Google 그룹스를 사용하면 대규모 사용자를 관리할 수 있습니다. Google 그룹의 각 구성원은 해당 그룹에 부여된 Identity and Access Management(IAM) 역할을 상속합니다. 이러한 상속 덕분에 개별 사용자에게 IAM 역할을 부여하는 대신 그룹 멤버십을 사용해서 사용자의 역할을 관리할 수 있습니다.
Google Cloud 콘솔에서 조직의 그룹을 만들고 관리할 수 있습니다.
필수 권한
Google Cloud 콘솔에서 그룹을 관리하려면 다음 권한이 필요합니다.
그룹 권한
Google Cloud 콘솔 또는 다른 위치에서 그룹을 생성, 확인, 편집, 삭제하려면 적절한 그룹 권한이 필요합니다. 이러한 권한은 IAM이 아닌 Google Workspace에서 관리됩니다. 이 권한을 얻으려면 Google Workspace 관리자에게 문의하세요.
삭제하려는 그룹을 찾아 해당 행에서 더보기more_vert 버튼을 클릭한 다음 그룹 삭제를 클릭합니다.
확인 대화상자에서 확인을 클릭하여 그룹을 삭제할지 여부를 확인합니다.
Google Cloud에서 Google Workspace 감사 로그 보기
조직에서 데이터 공유를 사용 설정하면Google Cloud 는 Google Workspace에서 수행된 작업의 감사 로그를 자동으로 생성합니다. 예를 들어 조직에 사용자가 추가되거나 그룹에서 사용자가 삭제되면 감사 로그를 생성합니다.
Cloud Logging에서 이러한 로그를 보고 관리할 수 있습니다.
[[["이해하기 쉬움","easyToUnderstand","thumb-up"],["문제가 해결됨","solvedMyProblem","thumb-up"],["기타","otherUp","thumb-up"]],[["이해하기 어려움","hardToUnderstand","thumb-down"],["잘못된 정보 또는 샘플 코드","incorrectInformationOrSampleCode","thumb-down"],["필요한 정보/샘플이 없음","missingTheInformationSamplesINeed","thumb-down"],["번역 문제","translationIssue","thumb-down"],["기타","otherDown","thumb-down"]],["최종 업데이트: 2025-09-10(UTC)"],[[["\u003cp\u003eGoogle Groups streamline user management by allowing IAM roles to be granted to groups, which members then inherit, eliminating the need to assign roles to each individual user.\u003c/p\u003e\n"],["\u003cp\u003eManaging groups in the Google Cloud console requires specific group permissions managed by Google Workspace and IAM roles like Organization Viewer and Logs Viewer.\u003c/p\u003e\n"],["\u003cp\u003eThe Google Cloud console provides the functionality to view, create, and edit Google Groups, including managing group details and membership.\u003c/p\u003e\n"],["\u003cp\u003eFor advanced features like moderation settings, groups must be managed through Google Groups directly, which is accessible from the Google Cloud console.\u003c/p\u003e\n"],["\u003cp\u003eDeleting a group is irreversible, and it's recommended to revoke IAM roles and wait at least 7 days before deletion to avoid unexpected access changes.\u003c/p\u003e\n"]]],[],null,["# Create and manage Google groups in the Google Cloud console\n\nGoogle groups can help you manage users at scale. Each member of a Google group\ninherits the Identity and Access Management (IAM) roles granted to that group. This\ninheritance means that you can use a group's membership to manage users' roles\ninstead of granting IAM roles to individual users.\n| **Note:** You can't add [service agents](/iam/docs/service-account-types#service-agents) to Google groups unless the [external members](https://support.google.com/a/answer/167097#zippy=%2Ccan-external-users-participate-in-groups) option is turned on.\n\nYou can create and manage groups for your organization in the Google Cloud console.\n\nRequired permissions\n--------------------\n\nYou need the following permissions to manage groups in the\nGoogle Cloud console.\n\n### Group permissions\n\nTo create, view, edit, and delete groups, in the Google Cloud console or\nelsewhere, you need the appropriate group permissions. These\npermissions are managed by Google Workspace, not IAM. To gain\nthese permissions, contact your Google Workspace administrator.\n\nTo learn about group permissions, see\n[Administrator privilege definitions](https://support.google.com/a/answer/1219251#groups) and\n[Set organization-wide policies for using groups](https://support.google.com/a/answer/167097#create-groups).\n\n### IAM permissions\n\n\nTo get the permissions that\nyou need to use the Google Cloud console to manage groups,\n\nask your administrator to grant you the\nfollowing IAM roles on the organization:\n\n- [Organization Viewer](/iam/docs/roles-permissions/resourcemanager#resourcemanager.organizationViewer) (`roles/resourcemanager.organizationViewer`)\n- To view group membership change logs: [Logs Viewer](/iam/docs/roles-permissions/logging#logging.viewer) (`roles/logging.viewer`)\n\n\nFor more information about granting roles, see [Manage access to projects, folders, and organizations](/iam/docs/granting-changing-revoking-access).\n\n\nYou might also be able to get\nthe required permissions through [custom\nroles](/iam/docs/creating-custom-roles) or other [predefined\nroles](/iam/docs/roles-overview#predefined).\n\nViewing groups\n--------------\n\nTo view the Google groups in your organization that you have access to,\nfollow these steps:\n\n1. In the Google Cloud console, go to the **Groups** page.\n\n [Go to the Groups page](https://console.cloud.google.com/iam-admin/groups)\n2. Select the organization whose groups you want to view.\n\nThe Google Cloud console displays all the groups in your organization that\nyou can access.\n| **Note:** To check whether a group has access to your project and its resources, see [Viewing current access](/iam/docs/granting-changing-revoking-access#viewing-console).\n\nCreating a group\n----------------\n\nTo create a group, follow these steps:\n\n1. In the Google Cloud console, go to the **Groups** page.\n\n [Go to the Groups page](https://console.cloud.google.com/iam-admin/groups)\n2. Click add_box\n **Create**.\n\n3. Fill in your group's details, including the group's name, email address, and\n an optional description.\n\n4. To add members to the group, click\n add **Add member** ,\n then enter the member's email and choose their\n [Google Groups role](https://support.google.com/groups/answer/2464975?ref_topic=2458761).\n\n | **Note:** When you add a member to a Google group, they inherit all IAM roles granted to that group, regardless of their Google Groups role.\n5. When you are finished, click **Submit** to create\n the group.\n\nViewing and editing group details\n---------------------------------\n\nTo view and edit the details of a group, including the group name, description,\nand membership, follow these steps:\n\n1. In the Google Cloud console, go to the **Groups** page.\n\n [Go to the Groups page](https://console.cloud.google.com/iam-admin/groups)\n2. Find the group whose details you want to view, click\n the **More** more_vert button in that\n row, and then click **View group details**.\n\n3. To edit the group name or description, type your new name or description in\n the **Group name** or **Group description** field and click **Save**.\n\n4. To edit the group's membership, do the following:\n\n - **To add members** : Click\n person **Add\n members** at the top of the page. Enter the names of the members you want\n to add, choose their [Google Groups roles](https://support.google.com/groups/answer/2464975?ref_topic=2458761), then click\n **Add** to add them to the group.\n\n | **Note:** When you add a member to a Google group, they inherit all IAM roles granted to that group, regardless of their Google Groups role.\n - **To remove members** : Select the checkboxes next to the names\n of the members you want to remove, then click\n delete **Remove\n members** at the top of the page.\n\nManaging a group in Google Groups\n---------------------------------\n\nSome groups have features---such as moderation settings, joining\nrules, and permissions for creating and viewing posts---that\nyou cannot manage from the Google Cloud console. To manage these features,\nyou need to open the group in Google Groups.\n\nTo open a group in Google Groups, follow these steps:\n\n1. In the Google Cloud console, go to the **Groups** page.\n\n [Go to the Groups page](https://console.cloud.google.com/iam-admin/groups)\n2. Find the group that you want to manage, click\n the **More** more_vert button\n in that row, and then click **View in Google\n Groups** launch.\n\nThis action opens the group in Google Groups, where you can manage all of your\ngroup's features. For more information, see the\n[Google Groups help page](https://support.google.com/groups/).\n\nDeleting a group\n----------------\n\n| **Warning:** Deleting a group is irreversible. To avoid unexpected access changes, revoke all IAM roles from the group, then wait at least 7 days before deleting it.\n\nTo delete a group, follow these steps:\n\n1. In the Google Cloud console, go to the **Groups** page.\n\n [Go to the Groups page](https://console.cloud.google.com/iam-admin/groups)\n2. Find the group that you want to delete, click\n the **More** more_vert button in that\n row, and then click **Delete group**.\n\n3. Confirm that you want to delete the group by clicking **Confirm** in the\n confirmation dialog.\n\nView Google Workspace audit logs in Google Cloud\n------------------------------------------------\n\nIf [data sharing](https://support.google.com/a/answer/9320190) is enabled for your organization,\nGoogle Cloud will automatically generate audit logs for actions taken in\nGoogle Workspace. For example, it will generate audit logs when someone\nadds a user to your organization or when someone removes a user from a group.\nYou can view and manage these logs in Cloud Logging.\n\nTo learn how to enable data sharing and how to view and manage\nGoogle Workspace audit logs, see [View and manage audit logs for\nGoogle Workspace](/logging/docs/audit/configure-gsuite-audit-logs).\n\nWhat's next\n-----------\n\n- Learn how to [grant, change, and revoke access for principals](/iam/docs/granting-changing-revoking-access), including Google groups.\n- Review other ways to [create groups](https://support.google.com/a/answer/33343)."]]