mirror of
https://github.com/GAM-team/GAM.git
synced 2026-07-03 12:21:35 +00:00
Update Cloud-Identity-Policies.md
Some checks failed
Push wiki / pushwiki (push) Has been cancelled
Build and test GAM / build (false, build, 1, Build Intel Ubuntu Jammy, ubuntu-22.04) (push) Has been cancelled
Build and test GAM / build (false, build, 10, Build x86_64 macOS 15, macos-15-intel) (push) Has been cancelled
Build and test GAM / build (false, build, 11, Build Arm MacOS 26, macos-26) (push) Has been cancelled
Build and test GAM / build (false, build, 12, Build Intel Windows, windows-2025) (push) Has been cancelled
Build and test GAM / build (false, build, 13, Build Arm Windows, windows-11-arm) (push) Has been cancelled
Build and test GAM / build (false, build, 2, Build Intel Ubuntu Noble, ubuntu-24.04) (push) Has been cancelled
Build and test GAM / build (false, build, 3, Build Arm Ubuntu Noble, ubuntu-24.04-arm) (push) Has been cancelled
Build and test GAM / build (false, build, 4, Build Arm Ubuntu Jammy, ubuntu-22.04-arm) (push) Has been cancelled
Build and test GAM / build (false, build, 5, Build Intel StaticX Legacy, ubuntu-22.04, yes) (push) Has been cancelled
Build and test GAM / build (false, build, 6, Build Arm StaticX Legacy, ubuntu-22.04-arm, yes) (push) Has been cancelled
Build and test GAM / build (false, build, 7, Build Intel MacOS, macos-13) (push) Has been cancelled
Build and test GAM / build (false, build, 8, Build Arm MacOS 14, macos-14) (push) Has been cancelled
Build and test GAM / build (false, build, 9, Build Arm MacOS 15, macos-15) (push) Has been cancelled
Build and test GAM / build (false, test, 14, Test Python 3.10, ubuntu-24.04, 3.10) (push) Has been cancelled
Build and test GAM / build (false, test, 15, Test Python 3.11, ubuntu-24.04, 3.11) (push) Has been cancelled
Build and test GAM / build (false, test, 16, Test Python 3.12, ubuntu-24.04, 3.12) (push) Has been cancelled
Build and test GAM / build (false, test, 17, Test Python 3.14, ubuntu-24.04, 3.14) (push) Has been cancelled
Build and test GAM / build (true, test, 18, Test Python 3.14 freethread, ubuntu-24.04, 3.14) (push) Has been cancelled
Build and test GAM / merge (push) Has been cancelled
Build and test GAM / publish (push) Has been cancelled
Check for Google Root CA Updates / check-certs (push) Has been cancelled
Some checks failed
Push wiki / pushwiki (push) Has been cancelled
Build and test GAM / build (false, build, 1, Build Intel Ubuntu Jammy, ubuntu-22.04) (push) Has been cancelled
Build and test GAM / build (false, build, 10, Build x86_64 macOS 15, macos-15-intel) (push) Has been cancelled
Build and test GAM / build (false, build, 11, Build Arm MacOS 26, macos-26) (push) Has been cancelled
Build and test GAM / build (false, build, 12, Build Intel Windows, windows-2025) (push) Has been cancelled
Build and test GAM / build (false, build, 13, Build Arm Windows, windows-11-arm) (push) Has been cancelled
Build and test GAM / build (false, build, 2, Build Intel Ubuntu Noble, ubuntu-24.04) (push) Has been cancelled
Build and test GAM / build (false, build, 3, Build Arm Ubuntu Noble, ubuntu-24.04-arm) (push) Has been cancelled
Build and test GAM / build (false, build, 4, Build Arm Ubuntu Jammy, ubuntu-22.04-arm) (push) Has been cancelled
Build and test GAM / build (false, build, 5, Build Intel StaticX Legacy, ubuntu-22.04, yes) (push) Has been cancelled
Build and test GAM / build (false, build, 6, Build Arm StaticX Legacy, ubuntu-22.04-arm, yes) (push) Has been cancelled
Build and test GAM / build (false, build, 7, Build Intel MacOS, macos-13) (push) Has been cancelled
Build and test GAM / build (false, build, 8, Build Arm MacOS 14, macos-14) (push) Has been cancelled
Build and test GAM / build (false, build, 9, Build Arm MacOS 15, macos-15) (push) Has been cancelled
Build and test GAM / build (false, test, 14, Test Python 3.10, ubuntu-24.04, 3.10) (push) Has been cancelled
Build and test GAM / build (false, test, 15, Test Python 3.11, ubuntu-24.04, 3.11) (push) Has been cancelled
Build and test GAM / build (false, test, 16, Test Python 3.12, ubuntu-24.04, 3.12) (push) Has been cancelled
Build and test GAM / build (false, test, 17, Test Python 3.14, ubuntu-24.04, 3.14) (push) Has been cancelled
Build and test GAM / build (true, test, 18, Test Python 3.14 freethread, ubuntu-24.04, 3.14) (push) Has been cancelled
Build and test GAM / merge (push) Has been cancelled
Build and test GAM / publish (push) Has been cancelled
Check for Google Root CA Updates / check-certs (push) Has been cancelled
This commit is contained in:
@@ -53,286 +53,7 @@ You must enable access to policies in the GCP cloud console.
|
|||||||
These are the supported policies GAM can show today.
|
These are the supported policies GAM can show today.
|
||||||
|
|
||||||
See: https://cloud.google.com/identity/docs/concepts/supported-policy-api-settings
|
See: https://cloud.google.com/identity/docs/concepts/supported-policy-api-settings
|
||||||
```
|
|
||||||
user_takeout_status (is takeout enabled for service)
|
|
||||||
blogger.user_takeout
|
|
||||||
books.user_takeout
|
|
||||||
location_history.user_takeout
|
|
||||||
maps.user_takeout
|
|
||||||
pay.user_takeout
|
|
||||||
photos.user_takeout
|
|
||||||
play.user_takeout
|
|
||||||
play_console.user_takeout
|
|
||||||
youtube.user_takeout
|
|
||||||
service_status (is service enabled)
|
|
||||||
ad_manager
|
|
||||||
ads
|
|
||||||
adsense
|
|
||||||
alerts
|
|
||||||
analytics
|
|
||||||
applied_digital_skills
|
|
||||||
appsheet
|
|
||||||
arts_and_culture
|
|
||||||
beyondcorp_enterprise
|
|
||||||
blogger
|
|
||||||
bookmarks
|
|
||||||
books
|
|
||||||
calendar
|
|
||||||
campaign_manager
|
|
||||||
chat
|
|
||||||
chrome_canvas
|
|
||||||
chrome_remote_desktop
|
|
||||||
chrome_sync
|
|
||||||
chrome_web_store
|
|
||||||
classroom
|
|
||||||
cloud
|
|
||||||
cloud_search
|
|
||||||
colab
|
|
||||||
cs_first
|
|
||||||
data_studio
|
|
||||||
developers
|
|
||||||
domains
|
|
||||||
drive_and_docs
|
|
||||||
earth
|
|
||||||
enterprise_service_restrictions
|
|
||||||
experimental_apps
|
|
||||||
feedburner
|
|
||||||
fi
|
|
||||||
gmail
|
|
||||||
groups
|
|
||||||
groups_for_business
|
|
||||||
jamboard
|
|
||||||
keep
|
|
||||||
location_history
|
|
||||||
managed_play
|
|
||||||
maps
|
|
||||||
material_gallery
|
|
||||||
meet
|
|
||||||
merchant_center
|
|
||||||
messages
|
|
||||||
migrate
|
|
||||||
my_business
|
|
||||||
my_maps
|
|
||||||
news
|
|
||||||
partner_dash
|
|
||||||
pay
|
|
||||||
pay_for_business
|
|
||||||
photos
|
|
||||||
pinpoint
|
|
||||||
play
|
|
||||||
play_books_partner_center
|
|
||||||
play_console
|
|
||||||
public_data
|
|
||||||
question_hub
|
|
||||||
scholar_profiles
|
|
||||||
search_ads_360
|
|
||||||
search_and_assistant
|
|
||||||
search_console
|
|
||||||
sites
|
|
||||||
socratic
|
|
||||||
takeout
|
|
||||||
tasks
|
|
||||||
third_party_app_backups
|
|
||||||
translate
|
|
||||||
trips
|
|
||||||
vault
|
|
||||||
voice
|
|
||||||
work_insights
|
|
||||||
youtube
|
|
||||||
calendar.appointment_schedules
|
|
||||||
enablePayments
|
|
||||||
chat.chat_apps_access
|
|
||||||
enableApps
|
|
||||||
enableWebhooks
|
|
||||||
chat.chat_file_sharing
|
|
||||||
externalFileSharing
|
|
||||||
internalFileSharing
|
|
||||||
chat.chat_history
|
|
||||||
enableChatHistory
|
|
||||||
historyOnByDefault
|
|
||||||
allowUserModification
|
|
||||||
chat.external_chat_restriction
|
|
||||||
allowExternalChat
|
|
||||||
chat.space_history
|
|
||||||
historyState
|
|
||||||
classroom.api_data_access
|
|
||||||
enableApiAccess
|
|
||||||
classroom.class_membership
|
|
||||||
whoCanJoinClasses
|
|
||||||
whichClassesCanUsersJoin
|
|
||||||
classroom.guardian_access
|
|
||||||
allowAccess
|
|
||||||
whoCanManageGuardianAccess
|
|
||||||
classroom.originality_reports
|
|
||||||
enableOriginalityReportsSchoolMatches
|
|
||||||
classroom.roster_import
|
|
||||||
rosterImportOption
|
|
||||||
classroom.student_unenrollment
|
|
||||||
whoCanUnenrollStudents
|
|
||||||
classroom.teacher_permissions
|
|
||||||
whoCanCreateClasses
|
|
||||||
cloud_sharing_options.cloud_data_sharing
|
|
||||||
sharingOptions
|
|
||||||
detector.regular_expression
|
|
||||||
displayName
|
|
||||||
regularExpression
|
|
||||||
createTime
|
|
||||||
updateTime
|
|
||||||
detector.word_list
|
|
||||||
displayName
|
|
||||||
wordList
|
|
||||||
createTime
|
|
||||||
updateTime
|
|
||||||
description
|
|
||||||
drive_and_docs.drive_for_desktop
|
|
||||||
allowDriveForDesktop
|
|
||||||
restrictToAuthorizedDevices
|
|
||||||
showDownloadLink
|
|
||||||
allowRealTimePresence
|
|
||||||
drive_and_docs.external_sharing
|
|
||||||
externalSharingMode
|
|
||||||
allowReceivingExternalFiles
|
|
||||||
warnForSharingOutsideAllowlistedDomains
|
|
||||||
allowReceivingFilesOutsideAllowlistedDomains
|
|
||||||
allowNonGoogleInvitesInAllowlistedDomains
|
|
||||||
warnForExternalSharing
|
|
||||||
allowNonGoogleInvites
|
|
||||||
allowPublishingFiles
|
|
||||||
accessCheckerSuggestions
|
|
||||||
allowedPartiesForDistributingContent
|
|
||||||
drive_and_docs.file_security_update
|
|
||||||
securityUpdate
|
|
||||||
allowUsersToManageUpdate
|
|
||||||
drive_and_docs.shared_drive_creation
|
|
||||||
allowSharedDriveCreation
|
|
||||||
orgUnitForNewSharedDrives
|
|
||||||
customOrgUnit
|
|
||||||
allowManagersToOverrideSettings
|
|
||||||
allowExternalUserAccess
|
|
||||||
allowNonMemberAccess
|
|
||||||
allowedPartiesForDownloadPrintCopy
|
|
||||||
allowContentManagersToShareFolders
|
|
||||||
gmail.auto_forwarding
|
|
||||||
enableAutoForwarding
|
|
||||||
gmail.confidential_mode
|
|
||||||
enableConfidentialMode
|
|
||||||
gmail.email_attachment_safety
|
|
||||||
enableEncryptedAttachmentProtection
|
|
||||||
encryptedAttachmentProtectionConsequence
|
|
||||||
enableAttachmentWithScriptsProtection
|
|
||||||
attachmentWithScriptsProtectionConsequence
|
|
||||||
enableAnomalousAttachmentProtection
|
|
||||||
anomalousAttachmentProtectionConsequence
|
|
||||||
allowedAnomalousAttachmentFiletypes
|
|
||||||
applyFutureRecommendedSettingsAutomatically
|
|
||||||
encryptedAttachmentProtectionQuarantineId
|
|
||||||
attachmentWithScriptsProtectionQuarantineId
|
|
||||||
anomalousAttachmentProtectionQuarantineId
|
|
||||||
gmail.email_image_proxy_bypass
|
|
||||||
imageProxyBypassPattern
|
|
||||||
enableImageProxy
|
|
||||||
gmail.enhanced_pre_delivery_message_scanning
|
|
||||||
enableImprovedSuspiciousContentDetection
|
|
||||||
gmail.enhanced_smime_encryption
|
|
||||||
enableSmimeEncryption
|
|
||||||
allowUserToUploadCertificates
|
|
||||||
gmail.gmail_name_format
|
|
||||||
allowCustomDisplayNames
|
|
||||||
defaultDisplayNameFormat
|
|
||||||
gmail.imap_access
|
|
||||||
enableImapAccess
|
|
||||||
gmail.links_and_external_images
|
|
||||||
enableShortenerScanning
|
|
||||||
enableExternalImageScanning
|
|
||||||
enableAggressiveWarningsOnUntrustedLinks
|
|
||||||
applyFutureSettingsAutomatically
|
|
||||||
gmail.per_user_outbound_gateway
|
|
||||||
allowUsersToUseExternalSmtpServers
|
|
||||||
gmail.pop_access
|
|
||||||
enablePopAccess
|
|
||||||
gmail.spoofing_and_authentication
|
|
||||||
detectDomainNameSpoofing
|
|
||||||
detectEmployeeNameSpoofing
|
|
||||||
detectDomainSpoofingFromUnauthenticatedSenders
|
|
||||||
detectUnauthenticatedEmails
|
|
||||||
domainNameSpoofingConsequence
|
|
||||||
employeeNameSpoofingConsequence
|
|
||||||
domainSpoofingConsequence
|
|
||||||
unauthenticatedEmailConsequence
|
|
||||||
detectGroupsSpoofing
|
|
||||||
groupsSpoofingVisibilityType
|
|
||||||
groupsSpoofingConsequence
|
|
||||||
applyFutureSettingsAutomatically
|
|
||||||
domainNameSpoofingQuarantineId
|
|
||||||
employeeNameSpoofingQuarantineId
|
|
||||||
domainSpoofingQuarantineId
|
|
||||||
unauthenticatedEmailQuarantineId
|
|
||||||
groupsSpoofingQuarantineId
|
|
||||||
gmail.user_email_uploads
|
|
||||||
enableMailAndContactsImport
|
|
||||||
gmail.workspace_sync_for_outlook
|
|
||||||
enableGoogleWorkspaceSyncForMicrosoftOutlook
|
|
||||||
groups_for_business.groups_sharing
|
|
||||||
ownersCanAllowIncomingMailFromPublic
|
|
||||||
collaborationCapability
|
|
||||||
createGroupsAccessLevel
|
|
||||||
ownersCanAllowExternalMembers
|
|
||||||
ownersCanHideGroups
|
|
||||||
newGroupsAreHidden
|
|
||||||
viewTopicsDefaultAccessLevel
|
|
||||||
meet.safety_access
|
|
||||||
meetingsAllowedToJoin
|
|
||||||
meet.safety_domain
|
|
||||||
usersAllowedToJoin
|
|
||||||
meet.safety_external_participants
|
|
||||||
enableExternalLabel
|
|
||||||
meet.safety_host_management
|
|
||||||
enableHostManagement
|
|
||||||
meet.video_recording
|
|
||||||
enableRecording
|
|
||||||
rule.dlp
|
|
||||||
displayName
|
|
||||||
description
|
|
||||||
triggers
|
|
||||||
condition
|
|
||||||
action
|
|
||||||
state
|
|
||||||
createTime
|
|
||||||
updateTime
|
|
||||||
ruleTypeMetadata
|
|
||||||
rule.system_defined_alerts
|
|
||||||
displayName
|
|
||||||
description
|
|
||||||
action
|
|
||||||
state
|
|
||||||
createTime
|
|
||||||
updateTime
|
|
||||||
security.advanced_protection_program
|
|
||||||
enableAdvancedProtectionSelfEnrollment
|
|
||||||
securityCodeOption
|
|
||||||
security.less_secure_apps
|
|
||||||
allowLessSecureApps
|
|
||||||
security.login_challenges
|
|
||||||
enableEmployeeIdChallenge
|
|
||||||
security.password
|
|
||||||
allowedStrength
|
|
||||||
minimumLength
|
|
||||||
maximumLength
|
|
||||||
enforceRequirementsAtLogin
|
|
||||||
allowReuse
|
|
||||||
expirationDuration
|
|
||||||
security.session_controls
|
|
||||||
webSessionDuration
|
|
||||||
security.super_admin_account_recovery
|
|
||||||
enableAccountRecovery
|
|
||||||
security.user_account_recovery
|
|
||||||
enableAccountRecovery
|
|
||||||
sites.sites_creation_and_modification
|
|
||||||
allowSitesCreation
|
|
||||||
allowSitesModification
|
|
||||||
workspace_marketplace.apps_allowlist
|
|
||||||
apps
|
|
||||||
```
|
|
||||||
## Display Cloud Identity Policies
|
## Display Cloud Identity Policies
|
||||||
Display selected policies.
|
Display selected policies.
|
||||||
```
|
```
|
||||||
|
|||||||
Reference in New Issue
Block a user