gcloud alpha access-context-manager authorized-orgs create - create a new authorized organizations description
gcloud alpha access-context-manager authorized-orgs create (AUTHORIZED_ORGS_DESC : --policy=POLICY) --asset_type=ASSET_TYPE --authorization_direction=AUTHORIZATION_DIRECTION --authorization_type=AUTHORIZATION_TYPE [--async] [--orgs=[ORGS,...]] [GCLOUD_WIDE_FLAG ...]
(ALPHA) Create a new authorized organizations description in a given access policy.
To create a new authorized organizations description:
$ gcloud alpha access-context-manager authorized-orgs create \ --orgs=organizations/12345 --policy=9876543
- Authorized orgs desc resource - The authorized organizations description to
create. The arguments in this group can be used to specify the attributes of this resource.
This must be specified.
- AUTHORIZED_ORGS_DESC
ID of the authorized-orgs-desc or fully qualified identifier for the authorized-orgs-desc. To set the authorized_orgs_desc attribute:
provide the argument authorized_orgs_desc on the command line.
This positional argument must be specified if any of the other arguments in this group are specified.
- --policy=POLICY
The ID of the access policy.
To set the policy attribute:
provide the argument authorized_orgs_desc on the command line with a fully specified name;
provide the argument --policy on the command line;
set the property access_context_manager/policy;
automatically, if the current account belongs to an organization with exactly one access policy..
- --asset_type=ASSET_TYPE
The asset type of this authorized organizations description. For example, device, or credential strength. ASSET_TYPE must be one of: asset-type-credential-strength, asset-type-device, asset-type-unspecified.
- --authorization_direction=AUTHORIZATION_DIRECTION
Authorization direction of this authorization relationship. Specifies whether to allow specified organizations to evaluate this organization's traffic, or allow specified organizations traffic to be evaluated by this org. AUTHORIZATION_DIRECTION must be one of: authorization-direction-from, authorization-direction-to, authorization-direction-unspecified.
- --authorization_type=AUTHORIZATION_TYPE
The authorization type of the authorized organizations description. For example, trust, troubleshooting or logging. AUTHORIZATION_TYPE must be one of: authorization-type-trust, authorization-type-unspecified.
- --async
Return immediately, without waiting for the operation in progress to complete.
- --orgs=[ORGS,...]
Comma-separated list of organizations (in the following format: organizations/<organizationnumber>).
These flags are available to all commands: --access-token-file, --account, --billing-project, --configuration, --flags-file, --flatten, --format, --help, --impersonate-service-account, --log-http, --project, --quiet, --trace-token, --user-output-enabled, --verbosity.
Run $ gcloud help for details.
This command uses the accesscontextmanager/v1alpha API. The full documentation for this API can be found at: https://cloud.google.com/access-context-manager/docs/reference/rest/
This command is currently in alpha and might change without notice. If this command fails with API permission errors despite specifying the correct project, you might be trying to access an API with an invitation-only early access allowlist. This variant is also available:
$ gcloud access-context-manager authorized-orgs create