menu
arrow_back

Configuring IAM Permissions with gcloud

—/100

Checkpoints

arrow_forward

Download and install Google Cloud SDK

Initialize Google Cloud SDK

Install Google Cloud SDK beta component

Create an instance with name as lab-1 in Project 1

Update the default zone

Create a configuration for Username 2 and name it as user2

Restricting Username 2 to roles/viewer in Project 2

Create a new role with permissions for the devops team

Bound Username 2 to devops role

Create an instance with name as lab-2 in Project 1

Check binding to roles/iam.serviceAccountUser

Check the created service account

Check the binding for the service account to roles/iam.serviceAccountUser

Check the binding for the service account to roles/compute.instanceAdmin

Check lab-3 has the service account attached

Configuring IAM Permissions with gcloud

1 个小时 30 分钟 5 个积分

GSP647

Google Cloud Self-Paced Labs

Overview

People new to Google Cloud need to understand IAM to fully understand how to configure the necessary permissions for their workloads. This lab looks at three common areas learners should understand with regards to IAM and gcloud: the installation and configuration of the gcloud environment, the use of multiple gloud configurations, and the use of services accounts.

In this lab you will use the gcloud CLI tool to set up and configure command features of Cloud Identity and Access Management (IAM).

What you'll do

  • Install and configure the gcloud client

  • Create and switch between multiple IAM configurations

  • Identify and assign correct IAM permissions

  • Create and use a service account

Starting Environment

You start with two user accounts and two projects; user1 is the "owner" of both projects and user2 is the "viewer" of only the first project. There is a Linux virtual machine (vm) running in the first project.

lab start

加入 Qwiklabs 即可阅读本实验的剩余内容…以及更多精彩内容!

  • 获取对“Google Cloud Console”的临时访问权限。
  • 200 多项实验,从入门级实验到高级实验,应有尽有。
  • 内容短小精悍,便于您按照自己的节奏进行学习。
加入以开始此实验