(Also read this post on using groups and policies in GCP). A group, in GCP, is no different from any other identity. In practice, it looks like  an email address.

Assigning a group to a resource (like a project or a folder) is straightforward through the console. However, one can also do that through gCloud as shown below. In addition to adding it to the Folder or Project, the exact ROLE (permissions) are also represented as part of the gCloud command.

gcloud projects add-iam-policy-binding my-project-name –member='user:groupemail@blahblah' –role='roles/editor'

Need a hands-on, GCP Consultant?

Need help with your GCP journey? Start the conversation today.