gcloud access-context-manager authorized-orgs create - create a new authorized organizations description
gcloud access-context-manager authorized-orgs create (AUTHORIZED_ORGS_DESC : --policy=POLICY) --asset_type=ASSET_TYPE --authorization_direction=AUTHORIZATION_DIRECTION --authorization_type=AUTHORIZATION_TYPE [--async] [--orgs=[ORGS,...]] [GCLOUD_WIDE_FLAG ...]
Create a new authorized organizations description in a given access policy.
To create a new authorized organizations description:
$ gcloud access-context-manager authorized-orgs create \ --orgs=organizations/12345 --policy=9876543
- Authorized orgs desc resource - The authorized organizations description to
create. The arguments in this group can be used to specify the attributes of this resource.
This must be specified.
- AUTHORIZED_ORGS_DESC
ID of the authorized-orgs-desc or fully qualified identifier for the authorized-orgs-desc. To set the authorized_orgs_desc attribute:
provide the argument authorized_orgs_desc on the command line.
This positional argument must be specified if any of the other arguments in this group are specified.
- --policy=POLICY
The ID of the access policy.
To set the policy attribute:
provide the argument authorized_orgs_desc on the command line with a fully specified name;
provide the argument --policy on the command line;
set the property access_context_manager/policy;
automatically, if the current account belongs to an organization with exactly one access policy..
- --asset_type=ASSET_TYPE
The asset type of this authorized organizations description. For example, device, or credential strength. ASSET_TYPE must be one of: asset-type-credential-strength, asset-type-device, asset-type-unspecified.
- --authorization_direction=AUTHORIZATION_DIRECTION
Authorization direction of this authorization relationship. Specifies whether to allow specified organizations to evaluate this organization's traffic, or allow specified organizations traffic to be evaluated by this org. AUTHORIZATION_DIRECTION must be one of: authorization-direction-from, authorization-direction-to, authorization-direction-unspecified.
- --authorization_type=AUTHORIZATION_TYPE
The authorization type of the authorized organizations description. For example, trust, troubleshooting or logging. AUTHORIZATION_TYPE must be one of: authorization-type-trust, authorization-type-unspecified.
- --async
Return immediately, without waiting for the operation in progress to complete.
- --orgs=[ORGS,...]
Comma-separated list of organizations (in the following format: organizations/<organizationnumber>).
These flags are available to all commands: --access-token-file, --account, --billing-project, --configuration, --flags-file, --flatten, --format, --help, --impersonate-service-account, --log-http, --project, --quiet, --trace-token, --user-output-enabled, --verbosity.
Run $ gcloud help for details.
This command uses the accesscontextmanager/v1 API. The full documentation for this API can be found at: https://cloud.google.com/access-context-manager/docs/reference/rest/
This variant is also available:
$ gcloud alpha access-context-manager authorized-orgs create