Google Cloud IAM and Identity
In GCP, the IAM menu is not the same as the Identity menu (Identity and Org menu item).
IAM is around who accesses what. Roles are a key part of IAM (A role is a set of permissions).
Identity and Org is a separate menu item in Google’s Cloud console – and for a good reason. Here, you assign admim users different permissions (roles) at an ORG level. For example, you may want to grant an admin user the ability to create whatever projects they like (they would be assigned the role ‘Project Creator’).
It is also where you would set up your organization and migrate projects to the organization.
The most important thing you can manage from the Identity and Org menu is managing all of your gSuite users and devices. In a sense, this screen ties in gSuite identities to Google Cloud.
Leave a Reply