在 GCP 文件夹中创建项目需要哪些权限?
[英]Which permissions do I need to create projects in GCP folders?
问题描述
I have a Google Cloud organisation set up.
我设置了一个 Google Cloud 组织。 In it I have 5 folders, within each of them I have some sub-folders and some projects.在其中我有 5 个文件夹,每个文件夹中都有一些子文件夹和一些项目。
When I try to create another project at either the org level or within one of the top-level projects, I see a yellow exclamation mark sign which tells me "You do not have permission to create projects in this location".当我尝试在组织级别或顶级项目之一中创建另一个项目时,我看到一个黄色的感叹号,告诉我“您无权在此位置创建项目”。 However, I can create projects at the sub-folder level.但是,我可以在子文件夹级别创建项目。
I created all the folders and subfolders, and I have the following permissions:我创建了所有文件夹和子文件夹,并且拥有以下权限:
- Organisation Admin组织管理员
- Project Owner项目拥有者
- Folder Admin文件夹管理员
- Project Creator项目创建者
- Project Mover项目推动者
Which other permissions do I need?我还需要哪些其他权限?
The error looks like this:错误如下所示:
2 个解决方案
解决方案1
2 2019-10-17 03:58:28
I see that you have the correct permissions, but the only reasonable way I see you getting this error is if you have the following permissions at organizational level:我看到您拥有正确的权限,但我看到您收到此错误的唯一合理方式是您是否在组织级别拥有以下权限:
- Organization Admin
- Project Owner
- Folder Admin
- Project Mover
and the和
- Project Creator
was added at folder level for在文件夹级别添加了
- subfolder_1
- subfolder_2
- subfolder_3
解决方案2
2 已采纳 2020-01-24 13:41:46
TLDR TLDR
You need the permission Project Creator at the organisation level您需要组织级别的Project Creator权限
LONG ANSWER长答案
Apparently, having "admin" permissions doesnt suffice if you dont have the Project Creator permission.显然,如果您没有Project Creator权限,那么拥有“管理员”权限是不够的。
As admin, I had the following permissions, but I was still unable to create the a project because I didnt have Project Creator permission:作为管理员,我有以下权限,但我仍然无法创建项目,因为我没有Project Creator权限:
Access Approval Approver
Access Context Manager Admin
Actions Admin
Recommendations AI Viewer
Access Transparency Admin
Bigtable Administrator
Billing Account Administrator
Project Billing Manager
Cloud Asset Owner
Compute Admin
Compute Network Admin
Compute Organisation Security Policy User
Compute Organisation Resource Admin
Organisation Role Administrator
Notebooks Admin
Owner
Folder Admin
Folder Creator
Folder IAM Admin
Folder Mover
Project IAM Admin
Service Broker Admin
Storage Admin
Would love to meet the gentleman at Google who came up with this idea.很想见到提出这个想法的谷歌先生。 The Owner permission's description reads as Full access to all resources. Owner权限的描述为Full access to all resources. (I am yet to see a description so unprofessionally misleading.) (我还没有看到如此不专业的误导性描述。)
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.