Policy: GCP > Project > Organization Policy > Define allowed root certificate authority [Deprecated]
Manage the GCP Organization Policy "Define allowed root certificate authority" for the project. BETA: This list constraint defines the set of trusted root certificate authorities from which the issued public certificates can be added to Cloud IAM Service Accounts. By default, all public certificates are allowed to be uploaded to Cloud IAM Service Accounts. If this constraint is active, only public certificates issued by the root certificate authorities in the allowed list will be eligible to be added to Cloud IAM service accounts. Note: This policy has been deprecated in v5.1.0 and will be removed in the next major version.
Resource Types
This policy targets the following resource types:
Primary Policy
This policy is used with the following primary policy:
Related Policies
Controls
- GCP > Project > Organization Policy > Define allowed root certificate authority [Deprecated]
- GCP > Project > Organization Policy
Policy Specification
Schema Type | |
|---|---|
Default | |
Valid Values [YAML] |
|
Examples [YAML] |
|
Category
In Your Workspace
Developers
- tmod:@turbot/turbot#/control/categories/policy
- tmod:@turbot/gcp-orgpolicy#/policy/types/iamAllowedPublicCertificateTrustedRootCa
- turbot graphql policy-type --id "tmod:@turbot/gcp-orgpolicy#/policy/types/iamAllowedPublicCertificateTrustedRootCa"
- turbot graphql policy-settings --filter "policyTypeId:tmod:@turbot/gcp-orgpolicy#/policy/types/iamAllowedPublicCertificateTrustedRootCa"
Get Policy TypeGet Policy Settings
Category URI
Policy Type URI
GraphQL
CLI