Author Archives: anuj - Page 7
reusable sandbox environments in AWS
AWS innovation sandbox provides a way to create a separate sandbox account that can be managed from a management account. Along with the account level separation, network isolation is provided…
Grouping multiple service accounts
What if I need to group multiple service accounts (for example - if I need to attach the same role to all the SAs)? You cannot create an AD group…
GCP Service Accounts – Limiting Scope
Are there org level constraints around creating custom roles? No. Are there org level constraints around granting Cross Account access to service accounts? Yes. There is a constraint that will…
Sharing out a bigquery dataset
The owner of the dataset? To share out a dataset, you need to have the () or the role. The user of the dataset? For the user, assuming read-only access:…
Sharing GCP resources with users without gSuite accounts
This content is password protected. To view it please enter your password below: Password:
Cloud SQL and Editor roles
All I want to do is connect to a Cloud SQL Instance You have two pre-defined roles that you can use for this purpose. - seems to be a fairly…
Creating a publicly accessible VM in GCP
Step 1 - Create a new VM - While Creating the VM Allow HTTP and HTTPs firewall rule (if you plan to host a web app on there) Pick the…
App Engine per project
How many app engine instances can I create? Only one app engine instance is allowed per project. Disabling and shutting down apps If you would like to cut down costs…
GCP project id versus project name versus project number
Project ID and Project Number Both the project ID and the project number are unique identifiers for a project - globally unique. However, the project-id is meant to be human…
Granting shared vpc admin access
In order to grant a user the 'Shared VPC Admin' (compute shared vpc admin) role, you will need to be an organizational owner or org IAM admin yourself.