IAM for Google Cloud DNS: Restrict permissions to one managedZone?

Ray Foss

12/10/22, 5:55 PM

I'm trying to restrict DNS Administrator role permissions to only one ManagedZone, say the resource //dns.googleapis.com/projects/my-project/managedZones/example-com

When I go to the troubleshooter, It says that's not a valid resource name. What gives?

1 + 0

google-cloud-platform

Score:2

Server

John Hanley

12/10/22, 6:09 PM

Google Cloud DNS does not support assigning IAM policies to managed zones.

At this time you can only assign an IAM policy at the project/folder/org resource level which grants rights to all managed zones within the resource (project/folder/org).

0 + 0

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: IAM for Google Cloud DNS: Restrict permissions to one managedZone?

TH: IAM สำหรับ Google Cloud DNS: จำกัดการอนุญาตไว้ที่หนึ่ง ManagedZone หรือไม่

RO: IAM pentru Google Cloud DNS: restricționați permisiunile la o singură zonă gestionată?

RU: IAM для Google Cloud DNS: ограничить разрешения одной управляемой зоной?

VI: IAM cho Google Cloud DNS: Hạn chế quyền đối với một Vùng được quản lý?

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.