This is a dedicated watch page for a single video.
You are setting up an enterprise application suite that spans multiple GCP projects. Your Google Compute Engine instances in the td-app project needs to view the data stored on a BigQuery dataset in the td-database project. You want to follow Google-recommended practices in creating service accounts for your VM instances. What should you do?