Q: 2
You are designing the architecture to process your data from Cloud Storage to BigQuery by using
Dataflow. The network team provided you with the Shared VPC network and subnetwork to be used
by your pipelines. You need to enable the deployment of the pipeline on the Shared VPC network.
What should you do?
Options
Discussion
A is wrong, B. The pipeline needs networkUser on the service account, not the service agent.
D imo. Assigning the dataflow.admin role to the service account seems like it would give enough permissions for the pipeline to run on the Shared VPC, including managing jobs and maybe network access too. Not 100% sure if that's all that's needed but dataflow.admin feels pretty broad for Dataflow tasks. Correct me if I'm missing something.
Be respectful. No spam.
