From bbd76ec23f524522af55584a79b31ca344cf713f Mon Sep 17 00:00:00 2001 From: Ross Scroggs Date: Fri, 27 Jun 2025 07:29:10 -0700 Subject: [PATCH] Update Cloud-Identity-Policies.md --- wiki/Cloud-Identity-Policies.md | 18 ++++++++++++++++-- 1 file changed, 16 insertions(+), 2 deletions(-) diff --git a/wiki/Cloud-Identity-Policies.md b/wiki/Cloud-Identity-Policies.md index 94c98656..e7b55fdd 100644 --- a/wiki/Cloud-Identity-Policies.md +++ b/wiki/Cloud-Identity-Policies.md @@ -12,14 +12,28 @@ ## Notes To use these commands you must update your client access authentication. -You'll enter 19R to turn on the Cloud Identity Policy scope; then continue +You'll enter 20r to turn on the Cloud Identity Policy scope; then continue with authentication. ``` gam oauth delete gam oauth create ... -[R] 19) Cloud Identity - Policy +[R] 20) Cloud Identity - Policy (supports readonly) ``` +You must enable access to policies in the GCP cloud console. + +* Login at console.cloud.google.com +* In the upper left click the three lines to the left of Google Cloud and select IAM & Admin +* Under IAM & Admin select IAM +* Click in the box to the right of Google Cloud +* Click the three dots at the right and select IAM/Permissions +* Now you should be at "Permissions for organization ..." +* Click on Grant Access +* Enter the GAM project creator address in Principals +* Click in the Select a role box +* Type orgpolicy.policyAdmin in the Filter box +* Click Organization Policy Administrator +* Click Save ## Definitions ```