NAME

gcloud active-directory domains create - create a Managed Microsoft AD domain

SYNOPSIS

gcloud active-directory domains create DOMAIN --region=[REGION,...] --reserved-ip-range=RESERVED_IP_RANGE [--admin-name=ADMIN_NAME] [--async] [--authorized-networks=[AUTHORIZED_NETWORKS,...]] [--enable-audit-logs] [--labels=KEY=VALUE] [GCLOUD_WIDE_FLAG ...]

DESCRIPTION

Create a new Managed Microsoft AD domain with the given name using Google Cloud's Managed Service for Microsoft Active Directory.

This command can fail for the following reasons:

EXAMPLES

The following command creates an AD domain with the name my-domain.com in region us-central1, a network peering to my-network and consuming the IP address range 10.172.0.0/24.

$ gcloud active-directory domains create my-domain.com \ --region=us-central1 --reserved-ip-range="10.172.0.0/24" \ --authorized-networks=projects/my-project/global/networks/\ my-network

POSITIONAL ARGUMENTS

Domain resource - Name of the managed Managed Microsoft AD domain you want to

create. This represents a Cloud resource. (NOTE) Some attributes are not given arguments in this group but can be set in other ways. To set the project attribute:

provide the argument domain on the command line with a fully specified name;

set the property core/project;

provide the argument --project on the command line.

This must be specified.

DOMAIN

ID of the domain or fully qualified identifier for the domain. To set the domain attribute:

  • provide the argument domain on the command line.

REQUIRED FLAGS

--region=[REGION,...]

Google Compute Engine region in which to provision domain controllers.

--reserved-ip-range=RESERVED_IP_RANGE

Classless Inter-Domain Routing range of internal addresses that are reserved for this domain.

OPTIONAL FLAGS

--admin-name=ADMIN_NAME

Name of the administrator that may be used to perform Active Directory operations. This is a delegated administrator account provisioned by our service. If left unspecified MIAdmin will be used. This is different from both the domain administrator and the Directory Services Restore Mode (DSRM) administrator.

--async

Return immediately, without waiting for the operation in progress to complete.

--authorized-networks=[AUTHORIZED_NETWORKS,...]

Names of the Google Compute Engine networks to which the domain will be connected.

--enable-audit-logs

If specified, Active Directory data audit logs are enabled for the domain.

--labels=KEY=VALUE

List of label KEY=VALUE pairs to add.

GCLOUD WIDE FLAGS

These flags are available to all commands: --access-token-file, --account, --billing-project, --configuration, --flags-file, --flatten, --format, --help, --impersonate-service-account, --log-http, --project, --quiet, --trace-token, --user-output-enabled, --verbosity.

Run $ gcloud help for details.

API REFERENCE

This command uses the managedidentities/v1 API. The full documentation for this API can be found at: https://cloud.google.com/managed-microsoft-ad/

NOTES

These variants are also available:

$ gcloud alpha active-directory domains create

$ gcloud beta active-directory domains create