Questions tagged [google-cloud-identity]
12 questions
9
votes
2 answers
What's the correct way of having a GCP account without a GSuit account?
My organization doesn't use GSuit but we still want to use the Google Cloud Platform. I signed up there with my non-gsuit email address and I have a GCP account I can log in to.
There are two issues that I'm seeing, which might be related. When I…
Pablo Fernandez
- 7,648
6
votes
2 answers
How do I Generate a Bearer Token for cURL to Get Thru IAP (GCP)?
I need to cURL a web app hosted behind IAP on GCP.
Normally, users log in through IAP and use the web app, but I need to run some cURL commands (interactive and non-interactive) that hit the web app URLs (for example: …
user450409
- 155
3
votes
2 answers
GCloud universal service account
I have around 8 projects created under my GCloud account and it might increase in future.
I am trying to manage inventory and other activity related to all the projects from single place using automation. It becomes very critical to manage 10+…
Pratap
- 705
1
vote
1 answer
How do I authenticate against ldap.google.com?
I've set up SSSD and openldap to successfully query ldaps://ldap.google.com. I can use ldapsearch to perform queries and can interact with the directory using both sssctl and getent. Unfortunately all my attempts to authenticate as a user in the…
bfallik
- 121
1
vote
0 answers
Google Cloud Run and Identity Aware Proxy
My main goal is to deploy a R Shiny app on GCP and make it subject to authorization so that only certain users can access it.
To start simple, I am not trying to deploy my docker container with my Shiny app, but rather I am trying to deploy the GCP…
dkarlez
- 11
1
vote
1 answer
How to grant access for a Google Cloud Service Account to have all the same permissions as a another Service Account?
So I have a Google Cloud Service Account one sa-1@myproject.iam.gserviceaccount.com that has access to roles A and B.
There is Service Account two sa-2@myproject.iam.gserviceaccount.com which I need to have access to roles A, B, and C.
How do I get…
engineer-x
- 111
0
votes
1 answer
GCP Workload Identity works for some workload, not for others even if K8s service account is the same
We deploy our microservices in two distinct GKE clusters, one for testing, other for production.
Our workloads make use of workload identity. In "test environment" all works well, all workloads share the same Kubernetes service account that has been…
danidemi
- 151
0
votes
1 answer
Google Cloud Console access for invited users
I registered a domain (for ex. mydomain.com) and I opened a Cloud Identity (free edition) account attached to that domain.
Then I configured a Google Cloud access for this Admin user.
So, I finally had my Cloud Identity account with my user as an…
agodoo
- 101
- 1
0
votes
1 answer
Link user accounts (hierarchy) with Google Identity Platform
I'm planning on having family accounts and I was wondering if Google Identity Platform allows some sort of hierarchical chain across users.
Example: my family consists of three people, but I'm the one paying. I'd have full permission (edit payment,…
renno
- 111
0
votes
1 answer
GCP Cloud Identity account creation - Domain Not Found
Trying to sign-up for Cloud Identity but get hit the following error message;
What's your business's domain name?
What does "There was an error finding your domain." really mean - what is it really looking for?
I am using a domain hosted by google…
0
votes
1 answer
Mapping an IAM role to a Cloud Identity organizational unit
In the GCP IAM console, I can add either the entire organization (the domain of example.com) or individual users to Roles. However, I have the users setup in GSuite/Cloud Identity and organized into OUs that I'd like to use.
Is there a way to map…
David Hergert
- 115
0
votes
1 answer
Redirect Google Authentication to Microsoft Authentication to use with SAML
At this point I have an issue where I want to login to Google Identity's assets but using Azure AD as the IdP (Identity Provider).
I already have the whole SAML environment setup with google as the SP and Azure as the IdP. Now, the issue here is…
BryceSoker
- 103