xmen2005
commented
3 months ago Impractical the GCE securely not free
Open jay0lee opened 3 months ago
xmen2005
commented
3 months ago Impractical the GCE securely not free
Google Cloud has added new default organization policies for new Workspace/GCP domains that will break GAM service account key configuration. @taers232c fyi. We'll need to 1) encourage more admins to run GAM on GCE securely 2) if that's not possible, disable these restrictions at the GAM project level. We may be able to do that programatically on the GAM project during project create/update but we should notify the admin that they are reducing their own security posture by doing so.