Skip to main content
Documentation
Technology areas
close
AI and ML
Application development
Application hosting
Compute
Data analytics and pipelines
Databases
Distributed, hybrid, and multicloud
Generative AI
Industry solutions
Networking
Observability and monitoring
Security
Storage
Cross-product tools
close
Access and resources management
Costs and usage management
Google Cloud SDK, languages, frameworks, and tools
Infrastructure as code
Migration
Related sites
close
Google Cloud Home
Free Trial and Free Tier
Architecture Center
Blog
Contact Sales
Google Cloud Developer Center
Google Developer Center
Google Cloud Marketplace
Google Cloud Marketplace Documentation
Google Cloud Skills Boost
Google Cloud Solution Center
Google Cloud Support
Google Cloud Tech Youtube Channel
/
English
Deutsch
Español – América Latina
Français
Português – Brasil
中文 – 简体
日本語
한국어
Console
Sign in
IAM
Guides
Reference
Samples
Resources
Contact Us
Start free
Documentation
Guides
Reference
Samples
Resources
Technology areas
More
Cross-product tools
More
Related sites
More
Console
Contact Us
Start free
Identity and Access Management
All APIs and reference
Authenticate to IAM
Retry failed requests
Client libraries
gcloud iam commands
REST API reference
IAM REST API
Overview
v3
REST Resources
folders.locations.operations
Overview
get
folders.locations.policyBindings
Overview
create
delete
get
list
patch
searchTargetPolicyBindings
organizations.locations.operations
Overview
get
organizations.locations.policyBindings
Overview
create
delete
get
list
patch
searchTargetPolicyBindings
organizations.locations.principalAccessBoundaryPolicies
Overview
create
delete
get
list
patch
searchPolicyBindings
projects.locations.operations
Overview
get
projects.locations.policyBindings
Overview
create
delete
get
list
patch
searchTargetPolicyBindings
Types
ListPolicyBindingsResponse
SearchTargetPolicyBindingsResponse
v2
REST Resources
policies
Overview
createPolicy
delete
get
listPolicies
update
policies.operations
Overview
get
v1
REST Resources
iamPolicies
Overview
lintPolicy
queryAuditableServices
locations.workforcePools
Overview
create
delete
get
getIamPolicy
list
patch
setIamPolicy
testIamPermissions
undelete
locations.workforcePools.operations
Overview
get
locations.workforcePools.providers
Overview
create
delete
get
list
patch
undelete
locations.workforcePools.providers.keys
Overview
create
delete
get
list
undelete
locations.workforcePools.providers.operations
Overview
get
locations.workforcePools.subjects
Overview
delete
undelete
organizations.roles
Overview
create
delete
get
list
patch
undelete
permissions
Overview
queryTestablePermissions
projects.locations.oauthClients
Overview
create
delete
get
list
patch
undelete
projects.locations.oauthClients.credentials
Overview
create
delete
get
list
patch
projects.locations.workloadIdentityPools
Overview
create
delete
get
getIamPolicy
list
patch
setIamPolicy
testIamPermissions
undelete
projects.locations.workloadIdentityPools.namespaces
Overview
create
delete
get
list
patch
undelete
projects.locations.workloadIdentityPools.namespaces.managedIdentities
Overview
addAttestationRule
create
delete
get
list
listAttestationRules
patch
removeAttestationRule
setAttestationRules
undelete
projects.locations.workloadIdentityPools.operations
Overview
get
projects.locations.workloadIdentityPools.providers
Overview
create
delete
get
list
patch
undelete
projects.locations.workloadIdentityPools.providers.keys
Overview
create
delete
get
list
undelete
projects.locations.workloadIdentityPools.providers.operations
Overview
get
projects.roles
Overview
create
delete
get
list
patch
undelete
projects.serviceAccounts
Overview
create
delete
disable
enable
get
getIamPolicy
list
patch
setIamPolicy
signBlob
signJwt
testIamPermissions
undelete
update
projects.serviceAccounts.keys
Overview
create
delete
disable
enable
get
list
upload
roles
Overview
get
list
queryGrantableRoles
Types
AttestationRule
GetPolicyOptions
KeyData
ListRolesResponse
Policy
RoleView
TestIamPermissionsResponse
TrustStore
v2beta
REST Resources
policies
Overview
createPolicy
delete
get
listPolicies
update
policies.operations
Overview
get
v1beta
REST Resources
projects.locations.workloadIdentityPools
Overview
create
delete
get
list
patch
undelete
projects.locations.workloadIdentityPools.operations
Overview
get
projects.locations.workloadIdentityPools.providers
Overview
create
delete
get
list
patch
undelete
projects.locations.workloadIdentityPools.providers.operations
Overview
get
Shared types
Types
Expr
GetOperationRequest
Operation
PAM REST API
Overview
v1
REST Resources
folders.locations
Overview
checkOnboardingStatus
get
list
folders.locations.entitlements
Overview
create
delete
get
list
patch
search
folders.locations.entitlements.grants
Overview
approve
create
deny
get
list
revoke
search
folders.locations.operations
Overview
delete
get
list
organizations.locations
Overview
checkOnboardingStatus
get
list
organizations.locations.entitlements
Overview
create
delete
get
list
patch
search
organizations.locations.entitlements.grants
Overview
approve
create
deny
get
list
revoke
search
organizations.locations.operations
Overview
delete
get
list
projects.locations
Overview
checkOnboardingStatus
get
list
projects.locations.entitlements
Overview
create
delete
get
list
patch
search
projects.locations.entitlements.grants
Overview
approve
create
deny
get
list
revoke
search
projects.locations.operations
Overview
delete
get
list
Types
CallerAccessType
CallerRelationshipType
CheckOnboardingStatusResponse
ListEntitlementsResponse
ListGrantsResponse
PrivilegedAccess
SearchEntitlementsResponse
SearchGrantsResponse
v1beta
REST Resources
folders.locations
Overview
checkOnboardingStatus
get
list
folders.locations.entitlements
Overview
create
delete
get
list
patch
search
folders.locations.entitlements.grants
Overview
approve
create
deny
get
list
revoke
search
folders.locations.operations
Overview
delete
get
list
organizations.locations
Overview
checkOnboardingStatus
get
list
organizations.locations.entitlements
Overview
create
delete
get
list
patch
search
organizations.locations.entitlements.grants
Overview
approve
create
deny
get
list
revoke
search
organizations.locations.operations
Overview
delete
get
list
projects.locations
Overview
checkOnboardingStatus
get
list
projects.locations.entitlements
Overview
create
delete
get
list
patch
search
projects.locations.entitlements.grants
Overview
approve
create
deny
get
list
revoke
search
projects.locations.operations
Overview
delete
get
list
Types
CallerAccessType
CallerRelationshipType
CheckOnboardingStatusResponse
ListEntitlementsResponse
ListGrantsResponse
PrivilegedAccess
SearchEntitlementsResponse
SearchGrantsResponse
Shared types
Types
DeleteOperationRequest
GetLocationRequest
GetOperationRequest
ListLocationsRequest
ListLocationsResponse
ListOperationsRequest
ListOperationsResponse
Security Token Service REST API
Overview
v1
TopLevel
token
Types
AccessBoundary
Binding
Options
v1beta
TopLevel
token
Types
AccessBoundary
Options
Service Account Credentials REST API
Overview
v1
REST Resources
locations.workforcePools
Overview
getAllowedLocations
projects.locations.workloadIdentityPools
Overview
getAllowedLocations
projects.serviceAccounts
Overview
generateAccessToken
generateIdToken
getAllowedLocations
signBlob
signJwt
RPC API reference
IAM RPC API
Overview
cloud.control2.shared.operations
google.cloud.common
google.iam.admin.v1
google.iam.v1
Overview
logging
google.iam.v1beta
google.iam.v2
google.iam.v2beta
google.iam.v3
google.iam.v3beta
google.longrunning
google.rpc
google.type
PAM RPC API
Overview
google.cloud.common
google.cloud.location
google.cloud.privilegedaccessmanager.v1
google.cloud.privilegedaccessmanager.v1alpha
google.cloud.privilegedaccessmanager.v1beta
google.cloud.privilegedaccessmanager.v1main
google.longrunning
google.rpc
IAM Conditions reference
Conditions attribute reference
Conditions resource attribute value reference
Services that allow conditional role bindings
Roles and permissions reference
Roles and permissions index
A-C
Access Approval
Access Context Manager
Access Transparency
Actions
Advisory Notifications
AI Edge Portal
AI Platform
AI Platform Data Labeling Service
AlloyDB for PostgreSQL
Android Management
Anthos Audit API
Anthos Support
API Gateway
API Hub
API Keys
API Management
Apigee
Apigee Connect
Apigee Registry
App Development Experience
App Engine
App Engine flexible environment
App Hub
Appliance Activation Service
Application Design Center
Artifact Analysis
Artifact Registry
Assured Open Source Software
Assured Workloads
Audit Manager
AutoML
Backup and Disaster Recovery
Backup for GKE
Bare Metal Solution
Batch
BigLake
BigQuery
BigQuery Connection API
BigQuery Continuous Query
BigQuery Data Policy
BigQuery Data Transfer Service
BigQuery Engine for Apache Flink
BigQuery Migration API
BigQuery Omni
BigQuery sharing
Bigtable
Binary Authorization
Blockchain Node Engine
Blockchain Validator Manager
Capacity Planner
Care Studio
Certificate Authority Service
Certificate Manager
Chrome Enterprise Premium
Client Auth Config
Cloud Asset Inventory
Cloud Autoscaling
Cloud Billing
Cloud Build
Cloud Commerce Consumer Procurement
Cloud Composer
Cloud Config Manager API
Cloud Controls Partner API
Cloud Data Fusion
Cloud Debugger
Cloud Deploy
Cloud Deployment Manager
Cloud DNS
Cloud Domains
Cloud Endpoints
Cloud Endpoints Portal
Cloud Healthcare API
Cloud Hub
Cloud Infrastructure Entitlement Management (CIEM)
Cloud Integrations
Cloud Intrusion Detection System
Cloud IoT
Cloud Key Management Service
Cloud License Manager
Cloud Life Sciences
Cloud Location Finder
Cloud Logging
Cloud Monitoring
Cloud Notifications
Cloud Optimization
Cloud OS Config
Cloud Profiler
Cloud Quotas
Cloud Run
Cloud Run functions
Cloud Runtime Configuration API
Cloud Scheduler
Cloud Security Compliance
Cloud Service Mesh
Cloud Service Mesh control plane
Cloud Source Repositories
Cloud SQL
Cloud Storage
Cloud Tasks
Cloud Tool Results
Cloud TPU
Cloud Trace
Cloud Workstations
Cluster Director
Commerce Agreement Publishing
Commerce Business Enablement
Commerce Offer Catalog
Commerce Org Governance
Commerce Price Management
Commerce Producer
Compliance Scanning
Compute Engine
Confidential Computing
Config Delivery
Config Management
Connectors
Container Registry
Container Scanning
Container Security
Container Threat Detection
Content Warehouse
Conversational Insights
Customer Usage Data Processing
Cyber Insurance Hub
D-F
Data Catalog
Data Connectors
Data Lineage API