Cloud Identity and Access Management (Cloud IAM) enables you to create and manage permissions for Google Cloud Platform resources. Cloud IAM unifies access control for Cloud Platform services into a single system and presents a consistent set of operations.
Questions tagged [google-cloud-iam]
671 questions
-1
votes
3 answers
How to link a google cloud vm to an instance schedule?
I want to run my google cloud server everyday on specific times. I set up an instance schedule for that but when i try to link my vm to the schedule it gives me the following error:
Compute Engine System service account…
SebastiaanTheCoder
- 33
- 9
-1
votes
1 answer
Is it possible to permission specific resources to specific users on Google Cloud?
Is it possible to permission specific resources to specific users?
Example:
I want John Doe to only be able to modify one specific cluster, but not any other clusters.
I want Jane Doe to be able to write to certain buckets but not all buckets.
Mark Wagner
- 1,011
- 6
- 11
-1
votes
1 answer
Google Cloud: best practice for developer workstations authentication
The question is specifically about the case where developers need to access GCP from their workstations (Firestore, Stackdriver, KMS...).
In Google Cloud documentation, it is usually stated:
Developer workstation: Authenticating by using a service…
Nikola Mihajlović
- 2,286
- 2
- 19
- 23
-1
votes
1 answer
Managed Service Provider on Google Cloud Platform
If a Managed Service Provider (MSP) wants to monitor existing GCP projects of a client that are associated to a client billing account ( meaning the client is directly paying to Google for it ) , how can the MSP start monitoring those ? What are the…
DynaObject LLC
- 5
- 3
-1
votes
1 answer
Inhibit project creation outside Cloud Identity organization
I've a Cloud Identity Org mapped to a Google Cloud Platform Org.
The IAM policy on GCP Org is the following:
"Admins" can create project and make administrative ops
"Devs" can browse
In GCP Org is all ok, but I've seen that a "Devs" user can…
Davide Belloni
- 11
- 1
- 4
-1
votes
1 answer
What permission do I need on a service account to allow pushing docker images to the container registry?
I'm using a service account to authenticate with the gcloud utillity. I'm trying to push a docker image with the command of:
gcloud docker -- push eu.gcr.io/abcxyz/example:latest
but get an error of:
denied: Unable to create the repository, please…
Chris Stryczynski
- 30,145
- 48
- 175
- 286
-2
votes
1 answer
How to config GCS bucket permission with terraform?
I want to set permission for service account sa-email.com on bucket bucket_A.
How can I configure as below with terraform?
sa-email.com can create file in bucket_A
sa-email.com can not delete file in bucket_A
UPDATE:
Now in my project, sa-email is…
ender1986
- 95
- 1
- 9
-2
votes
1 answer
GCP IAM management screen. Is this a bug or my misunderstanding?
You can see Table A of permissions in GCP's IAM and Administration > IAM page.
Table A has an item called Analyzed Permissions (Extra / Total).
You can see more detailed Table B for that role by clicking on a value such as 2/4 of this item.
Normally…
invalid
- 1,215
- 4
- 13
- 30
-2
votes
1 answer
How can I grant individual permissions for user in IAM for Bigquery using python
I want to give below IAM permission for the user.
Permission:
BigQuery Job User
Browser
I know How I can set through windows UI but I want to set this IAM permission through a python script?
Pradeep Bhutare
- 35
- 10
-3
votes
1 answer
What are the different Terraform google__iam?
This is my first time using Google Cloud and Terraform. There is something I don't understand and can't find good documentation or explanation about it.
I am trying to add a policy to a service account and noticed in the Terraform Google document…
Zuerst
- 217
- 1
- 2
- 5
-4
votes
1 answer
Make GCP Function Public - IAM policy update failed
I have GCP throwing me an IAM Error when trying to make a function totally 100% public.
Under Permissions, in the function: Add > New Members: allUsers > Role: Essential Contact Viewer.
It warns you about making it fully public to all on the…
user14714819