[英]Google Cloud Platform - Error moving firebase project with "no organization" to an "organization"
We initially worked with Google to setup a POC firebase account for us to test out.我们最初与谷歌合作设置了一个 POC firebase 帐户供我们测试。 We ended up continuing with this project and turning it into our production project.
我们最终继续这个项目并将其转变为我们的生产项目。 Later on down the road, we are now trying to migrate this project to our enterprise organization within GCP so we can configure the correct billing.
稍后,我们现在正尝试将此项目迁移到 GCP 内的企业组织,以便我们可以配置正确的计费。
However every time we try to migrate the project we get a permissions error.但是,每次我们尝试迁移项目时,我们都会收到权限错误。
ERROR: (gcloud.alpha.projects.move) User [email] does not have permission to access projects instance [PROJECT_ID] (or it may not exist): The caller does not have permission
Steps we've taken so far (basically followed this ):到目前为止我们采取的步骤(基本上遵循这个):
We've added the user who is migrating the project into the target organization- giving him the 'Project Creator' role我们添加了正在将项目迁移到目标组织的用户 - 赋予他“项目创建者”角色
In the source organization ("No Organization"), we added the same user and gave him the role "Project Mover"在源组织(“无组织”)中,我们添加了相同的用户并赋予他角色“Project Mover”
Then in the GCP cloud console, we used this command:然后在 GCP 云控制台中,我们使用了这个命令:
gcloud alpha projects move PROJECT_ID --organization ORGANIZATION_ID
We then select y
to confirm our change and then get the permissions issue again我们然后 select
y
确认我们的更改,然后再次获取权限问题
We've verified that the user has all of the correct permissions across projects, so we're really unsure how to proceed with this migration right now.我们已经验证用户拥有跨项目的所有正确权限,所以我们现在真的不确定如何继续进行此迁移。 We've also given the user the roles
Organization Policy Administrator
and Owner
within IAM with no luck.我们还为用户提供了 IAM 中的
Organization Policy Administrator
和Owner
角色,但不幸的是。
If anyone has experienced a similar issue, any guidance would be very appreciated!如果有人遇到过类似的问题,任何指导将不胜感激!
Thanks!谢谢!
The user must be a project owner of the project being moved - Project Mover is not enough.用户必须是被移动项目的项目所有者 - Project Mover 是不够的。 The user must also be a Project Creator at the Organization level - adding this role at the project level will not work.
用户还必须是组织级别的项目创建者 - 在项目级别添加此角色将不起作用。
If you are using Folders in the organization, the user will also need either the Folder Admin or Folder Mover role at the Organization level.如果您在组织中使用文件夹,则用户还需要组织级别的文件夹管理员或文件夹移动者角色。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.