Author Archives: anuj - Page 8
State of Cloud Security Report
State of Cloud Security Report
gcloud iam roles describe
How do you quickly determine the permissions inside a given role - whether a predefined role or a custom role? gcloud iam roles describe rolename --projectname = myproject
Private Service Connect versus Peered VPCs
Overview - What is Private Service Connect? How does it differ from Private Google Access? Private Google Access ( on GCP) The idea is exactly the same as the AWS…
Azure CLI – working with subscriptions
List current logged in (in the browser) accounts azure account list Switch Subscriptions az account set --subscription <name or id>
How do you make a GCP bucket public?
Make a Storage Bucket Public The simplest way is to assign the AllUsers IAM role to the bucket. This makes it accessible for All users, regardless of their source. What…
VPC Service Controls – As Firewall Rules
Are like firewalls - Firewall rules allow/block based on IP addresses - VPC service controls allow/block based on a project perimeter For to Ensure that cloud storage buckets can be…
Compute Engine Restrict Access – restrict service accounts in GCP
Two relevant roles to assign to IAM user - Compute Instance Admin and Service Account User. , Note the prefixes on these two. The instanceAdmin is related to the COMPUTE…
GCP Service Accounts – Additional Use Cases
Service accounts are extremely useful in GCP - in calling service APIs - both via custom or default Service Accounts. (Also read Service Accounts in GCP Overview and Custom versus…
Credential types – in GCP and otherwise
What is the difference between API Keys, OAuth Credentials and Service Accounts (in GCP)? This post will shed some light. While GCP specific, this also applies in general. Credential types…
GCS Lifecycle Rules – Lifecycle Conditions
All versions that are not LIVE (and 30 days old) to be deleted. All other versions to be moved to COLDLINE (after 365 day) {"lifecycle": { "rule": } }]}} Run…