Google Cloud Identity and Access Management Concepts

From NovaOrdis Knowledge Base
Jump to navigation Jump to search

External

Internal

Overview

IAM allows granting granular access to Google Cloud resources. It supports the security principle of least privilege, which states that nobody should have more permission that they actually need. IAM manages control by defining who (the identity) has what access (the role) for which resource. Permissions to access resources are not granted directed to end users, but to roles. Roles are granted to authenticated members.

Identity Concepts

Member

Authenticated Member

Access Management Concepts

Resource

Google Cloud Platform Concepts | Resources

Role