Reputation: 235
Rights (IAM) needed for GCP Cloud Datalab
I am trying to use Datalab in my customers GCP Account. What IAM Roles / Rights do I need to access it / create it / work with it?
Thanks
Upvotes: 1
Views: 958
Answers (2)
Reputation: 9810
According to the documentation here, there are two ways to create VM instances for team members:
- A project owner can create instances for himself or other team members
- A project editor can create instances for himself (with some limitation)
If you can't get one of those two roles, you'll need to ask a project owner to create a Datalab instance on your behalf. To do this, the project owner will use the datalab create command and pass in an additional --for-user flag specifying your email address.
In order to connect to your instance, you must have at least the following IAM roles:
roles/compute.instanceAdmin.v1roles/iam.serviceAccountActorfor the service account attached to your Cloud Datalab instance
Upvotes: 4
Reputation: 2982
The role of Editor for a project should have the sufficient rights and permissions to launch and work with a Cloud Datalab instance.
On the customers GCP Account, also be sure to enable:
- Google Compute Engine API, and
- Cloud Source Repositories API from the API and Services Library.
Then you can launch a Datalab Instance from the gcloud shell or from the command-line on the local terminal assuming the Google Cloud SDK is installed by running the command:
datalab create [instance-name]
Upvotes: 0
Related Questions
- What are my privileges in a given GCP project?
- IAM Permission Denied - Google Cloud Create metric
- GCP AI notebook instance permission
- Problems while creating a datalab in GCP
- Granting datalab access to another project
- GCP: Unable to connect to Datalab
- What are the credentials used by Datalab for accessing data?
- Google Cloud permissions
- DataLab Cloud Deployment 403 Error
- Giving Access to my Datalab instance to other users via service account