- NAME
-
- gcloud iam - manage IAM service accounts and keys
- SYNOPSIS
-
-
gcloud iam
GROUP
|COMMAND
[GCLOUD_WIDE_FLAG …
]
-
- DESCRIPTION
-
The gcloud iam command group lets you manage Google Cloud Identity & Access
Management (IAM) service accounts and keys.
Cloud IAM authorizes who can take action on specific resources, giving you full control and visibility to manage cloud resources centrally. For established enterprises with complex organizational structures, hundreds of workgroups and potentially many more projects, Cloud IAM provides a unified view into security policy across your entire organization, with built-in auditing to ease compliance processes.
More information on Cloud IAM can be found here: https://cloud.google.com/iam and detailed documentation can be found here: https://cloud.google.com/iam/docs/.
- GCLOUD WIDE FLAGS
-
These flags are available to all commands:
--help
.Run
$ gcloud help
for details. - GROUPS
-
is one of the following:GROUP
oauth-clients
- Create and manage OAuth clients.
policies
- Manage IAM deny policies.
roles
- Create and manipulate roles.
service-accounts
- Create and manipulate service accounts.
simulator
- Understand how an IAM policy change could impact access before deploying the change.
workforce-pools
- Create and manage workforce pools.
workload-identity-pools
- Manage IAM workload identity pools.
- COMMANDS
-
is one of the following:COMMAND
list-grantable-roles
- List IAM grantable roles for a resource.
list-testable-permissions
- List IAM testable permissions for a resource.
- NOTES
-
These variants are also available:
gcloud alpha iam
gcloud beta iam
Except as otherwise noted, the content of this page is licensed under the Creative Commons Attribution 4.0 License, and code samples are licensed under the Apache 2.0 License. For details, see the Google Developers Site Policies. Java is a registered trademark of Oracle and/or its affiliates.
Last updated 2024-11-19 UTC.