menu
arrow_back

Configuring IAM Permissions with gcloud

Configuring IAM Permissions with gcloud

1 jam 30 menit 5 Kredit

GSP647

Google Cloud Self-Paced Labs

Overview

People new to Google Cloud Platform need to understand IAM to fully understand how to configure the necessary permissions for their workloads. This lab looks at three common areas learners should understand with regards to IAM and gcloud. These are the installation and configuration of the gcloud environment, the use of multiple gloud configurations, and the use of services accounts.

In this lab you will use the gcloud CLI tool to setup and configure command features of Cloud Identity and Access Management (IAM).

What you'll do

  • Install and configure the gcloud client

  • Create and switch between multiple IAM configurations

  • Identify and assign correct IAM permissions

  • Create and use a service account

Starting Environment

You start with two user accounts and two projects; user1 is the "owner" of both projects and user2 is the "viewer" of only the first project. There is a Linux virtual machine (vm) running in the first project.

lab start

Bergabunglah dengan Qwiklabs untuk membaca tentang lab ini selengkapnya... beserta informasi lainnya!

  • Dapatkan akses sementara ke Google Cloud Console.
  • Lebih dari 200 lab mulai dari tingkat pemula hingga lanjutan.
  • Berdurasi singkat, jadi Anda dapat belajar dengan santai.
Bergabung untuk Memulai Lab Ini
Skor

—/100

Download and install Google Cloud SDK

Jalankan Langkah

/ 5

Initialize Google Cloud SDK

Jalankan Langkah

/ 5

Install Google Cloud SDK beta component

Jalankan Langkah

/ 5

Create an instance with name as lab-1 in Project 1

Jalankan Langkah

/ 5

Update the default zone

Jalankan Langkah

/ 5

Create a configuration for Username 2 and name it as user2

Jalankan Langkah

/ 10

Restricting Username 2 to roles/viewer in Project 2

Jalankan Langkah

/ 5

Create a new role with permissions for the devops team

Jalankan Langkah

/ 10

Bound Username 2 to devops role

Jalankan Langkah

/ 5

Create an instance with name as lab-2 in Project 1

Jalankan Langkah

/ 5

Check binding to roles/iam.serviceAccountUser

Jalankan Langkah

/ 5

Check the created service account

Jalankan Langkah

/ 5

Check the binding for the service account to roles/iam.serviceAccountUser

Jalankan Langkah

/ 10

Check the binding for the service account to roles/compute.instanceAdmin

Jalankan Langkah

/ 10

Check lab-3 has the service account attached

Jalankan Langkah

/ 10