Applications, VMs, or services — not individuals.
  • It is used to authenticate and authorize programmatic access to Google Cloud APIs and services.

Related contents:

Module 2: Distributed Denial of Service (DDoS) Protection
Module 4: Advanced Security Monitoring and Analysis

You might also like:

Course 1: Preparing for Your Professional Cloud Security Engineer Journey
Course 2: Google Cloud Fundamentals: Core Infrastructure
Course 3: Networking in Google Cloud: Fundamentals
Course 4: Networking in Google Cloud: Routing and Addressing
Course 5: Networking in Google Cloud: Network Architecture
Course 7: Networking in Google Cloud: Load Balancing
Course 8: Networking in Google Cloud: Hybrid and Multicloud
Course 9: Managing Security in Google Cloud
Course 10: Security Best Practices in Google Cloud
Course 11: Mitigating Security Vulnerabilities on Google Cloud
Course 12: Logging and Monitoring in Google Cloud
Course 13: Observability in Google Cloud
Course 14: Hands-On Labs in Google Cloud for Security Engineers

Leave a Reply