[英]GCP Cloud Identity - Accounts/Groups
I'm migrating projects that don't have an organization to a new organization.我正在将没有组织的项目迁移到新组织。 As I understand it, Cloud Identity is required when using an organization.
据我了解,使用组织时需要 Cloud Identity。
Will the existing users in in the projects with the same domain as the organization automatically be manageable in Cloud Identity?与组织具有相同域的项目中的现有用户是否可以在 Cloud Identity 中自动进行管理?
How is the user group functionality in Cloud Identity different from user group functionality in the Cloud console IAM section? Cloud Identity 中的用户组功能与 Cloud Console IAM 部分中的用户组功能有何不同? Would any groups created in IAM before or after the migration be visible in Cloud Identity?
在迁移之前或之后在 IAM 中创建的任何组在 Cloud Identity 中是否可见?
Yes, Cloud Identity is required to use an Organization in Google Cloud.是的,在 Google Cloud 中使用组织需要 Cloud Identity。
Cloud identity is basically an identity provider (IdP) in which you create the user and group objects and manage parameters such as security factors (MFA) and application access.云身份基本上是一个身份提供者 (IdP),您可以在其中创建用户和组对象并管理安全因素 (MFA) 和应用程序访问等参数。 If you have a non organization project with existing users that have your domain, then it is likely they are regular 'Google' accounts, when you establish your Cloud Identity instance there is a process to consolidate them, they are called Unmanaged users .
如果您有一个非组织项目,现有用户拥有您的域,那么他们很可能是常规的“Google”帐户,当您建立 Cloud Identity 实例时,有一个整合它们的过程,它们被称为Unmanaged users 。
Before adding users to your organization, use the Transfer tool for unmanaged users to see if you have any unmanaged personal Google accounts.在将用户添加到您的组织之前,请使用非托管用户的转移工具查看您是否有任何非托管个人 Google 帐户。 The transfer tool enables you to see what unmanaged users exist, and then invite those unmanaged users to the domain.
转移工具可让您查看存在哪些非托管用户,然后邀请这些非托管用户加入域。
You can also refer user groups in the cloud console IAM section, if you have a project and you have been managing groups within the IAM section, that would indicate that there is already a Cloud Identity instance behind and that the project is part of an organization.您还可以在云控制台 IAM 部分中引用用户组,如果您有一个项目并且您一直在 IAM 部分中管理组,这表明后面已经有一个 Cloud Identity 实例并且该项目是组织的一部分. Which means, any groups created in the IAM section will be visible in Cloud Identity.
这意味着,在 IAM 部分创建的任何组都将在 Cloud Identity 中可见。
Refer Project migration for more information.有关详细信息,请参阅项目迁移。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.