This course focuses on the design and implementation of role-based access control (RBAC) on the GCP. This includes the creation and appropriate use of service accounts, as well as primitive, predefined, and custom roles.
Intelligent, clearly thought-through Role-based Access Control (RBAC) is essential in any enterprise-scale cloud installation. The GCP offers several sophisticated security-related products to help thwart such threats, but none of these will be effective in the absence of well-designed access control. In this context, Cloud IAM is the service that governs both identities and access management. In this course, Regulating Resource Usage Using Google Cloud IAM, you will gain the ability to configure role-based access control to bind member identities and service accounts to permissions and monitor and control resource usage on the GCP with precision and granularity. First, you will learn how identities on the GCP could be member identities or service accounts. Next, you will discover how role-based access control on the GCP is implemented using the (Identity and Access Management) IAM service. Finally, you will explore how to use a specific feature on the GCP, the Identity-Aware Proxy, to implement role-based access to web applications running on App Engine, Compute Engine or Kubernetes. When you’re finished with this course, you will have the skills and knowledge of roles, identities, and service accounts to implement an intelligently designed strategy for resource regulation on the GCP. Topics:
- Course Overview
- Understanding Identities and Access Management on the GCP
- Working with Roles and Permissions in Cloud IAM
- Working with Service Accounts in Cloud IAM
- Simplifying Resource Access Using the Identity-Aware Proxy