Security & Identity Fundamentals

Fundamental 7 Steps Hours 35 Credits

Security is an uncompromising feature of Google Cloud Platform services, and GCP has developed specific tools for ensuring safety and identity across your projects. In this fundamental-level quest, you will get hands-on practice with GCP’s Identity and Access Management (IAM) service, which is the go-to for managing user and virtual machine accounts. You will get experience with network security by provisioning VPCs and VPNs, and learn what tools are available for security threat and data loss protections.

Infrastructure Security


Although this quest will teach you the fundamentals of Identity and Access Management (IAM) and Security in GCP, you will still need hands-on experience with the platform's core tools and services. It is recommended that the student have at least earned a Badge by completing the GCP Essentials and/or the Baseline: Infrastructure Quests before beginning.

Quest Outline

Atelier pratique

Cloud IAM : Qwik Start

Google Cloud IAM centralise le contrôle des accès aux services Cloud Platform dans un seul système et offre un ensemble cohérent d'opérations. Pour en savoir plus, regardez cette courte vidéo : Manage Access Control with Google Cloud IAM (Gérer le contrôle des accès avec Google Cloud IAM).

Deutsch English español (Latinoamérica) français 日本語 português (Brasil)
Atelier pratique

IAM Custom Roles

Cloud IAM provides the right tools to manage resource permissions with minimum fuss and high automation. You don't directly grant users permissions. Instead, you grant them roles, which bundle one or more permissions. This allows you to map job functions within your company to groups and roles.

Atelier pratique

Service Accounts and Roles: Fundamentals

In this hands-on lab, you will learn how to create and manage Service Accounts

Atelier pratique

Install a Forseti Server on Google Cloud Platform

In this lab, you install a Forseti Server on Google Cloud Platform. Forseti Security is a collection of open-source tools to help you improve the security of your GCP environments. Forseti consists of core modules that you can independently enable, configure, and execute.

Atelier pratique

VPC Network Peering

Google Cloud Platform (GCP) Virtual Private Cloud (VPC) Network Peering allows private connectivity across two VPC networks regardless of whether or not they belong to the same project or the same organization.

Atelier pratique

User Authentication: Identity-Aware Proxy

Learn how to restrict access selected authenticated users with Identity-Aware Proxy without special programming. Discover how to retrieve user identity information from IAP.

Atelier pratique

Premiers pas avec Cloud KMS

Dans cet atelier, vous allez utiliser les fonctionnalités avancées des API de sécurité et de confidentialité Google Cloud pour configurer un bucket Cloud Storage sécurisé, gérer des clés et des données chiffrées à l'aide de Key Management Storage, et consulter des journaux d'audit Cloud Storage.

Deutsch English español (Latinoamérica) français 日本語 português (Brasil)
Atelier pratique

Configurer un cluster Kubernetes privé

Atelier pratique de création d'un cluster privé dans l'environnement cloud. Dans un cluster privé, les nœuds n'ont pas d'adresse IP publique. Vos charges de travail s'exécutent donc dans un environnement isolé d'Internet. Prérequis : maîtrise des clusters Kubernetes et de l'adressage IP aux formats de plage CIDR.

Deutsch English español (Latinoamérica) français 日本語 한국어 português (Brasil)

Enroll Now

Enroll in this quest to track your progress toward earning a badge.