gcloud alpha organizations set-iam-policy - set IAM policy for an organization
gcloud alpha organizations set-iam-policy ORGANIZATION_ID POLICY_FILE [GCLOUD_WIDE_FLAG ...]
(ALPHA) Given an organization ID and a file encoded in JSON or YAML that contains the IAM policy, this command will set the IAM policy for that organization.
The following command reads an IAM policy defined in a JSON file policy.json and sets it for an organization with the ID 123456789:
$ gcloud alpha organizations set-iam-policy 123456789 policy.json
The following command reads an IAM policy defined in a JSON file policy.json and sets it for the organization associated with the domain example.com:
$ gcloud alpha organizations set-iam-policy example.com policy.json
- ORGANIZATION_ID
ID or domain for the organization whose IAM policy you want to set.
- POLICY_FILE
JSON or YAML file containing the IAM policy.
These flags are available to all commands: --access-token-file, --account, --billing-project, --configuration, --flags-file, --flatten, --format, --help, --impersonate-service-account, --log-http, --project, --quiet, --trace-token, --user-output-enabled, --verbosity.
Run $ gcloud help for details.
This command is currently in alpha and might change without notice. If this command fails with API permission errors despite specifying the correct project, you might be trying to access an API with an invitation-only early access allowlist. These variants are also available:
$ gcloud organizations set-iam-policy
$ gcloud beta organizations set-iam-policy