NAME

gcloud iam policies create - create a policy on the given attachment point with the given name

SYNOPSIS

gcloud iam policies create POLICY_ID --attachment-point=ATTACHMENT_POINT --kind=KIND --policy-file=POLICY_FILE [GCLOUD_WIDE_FLAG ...]

DESCRIPTION

Create a policy on the given attachment point with the given name.

EXAMPLES

The following command creates the IAM policy defined at the resource project 123 of kind denypolicies and id my-deny-policy from the file policy.json:

$ gcloud iam policies create my-deny-policy \ --attachment-point=cloudresourcemanager.googleapis.com/\ projects/123 --kind=denypolicies --policy-file=policy.json

POSITIONAL ARGUMENTS

POLICY_ID

Policy ID that is unique for the resource to which the policy is attached.

REQUIRED FLAGS

--attachment-point=ATTACHMENT_POINT

Resource to which the policy is attached. For valid formats, see https://cloud.google.com/iam/help/deny/attachment-point.

--kind=KIND

Policy type. Use denypolicies for deny policies.

--policy-file=POLICY_FILE

Path to the file that contains the policy, in JSON or YAML format. For valid syntax, see https://cloud.google.com/iam/help/deny/policy-syntax.

GCLOUD WIDE FLAGS

These flags are available to all commands: --access-token-file, --account, --billing-project, --configuration, --flags-file, --flatten, --format, --help, --impersonate-service-account, --log-http, --project, --quiet, --trace-token, --user-output-enabled, --verbosity.

Run $ gcloud help for details.

NOTES

These variants are also available:

$ gcloud alpha iam policies create

$ gcloud beta iam policies create