- NAME
-
- gcloud compute instances set-iam-policy - set IAM policy for a Google Compute Engine instance
- SYNOPSIS
-
-
gcloud compute instances set-iam-policy( INSTANCE:--zone=ZONE)POLICY_FILE[ GCLOUD_WIDE_FLAG …]
-
- DESCRIPTION
- Set IAM policy for a Google Compute Engine instance.
- POSITIONAL ARGUMENTS
-
-
Instance resource - Instance resource - The instance to set the IAM policy of.
The arguments in this group can be used to specify the attributes of this
resource. The arguments in this group can be used to specify the attributes of
this resource. (NOTE) Some attributes are not given arguments in this group but
can be set in other ways. To set the [project] attribute: provide the argument
[instance] on the command line with a fully specified name; set the property
[core/project]; provide the argument [--project] on the command line. This must
be specified.
INSTANCE- ID of the instance or fully qualified identifier for the instance. This positional must be specified if any of the other arguments in this group are specified.
--zone=ZONE- The name of the Google Compute Engine zone.
POLICY_FILE-
Path to a local JSON or YAML formatted file containing a valid policy.
The output of the
get-iam-policycommand is a valid file, as is any JSON or YAML file conforming to the structure of a Policy.
-
Instance resource - Instance resource - The instance to set the IAM policy of.
The arguments in this group can be used to specify the attributes of this
resource. The arguments in this group can be used to specify the attributes of
this resource. (NOTE) Some attributes are not given arguments in this group but
can be set in other ways. To set the [project] attribute: provide the argument
[instance] on the command line with a fully specified name; set the property
[core/project]; provide the argument [--project] on the command line. This must
be specified.
- GCLOUD WIDE FLAGS
-
These flags are available to all commands: --account, --billing-project, --configuration, --flags-file, --flatten, --format, --help, --impersonate-service-account,
--log-http, --project, --quiet, --trace-token, --user-output-enabled,
--verbosity. Run
$ gcloud helpfor details. - API REFERENCE
-
This command uses the
compute/v1API. The full documentation for this API can be found at: https://developers.google.com/compute/docs/reference/latest/ - EXAMPLES
-
The following command reads an IAM policy defined in a JSON file
policy.jsonand sets it for the instance 'my-instance' and zone 'ZONE':$ gcloud compute instances set-iam-policy my-instance --zone=ZONE \ policy.json See https://cloud.google.com/iam/docs/managing-policies for details of policy role and member types.
- NOTES
-
These variants are also available:
$ gcloud alpha compute instances set-iam-policy $ gcloud beta compute instances set-iam-policy
