Identity and Access Management 文档
通过 Identity and Access Management (IAM),您可以为 Google Cloud 资源创建和管理权限。IAM 会将 Google Cloud 服务的访问权限控制整合到单个系统中,并提供一套统一的操作。了解详情
获享 $300 免费赠金开始概念验证
-
体验 Gemini 2.0 Flash Thinking
-
免费使用热门产品(包括 AI API 和 BigQuery)的每月用量
-
不会自动收费,无需承诺
继续探索 20 多种提供“始终免费”用量的产品
使用适用于常见应用场景(包括 AI API、虚拟机、数据仓库等)的 20 多种免费产品。
培训
培训和教程
Google Cloud 基础知识:核心基础架构
这些讲座、演示和实操实验概述了 Google Cloud 产品和服务,以便您了解 Google Cloud 的价值,以及如何将云端解决方案整合到您的业务策略中。
培训
培训和教程
Google Cloud 架构设计:设计和流程
本课程包含讲座、设计活动和实操实验,旨在为您介绍如何在 Google Cloud 上使用经过验证的设计模式来构建高度可靠且高效的解决方案,以及如何运营可用性高且经济实惠的部署。
培训
培训和教程
Google Cloud 中的安全性
在该培训课程中,您会了解各种 Google Cloud 安全控制措施和技术,探索 Google Cloud 的组件并在该平台上部署安全的解决方案。您还会了解如何缓解基于 Google Cloud 的基础架构中多个方面的攻击,包括分布式拒绝服务攻击、网上诱骗攻击以及涉及内容分类和使用的威胁。
使用场景
使用场景
Google Cloud 中的身份和身份验证
以书的形式深入了解 IAM,包括企业、使用方和服务身份;最佳做法,以及评估、规划和部署方法。
政策
访问权限
资源层次结构
使用场景
使用场景
帮助保护从数据湖到数据仓库的流水线
介绍了一些安全控制措施,旨在帮助您管理从数据湖到数据仓库的流水线中的数据访问,并防止其发生数据渗漏。
KMS
组织政策服务
使用场景
使用场景
迁移到 Google Cloud:使用入门
帮助您规划、设计和实现向 Google Cloud 的迁移过程。
规划
迁移
代码示例
代码示例
Java IAM 客户端库示例
了解如何使用 Java IAM 客户端库执行常见的 IAM 操作。
代码示例
代码示例
Python IAM 客户端库示例
了解如何使用 Python IAM 客户端库执行常见的 IAM 操作。
代码示例
代码示例
Go IAM 客户端库示例
了解如何使用 Go IAM 客户端库执行常见的 IAM 操作。
代码示例
代码示例
.NET IAM 客户端库示例
了解如何使用 .NET IAM 客户端库执行常见的 IAM 操作。
如未另行说明,那么本页面中的内容已根据知识共享署名 4.0 许可获得了许可,并且代码示例已根据 Apache 2.0 许可获得了许可。有关详情,请参阅 Google 开发者网站政策。Java 是 Oracle 和/或其关联公司的注册商标。
最后更新时间 (UTC):2025-09-10。
[[["易于理解","easyToUnderstand","thumb-up"],["解决了我的问题","solvedMyProblem","thumb-up"],["其他","otherUp","thumb-up"]],[["很难理解","hardToUnderstand","thumb-down"],["信息或示例代码不正确","incorrectInformationOrSampleCode","thumb-down"],["没有我需要的信息/示例","missingTheInformationSamplesINeed","thumb-down"],["翻译问题","translationIssue","thumb-down"],["其他","otherDown","thumb-down"]],["最后更新时间 (UTC):2025-09-10。"],[[["\u003cp\u003eIdentity and Access Management (IAM) provides a unified system for creating and managing permissions across Google Cloud resources.\u003c/p\u003e\n"],["\u003cp\u003eIAM documentation includes guides for managing access, creating service accounts, and configuring temporary access to resources.\u003c/p\u003e\n"],["\u003cp\u003eReference materials include permissions, client libraries, the REST API, understanding different roles, and resource-specific attributes for conditions.\u003c/p\u003e\n"],["\u003cp\u003eResources are available such as release notes, permissions change logs, support information, quotas and limits, as well as billing questions.\u003c/p\u003e\n"],["\u003cp\u003eTraining resources are available to provide an overview of Google Cloud, architecture and design, and security for IAM.\u003c/p\u003e\n"]]],[],null,["# Identity and Access Management documentation\n============================================\n\n[Read product documentation](/iam/docs/overview)\nIdentity and Access Management (IAM) lets you create and manage permissions for\nGoogle Cloud resources. IAM unifies access control for\nGoogle Cloud services into a single system and presents a consistent set of operations.\n[Learn more](/iam/docs/overview)\n[Get started for free](https://console.cloud.google.com/freetrial) \n\n#### Start your proof of concept with $300 in free credit\n\n- Get access to Gemini 2.0 Flash Thinking\n- Free monthly usage of popular products, including AI APIs and BigQuery\n- No automatic charges, no commitment \n[View free product offers](/free/docs/free-cloud-features#free-tier) \n\n#### Keep exploring with 20+ always-free products\n\n\nAccess 20+ free products for common use cases, including AI APIs, VMs, data warehouses,\nand more.\n\nDocumentation resources\n-----------------------\n\nFind quickstarts and guides, review key references, and get help with common issues. \nformat_list_numbered\n\n### Guides\n\n-\n\n\n Quickstarts:\n [Quickstart: Grant an IAM role by using the Google Cloud console](/iam/docs/grant-role-console)\n or\n [Quickstart: Write an IAM policy by using client libraries](/iam/docs/write-policy-client-libraries)\n\n\n-\n\n [Manage access to projects, folders, and organizations](/iam/docs/granting-changing-revoking-access)\n\n-\n\n [Manage access to other resources](/iam/docs/manage-access-other-resources)\n\n-\n\n [Roles overview](/iam/docs/roles-overview)\n\n-\n\n [Service account overview](/iam/docs/service-account-overview)\n\n-\n\n [Create service accounts](/iam/docs/service-accounts-create)\n\n-\n\n [Attach service accounts to resources](/iam/docs/attach-service-accounts)\n\n-\n\n [Creating and managing custom roles](/iam/docs/creating-custom-roles)\n\n-\n\n [Configure temporary access](/iam/docs/configuring-temporary-access)\n\nfind_in_page\n\n### Reference\n\n-\n\n [Permissions reference](/iam/docs/permissions-reference)\n\n-\n\n [Client libraries](/iam/docs/client-libraries)\n\n-\n\n [IAM REST API](/iam/docs/reference/rest)\n\n-\n\n [Basic and predefined roles](/iam/docs/understanding-roles)\n\n-\n\n [Full resource names](/iam/docs/full-resource-names)\n\n-\n\n [Attribute reference for IAM Conditions](/iam/docs/conditions-attribute-reference)\n\n-\n\n [Resource attributes for IAM Conditions](/iam/docs/conditions-resource-attributes)\n\n-\n\n [Support levels for permissions in custom roles](/iam/docs/custom-roles-permissions-support)\n\n-\n\n [Resource types that accept IAM policies](/iam/docs/resource-types-with-policies)\n\n-\n\n [Service agents](/iam/docs/service-agents)\n\ninfo\n\n### Resources\n\n-\n\n [Release notes](/iam/docs/release-notes)\n\n-\n\n [Permissions change log](/iam/docs/permissions-change-log)\n\n-\n\n [Getting support](/iam/docs/getting-support)\n\n-\n\n [Quotas and limits](/iam/quotas)\n\n-\n\n [Billing questions](/iam/docs/billing-questions)\n\n-\n\n [Troubleshooting \"withcond\" in policies and role bindings](/iam/docs/troubleshooting-withcond)\n\n-\n\n [Pricing](/iam/pricing)\n\nRelated resources\n-----------------\n\nTraining and tutorials \nUse cases \nCode samples \nExplore self-paced training, use cases, reference architectures, and code samples with examples of how to use and connect Google Cloud services. Training \nTraining and tutorials\n\n### Google Cloud Fundamentals: Core Infrastructure\n\n\nThese lectures, demos, and hands-on labs give you an overview of Google Cloud products and services so that you can learn the value of Google Cloud and how to incorporate cloud-based solutions into your business strategies.\n\n\n[Learn more](/training/course/core-infrastructure) \nTraining \nTraining and tutorials\n\n### Architecting with Google Cloud: Design and Process\n\n\nThis course features a combination of lectures, design activities, and hands-on labs to show you how to use proven design patterns on Google Cloud to build highly reliable and efficient solutions and operate deployments that are highly available and cost-effective.\n\n\n[Learn more](/training/course/architecting-design-process) \nTraining \nTraining and tutorials\n\n### Security in Google Cloud\n\n\nIn this training course, you will learn about a variety of Google Cloud security controls and techniques. You'll explore the components of Google Cloud and deploy a secure solution on the platform. You'll also learn how to mitigate attacks at several points in a Google Cloud-based infrastructure, including distributed denial-of-service attacks, phishing attacks, and threats involving content classification and use.\n\n\n[Learn more](/training/course/security-in-google-cloud-platform) \nUse case \nUse cases\n\n### Identity and authentication in Google Cloud\n\n\nBook-length deep dive into IAM, including corporate, consumer, and service identities; best practices, and how to assess, plan, and deploy.\n\nPolicies Access Resource hierarchy\n\n\u003cbr /\u003e\n\n[Learn more](/architecture/identity) \nUse case \nUse cases\n\n### Help secure the pipeline from your data lake to your data warehouse\n\n\nDiscusses the security controls designed to help manage data access to and prevent data exfiltration of the pipeline from your data lake to your data warehouse.\n\nKMS Organization Policy Service\n\n\u003cbr /\u003e\n\n[Learn more](/solutions/help-secure-the-pipeline-from-your-data-lake-to-your-data-warehouse) \nUse case \nUse cases\n\n### Migration to Google Cloud: Getting started\n\n\nHelps you with planning, designing, and implementing your migration process to Google Cloud.\n\nPlanning Migration\n\n\u003cbr /\u003e\n\n[Learn more](/solutions/migration-to-gcp-getting-started) \nCode sample \nCode Samples\n\n### Java IAM client library samples\n\n\nSee how to perform common IAM actions using the Java IAM client library.\n\n\n[Open GitHub\narrow_forward](https://github.com/GoogleCloudPlatform/java-docs-samples/tree/master/iam/api-client) \nCode sample \nCode Samples\n\n### Python IAM client library samples\n\n\nSee how to perform common IAM actions using the Python IAM client library.\n\n\n[Open GitHub\narrow_forward](https://github.com/GoogleCloudPlatform/python-docs-samples/tree/master/iam/api-client) \nCode sample \nCode Samples\n\n### Go IAM client library samples\n\n\nSee how to perform common IAM actions using the Go IAM client library.\n\n\n[Open GitHub\narrow_forward](https://github.com/GoogleCloudPlatform/golang-samples/tree/master/iam) \nCode sample \nCode Samples\n\n### .NET IAM client library samples\n\n\nSee how to perform common IAM actions using the .NET IAM client library.\n\n\n[Open GitHub\narrow_forward](https://github.com/GoogleCloudPlatform/dotnet-docs-samples/tree/master/iam/api)\n\nRelated videos\n--------------\n\n### Try Google Cloud for yourself\n\nCreate an account to evaluate how our products perform in real-world scenarios. \nNew customers also get $300 in free credits to run, test, and deploy workloads. \n[Get started for free](https://console.cloud.google.com/freetrial)"]]