Google Cloud Platform Archives - Page 3 of 18 - Multi Cloud Architect, Security Specialist

Archives for Google Cloud Platform - Page 3

Granting shared vpc admin access

anuj July 5, 2023 Granting shared vpc admin access2023-07-05T17:11:19+00:00 GCP IAM No Comment

In order to grant a user the 'Shared VPC Admin' (compute shared vpc admin) role, you will need to be an organizational owner or org IAM admin yourself.

Application default credentials – humans versus service accounts

anuj May 5, 2023 Application default credentials – humans versus service accounts2024-01-15T01:53:57+00:00 No Comment

When you use the gcloud auth login command to provide your user credentials, it passes your human user credentials through to gcp. The issue is that your human credentials may require…

How to test IAM permissions in GCP

anuj March 12, 2023 How to test IAM permissions in GCP2023-03-12T23:16:57+00:00 No Comment

How to Test Iam Permissions in GCP - for the current user From cloud shell curl -X POST \ -H "Authorization: Bearer "$(gcloud auth application-default print-access-token) \ -H "Content-Type: application/json;…

gcloud iam roles describe

anuj March 2, 2023 gcloud iam roles describe2023-10-02T00:38:58+00:00 GCP IAM No Comment

How do you quickly determine the permissions inside a given role - whether a predefined role or a custom role? gcloud iam roles describe rolename --projectname = myproject

Compute Engine Restrict Access – restrict service accounts in GCP

anuj September 30, 2022 Compute Engine Restrict Access – restrict service accounts in GCP2024-01-15T01:53:20+00:00 APIs on GCP No Comment

Two relevant roles to assign to IAM user - Compute Instance Admin and Service Account User. , Note the prefixes on these two. The instanceAdmin is related to the COMPUTE…

Folders and Billing in GCP

anuj September 20, 2022 Folders and Billing in GCP2022-09-20T14:55:17+00:00 GCP IAM No Comment

Folders in GCP are not billable entities - Projects and Org level billing is all that can be enforced.

Container Resizing in GKE

anuj September 15, 2022 Container Resizing in GKE2022-09-15T17:36:43+00:00 GKE No Comment

To add additional nodes to a GKE cluster, one does not have to go down to the managed instance group level. The addition of a new node can be done…

External backends for Cloud CDN

anuj September 15, 2022 External backends for Cloud CDN2022-09-15T07:52:20+00:00 GCP Cloud Storage No Comment

Cloud CDN can work with both cloud storage and optionally external storage services ( on premises, or other public clouds). External Backends are called custom origins. The endpoints are called…

Custom Service Account versus Default Service Accounts

anuj September 13, 2022 Custom Service Account versus Default Service Accounts2022-09-13T16:57:48+00:00 GCP IAM No Comment

Custom Service Account versus Default Service Accounts in GCP Both are programmatic service accounts. In both, you select the list of APIs that the account can access. However, in a…

Disk Level Backups of Criticial Instances – GCP

anuj September 3, 2022 Disk Level Backups of Criticial Instances – GCP2022-09-03T11:19:38+00:00 Compute Engine No Comment

Use Case - Critical VM Instance with data and software on root disk. Need to be able to recreate instances from this backup, to be used across other projects in…

‹1 234 5 ›»