All Questions
Tagged with google-iam google-compute-engine
10
questions
2
votes
1
answer
1k
views
GCP - which role a permission belongs?
I cant understand why use of IAM is so hard to comprehend.
For example I am trying to create a schedule for a VM instance. When I add instance to a schedule I got:
Compute Engine System service ...
1
vote
1
answer
154
views
Cannot login to Google Cloud Virtual Machine with IAM and two factor through SSH
After I have created a Virtual Machine that runs latest Ubuntu LTS I want to connect to it using SSH.
When I login to it I get this screen:
I get a new code from g.co/sc
When I enter that code into ...
0
votes
2
answers
3k
views
GCP Service Account roles do not work correctly
When granting roles to my service account, those roles do not give me the permissions they say they do.
I am using Terraform. I have created a new service account like so:
gcloud iam service-...
0
votes
1
answer
53
views
Log into Google Cloud VM with as specific user using IAM
I created a VM with an Ubuntu 22.04 image and I log in using IAM credentials, not SSH keys, for example:
gcloud beta compute ssh --zone myzone vmname --project myproj --tunnel-through-iap
My command ...
0
votes
1
answer
112
views
Can GCDS (Google Cloud Directory Sync) trigger a cloud function?
I would like to run a Google Cloud function that renames the posixAccounts -> {username,homeDirectory} in Google Directory . I am hoping that it's possible to have the function triggered after a ...
0
votes
1
answer
245
views
Compute OS Admin Login role doesn't make user sudoer
I have a user with the Compute OS Admin Login role, but when I log in using ssh, this user is not a sudoer. I've tried to restart the instance, but still the same. I've tried with enable_oslogin:TRUE ...
0
votes
1
answer
181
views
GCP- Alert for adding new user or service account to a project
I want to create an alert in my project in GCP that lets me know when a new user or service account is added to the project. I understand I need to use Logs Explorer and run a query but I am not sure ...
0
votes
1
answer
77
views
Compute Engine: Restricting SSH usernames
I want to use OS Login with GCP because we use IAM for scoping access to all other resources within GCP (storage buckets, SQL, Redis, etc.). I understand how to restrict users from accessing machines ...
0
votes
1
answer
176
views
fine-grained access for GCP OSLogin / osAdminLogin?
Is it possible to control which users/groups get which sudo privileges? Or is it an all-or-nothing proposition?
0
votes
1
answer
69
views
prompt user to provide necessary IAM config to GCP resources
I'm brand new to Google Cloud Platform, and we are working on a strategy to provision software for non-technical users.
Is it possible to prompt a user with a familiar Oauth-like, one-click request ...