A cloud service at an organization should only allow for...

A cloud service at an organization should only allow for logins based on a user's specific and authorized location. Which technologies do security engineers suggest using to comply with this requirement? (Select all that apply.) Select one or more: GPS IP VLAN SSH

Transcript

00:01 Hello student, implementing an access control solution based on the user's role in a cloud environment, whether it's microsoft azure or aws amazon web services, is crucial to ensure the security and efficiency of the operation.

00:14 In this paper, we will discuss on implementing such a solution in the context of microsoft azure.

00:20 So, we will discuss the key components and the steps involved in achieving secure access control.

00:27 So, here i am taking microsoft azure.

00:31 Introduction, the insurance company is preparing for a massive spike in claims due to the impending hurricane and has decided to leverage a public cloud provider, specifically microsoft azure, to handle the increased demand.

00:47 The company aims to control access, securely transmit data, and ensure data erasers when virtual machines are shut down.

00:56 The solution will integrate with existing infrastructure, which includes microsoft active directory, windows 10 workstation, and oracle database 19c on linux, implementing access control in microsoft azure.

01:13 Identify and access management, so here azure active directory, azure ad, will be used to manage, identify, and authenticate the user.

01:23 The insurance company should integrate its existing active directory with azure ad to ensure seamless authentication.

01:31 Number b, role -based access control, rbac.

01:34 Azure provides rbac, allowing fine -grained control over permissions.

01:40 So, roles should be defined based on the principles of the risk -privileged, ensure that users and resources only have access to what is necessary for their tasks.

01:50 Number 2, virtual network and subnet.

01:53 So, virtual network, vnet, azure vnets would be used to create an isolated network for the cloud resources.

02:00 Vnet connection can be established for secure communication between on -premises and cloud environments.

02:07 Network security group, nsgs.

02:10 Nsg would be used to control inbound and outbound traffic to the vm.

02:14 Rules should be configured to allow traffic only from the authenticated ip address.

02:20 Secure data transmission.

02:22 So, if a private virtual network, vpn, azure offers vpn gateway services that can be used to create a secure network between the corporate network and azure vnets.

02:33 This ensures that data transmitted between on -premises and the cloud environment is encrypted and secured.

02:40 So, here the security is ensured.

02:43 Azure express route.

02:44 For higher security and performance, azure express route can be considered...

Question

A cloud service at an organization should only allow for logins based on a user's specific and authorized location. Which technologies do security engineers suggest using to comply with this requirement? (Select all that apply.) Select one or more: GPS IP VLAN SSH

Please give Ace some feedback