gcloud privateca pools set-iam-policy
- NAME
- gcloud privateca pools set-iam-policy - set the IAM policy for a CA pool
- SYNOPSIS
gcloud privateca pools set-iam-policy(POOL:--location=LOCATION)POLICY_FILE[GCLOUD_WIDE_FLAG …]
- DESCRIPTION
- Sets the IAM policy for the given CA pool as defined in a JSON or YAML file.
Seehttps://cloud.google.com/iam/docs/managing-policiesfor details of the policy file format and contents.
- EXAMPLES
- The following command will read an IAM policy defined in a JSON file'policy.json' and set it for the CA pool 'my-pool' with the location 'us-west1':
gcloudprivatecapoolsset-iam-policymy-poolpolicy.json--location=us-west1 - POSITIONAL ARGUMENTS
- CA Pool resource - The CA pool for which to update the IAM policy. The argumentsin this group can be used to specify the attributes of this resource. (NOTE)Some attributes are not given arguments in this group but can be set in otherways.
To set the
projectattribute:- provide the argument
poolon the command line with a fullyspecified name; - provide the argument
--projecton the command line; - set the property
core/project.
This must be specified.
POOL- ID of the CA Pool or fully qualified identifier for the CA Pool.
To set the
poolattribute:- provide the argument
poolon the command line.
This positional argument must be specified if any of the other arguments in thisgroup are specified.
- provide the argument
--location=LOCATION- The location of the CA Pool.
To set the
locationattribute:- provide the argument
poolon the command line with a fullyspecified name; - provide the argument
--locationon the command line; - set the property
privateca/location.
- provide the argument
- provide the argument
POLICY_FILE- Path to a local JSON or YAML formatted file containing a valid policy.
The output of the
get-iam-policycommand is a valid file, as is anyJSON or YAML file conforming to the structure of aPolicy.
- CA Pool resource - The CA pool for which to update the IAM policy. The argumentsin this group can be used to specify the attributes of this resource. (NOTE)Some attributes are not given arguments in this group but can be set in otherways.
- GCLOUD WIDE FLAGS
- These flags are available to all commands:
--access-token-file,--account,--billing-project,--configuration,--flags-file,--flatten,--format,--help,--impersonate-service-account,--log-http,--project,--quiet,--trace-token,--user-output-enabled,--verbosity.Run
$gcloud helpfor details. - API REFERENCE
- This command uses the
privateca/v1API. The full documentation forthis API can be found at:https://cloud.google.com/
Except as otherwise noted, the content of this page is licensed under theCreative Commons Attribution 4.0 License, and code samples are licensed under theApache 2.0 License. For details, see theGoogle Developers Site Policies. Java is a registered trademark of Oracle and/or its affiliates.
Last updated 2025-05-07 UTC.