How to allow only selected machine types to a user in Compute Engine?

[marimuthu g]

Hi All,

We are working on a GCP training program where we create one project for each learner and grant access to a set of services. As these are students, we want to make sure they don't contribute too much to the billing. 

We have gone through the Organization policy constraints which only has 74 possible restrictions across GCP and does not include Compute Engine machine type restriction. We want to restrict several services in this way.

Can someone please help us with a solution where we can allow only say "n1-standard" for a user or a project/folder. Anything works out for us but at this time we are at a dead end.

Regards,

Marimuthu G

[Kumar Dhanagopal]

Hi Marimuthu, The project-level CPU quota feature might be useful to you. Per https://cloud.google.com/compute/quotas#cpu_quota, you could use the CPUS quota, which is a shared quota pool for the E2 and N1 machine types. Other machine types (like N2) have separate quota pools (e.g., N2_CPUS).