Best practices for Identity and Access Management on Compute Engine (Google Cloud Next '17)
Vložit
- čas přidán 19. 07. 2024
- How do you maintain control while taking advantage of the power and scale of Compute Engine? Eric Bahna shares best practices for mapping common organizational structures into Compute Engine using IAM roles, service accounts, and more.
Missed the conference? Watch all the talks here: goo.gl/c1Vs3h
Watch more talks about Infrastructure & Operations here: goo.gl/k2LOYG - Věda a technologie
great talk on the compute engine security
Hi At 15:21 you state that a user creates a compute instance running as a service account. How is that possible? Why would a compute engine run as a service account ? And finally does Big Query checks if a service account has permission to execute the get method? IF it does does that not mean that the user has a service account that can execute the get. This does not compute.
How to add our own organization/domain in GCP organization section ?
Isn't AD not LDAP :)?
2x is the perfect speed