Create an access policy
To view the Access Policies section in the Cloud Console, you need at least the IAM Viewer role.- In the Cloud Console, navigate to the Access Policies page.
- Click the Create Policy button at the top right corner of the page.
- In the policy editor, enter a name for the policy.
- Enter a description for the policy.
- Add one or more rules to the policy. For each rule, enter a principal and a role to assign that role to the principal.
- When you’re done, click Save Policy.
Edit an access policy
- In the Cloud Console, navigate to the Access Policies page.
- Search for the policy you want to edit. To view policy details, expand the carat next to the policy name.
- Click the vertical dot menu (three dots) next to the policy you want to edit, and select Edit.
- You can update the policy name and description, and add, edit, or delete rules in the policy.
- To edit a rule, click the card for the rule you want to edit, adjust the principals and roles, and click outside the card to save your changes to the rule.
- To add a rule, click the Add Rule button at the bottom of the policy editor, and enter the principals and roles for the new rule.
- To delete a rule, click the card for the rule you want to delete, and click the Delete button at the bottom of the card.
- When you’re done, click Save Policy.