- NAME
- 
- gcloud iam - manage IAM service accounts and keys
 
- SYNOPSIS
- 
- 
gcloud iamGROUP|COMMAND[GCLOUD_WIDE_FLAG …]
 
- 
- DESCRIPTION
- 
The gcloud iam command group lets you manage Google Cloud Identity & Access
Management (IAM) service accounts and keys.
Cloud IAM authorizes who can take action on specific resources, giving you full control and visibility to manage cloud resources centrally. For established enterprises with complex organizational structures, hundreds of workgroups and potentially many more projects, Cloud IAM provides a unified view into security policy across your entire organization, with built-in auditing to ease compliance processes. More information on Cloud IAM can be found here: https://cloud.google.com/iam and detailed documentation can be found here: https://cloud.google.com/iam/docs/. 
- GCLOUD WIDE FLAGS
- 
These flags are available to all commands: --help.Run $ gcloud helpfor details.
- GROUPS
- 
GROUP- oauth-clients
- Create and manage OAuth clients.
- policies
- Manage IAM deny policies.
- policy-bindings
- Manage policy bindings.
- principal-access-boundary-policies
- Manage principal access boundary policies.
- roles
- Create and manipulate roles.
- service-accounts
- Create and manipulate service accounts.
- simulator
- Understand how an IAM policy change could impact access before deploying the change.
- workforce-pools
- Create and manage workforce pools.
- workload-identity-pools
- Manage IAM workload identity pools.
 
- COMMANDS
- 
COMMAND- list-grantable-roles
- List IAM grantable roles for a resource.
- list-testable-permissions
- List IAM testable permissions for a resource.
 
- NOTES
- 
These variants are also available:
gcloud alpha iamgcloud beta iam
      gcloud iam
  
  
  Except as otherwise noted, the content of this page is licensed under the Creative Commons Attribution 4.0 License, and code samples are licensed under the Apache 2.0 License. For details, see the Google Developers Site Policies. Java is a registered trademark of Oracle and/or its affiliates.
Last updated 2025-05-07 UTC.