Certified Google Cloud Architect

Author Archives: anuj - Page 12

Firewall rules based on Network tags – GCP

anuj September 3, 2022 Firewall rules based on Network tags – GCP2023-03-12T23:12:16+00:00 GCP Networking No Comment

Overview Network tags as logical labels that you can apply to VMs. The tags are defined independently, but referenced during the creation of a firewall rule. Use Case - Allow…

Default Service Accounts versus Custom Service Accounts – GCP

anuj September 3, 2022 Default Service Accounts versus Custom Service Accounts – GCP2024-01-15T01:55:37+00:00 Google Identity No Comment

What are default service accounts? Default Service Accounts are used by GCP - and are not modifiable. In fact, you would not see them listed in the IAM-->Service Accounts menu.…

Private IP Data Transfer vs. Public IP

anuj September 3, 2022 Private IP Data Transfer vs. Public IP2022-09-03T11:18:57+00:00 No Comment

Cloud Interconnect (and VPN) - used to connect Private IPs Direct Peering - Exists outside of Google Cloud - uses Public IPs to connect. Use case Transfer LARGE amounts of…

Disk Level Backups of Criticial Instances – GCP

anuj September 3, 2022 Disk Level Backups of Criticial Instances – GCP2022-09-03T11:19:38+00:00 Compute Engine No Comment

Use Case - Critical VM Instance with data and software on root disk. Need to be able to recreate instances from this backup, to be used across other projects in…

NoOps (No Operations) Spectrum on GCP

anuj September 1, 2022 NoOps (No Operations) Spectrum on GCP2022-09-30T17:45:21+00:00 Google Cloud Platform No Comment

From least operations to the most required operations - this is a chart of the various compute services on GCP Cloud Functions (LEAST) --> App Engine Standard --> GKE -->…

Using CMEKs in GCP

anuj September 1, 2022 Using CMEKs in GCP2022-09-01T19:03:09+00:00 Encryption and Data Protection No Comment

If you use a CMEK, the CMEK is used to encrypt the Object Data, Object's checksum and MD5 hash, but not the object name. The object name is still encrypted…

Active Directory on GCP

anuj August 28, 2022 Active Directory on GCP2022-08-28T13:52:08+00:00 GCP IAM No Comment

This post is about hosting your AD on GCP. It is not about syncing gSuite and AD users. Typically, in Cloud IAM, you would bring over your gSuite (now google…

Service Accounts in GCP – Notes from Production Environments

anuj August 23, 2022 Service Accounts in GCP – Notes from Production Environments2024-01-15T02:01:46+00:00 GCP IAM No Comment

Need Help with your GCP Project? Contact a certified professional GoogleCloudArchitect today. Why Google Service Accounts? Storing credentials in apps is cumbersome (and insecure). A Service account solves this problem…

REST APIs versus ENI Interfaces

anuj August 18, 2022 REST APIs versus ENI Interfaces2022-08-18T16:50:58+00:00 Enter your password to view comments.

This content is password protected. To view it please enter your password below: Password:

What is workload identity in GKE?

anuj August 18, 2022 What is workload identity in GKE?2022-10-03T18:04:46+00:00 GKE No Comment

GKE access control consists of two separate identity pieces - Cloud Identity (Cloud IAM) and Native Kubernetes IAM (Kube Identity) Each of these (Cloud IAM and Kube RBAC) - have…

«‹10 111213 14 ›»