Org Policies
General Info¶
- Definition
-
- The Organization Policy Service gives centralized and programmatic control over an organization's cloud resources
- An organization policy is a restriction or constraint that you can set over the use of a service
- Useful Policies
-
- Restrict Public IP access on Cloud SQL instances
- Enforce Public Access Prevention
- Enforce uniform bucket-level access
- Disable VM serial port access
- Define allowed external IPs for VM instances
- Domain restricted sharing
- Disable service account key creation
- Disable service account key upload
- Restrict shared VPC project lien removal
- Require OS Login
- Shielded VMs
- Restrict Cloud NAT usage
- Restrict Non-Confidential Computing
- Disable Automatic IAM Grants for Default Service Accounts