Skip to main content

Manage IAM Access Policies

How to manage IAM Access Policies

You can create, edit, and delete IAM access policies using the Cloud Console.

Create an access policy

To view the Access Policies section in the Cloud Console, you need at least the IAM Viewer role.

  1. In the Cloud Console, open the IAM section from the left navigation and select Access Policies to open the Access Policies page.
  2. In the upper right corner, click Create Policy.
  3. In the policy editor, enter a name for the policy.
  4. Enter a description for the policy.
  5. Add one or more rules to the policy. For each rule, enter a principal and a role to assign that role to the principal.
  6. When you're done, click Save Policy.

Edit an access policy

  1. In the Cloud Console, open the IAM section from the left navigation and select Access Policies to open the Access Policies page.
  2. Search for the policy you want to edit. To view policy details, expand the carat next to the policy name.
  3. Click the kebab menu (vertical three dots) next to the policy you want to edit, and select Edit.
  4. Make your changes.
  5. When you're done, click Save Policy.

Similarly, you can delete a policy by clicking the kebab menu (vertical three dots) next to the policy you want to delete, and selecting Delete.

Last updated on