A team uses multiple cloud services and wants to deploy all resources — VPCs, Cloud SQL databases, GKE clusters, and IAM roles — using a declarative, open-source infrastructure-as-code tool that works across multiple cloud providers. Which tool integrates natively with Google Cloud for this purpose?
Terraform's Google Cloud provider covers all GCP resources. Open-source, multi-cloud, declarative HCL configuration, state tracking — the standard IaC tool for managing GCP alongside other clouds.
Why this answer
Terraform is the correct choice because it is a declarative, open-source infrastructure-as-code tool that supports multiple cloud providers, including Google Cloud, through its provider plugin architecture. It allows you to manage VPCs, Cloud SQL databases, GKE clusters, and IAM roles using HashiCorp Configuration Language (HCL) and integrates natively with Google Cloud via the google provider.
Exam trap
The trap here is that candidates often confuse Cloud Deployment Manager (a Google-native, proprietary tool) with a multi-cloud solution, or mistake Cloud Build (a CI/CD tool) for an IaC tool, when the question explicitly requires an open-source, multi-cloud declarative IaC tool.
How to eliminate wrong answers
Option A is wrong because Cloud Deployment Manager is Google's native IaC service, but it is not open-source and only works within Google Cloud, not across multiple cloud providers. Option C is wrong because Cloud Build is a CI/CD service for building and deploying application code, not a declarative IaC tool for managing cloud resources like VPCs or databases. Option D is wrong because Ansible is a configuration management and automation tool focused on server provisioning and application deployment, not a declarative IaC tool for managing cloud infrastructure across providers.