Archives for Google Cloud Platform - Page 15
Service Account Roles in GCP – Permissions
Also read, Base Roles required for development teams in GCP When it comes to service accounts, there are a few granular options available in GCP IAM. Service Account Admin Role:…
Shared VPCs – for Production and Non Production Dileneation
Also read - Shared VPCs Best Practices Shared VPCs - What gets shared out? When a host project is enabled, you have two options for sharing networks: You can share…
Shared VPCs in a Hybrid Cloud Setup
Also read up on More than one shared VPC - to handle Production and Non Production Environments Shared VPC in a Hybrid Setup The key idea behind Shared VPCs is…
Private Service Access vs. Google Private Access
See this post for an overview of Private Google Access and Cloud NAT. Subnet versus VPC Level One key difference is that Private Google Access is defined at the subnet…
Cloud NAT Gateway and Private Google access
Cloud NAT and Google Private access Google Cloud automatically enables Private Google Access for a subnet IP address range when you configure a Cloud NAT gateway to apply to that…
Data Governance using Google Cloud Data Catalog
Data Catalog (which uses Cloud Spanner under the hood), provides a centralized place where organizations can find, curate and describe their data assets. Data Catalog is a fully managed, scalable…
Allowing access to a specific Cloud Storage Bucket
MEMBER_TYPE is the type of the member you are removing from the policy. For example, user. represents both Google accounts and Google groups. Two special member types are: allAuthenticatedUsers and allUsers MEMBER_NAME is the name of the…
GCP Applying Policies to Groups of Users
(Also read this post on using groups and policies in GCP). A group, in GCP, is no different from any other identity. In practice, it looks like an email address.…
Using Groups and Policies to Implement Granular Resource Access in GCP
Adding individual members to each role is painful. Cloud IAM Groups are used to apply policies (who accesses what) to an entire groups of users (see this post to understand what…
Types of Identity in GCP
An identity in GCP can be any one of the following. The most commonly used identities for HUMAN users are the first two - Google Accounts ( your gmail account)…