User with Shared VPC Admin, Owner privileges cannot manage Shared VPC

[Roman Hargrave]

When attempting to configure shared VPC, I am greeted by "You don't have permissions to perform the action on the selected resource."

This makes no sense, as I have Shared VPC Admin, Owner, Service Account Administrator, and Organization Administrator roles, among others.

Not only do I not doubt that that list includes overlapping permissions, but I went ahead and threw a few more on the heap. I certainly have the permission nodes documented at https://cloud.google.com/vpc/docs/shared-vpc.

Any idea what I need to do?

PRIVACY/CONFIDENTIALITY NOTICE: This e-mail communication may contain private, confidential, or legally privileged information intended for the sole use of the designated and/or duly authorized recipient(s). If you are not the intended recipient or have received this communication in error, please notify the sender immediately by email, and delete all copies of this e-mail, including all attachments, without reading them or saving them to your computer or any attached storage device. If you are the intended recipient, you will need to secure the contents conforming to all applicable state and/or federal requirements related to the privacy and confidentiality of such information, including the HIPAA Privacy guidelines.

[Md (Google Cloud Support)]

Configuring shared VPC host projects, and using Shared VPC networks involves a minimum of three different administrative IAM roles as mentioned in this help center article. Make sure you are ( i.e ID: email address) an IAM member and have the ‘owner’ role in this project having ‘Shared VPC Admin’ role. To have permission for provisioning a Shared VPC, it is required that an Organization Admin will nominate members ‘Shared VPC Admin’ role for the organization. It's worth mentioning that this role is assigned in the organization level, not in project level like ‘owner’ role. From the error message, I am suspecting that this role is assigned in the organization level, not in project level like ‘owner’ role.

 

It is important to mention that Google Groups are discussion forums, not a site to troubleshoot customer issues. so if you are still experiencing issues, you should be posting his question on Stack or Serverfault where the community can help you to troubleshoot his issue.

[Roman Hargrave]

It would appear that this was some kind of issue with the web console. I was able to do what I needed from the commandline with gcloud, after which interacting from the web console worked properly.

--
You received this message because you are subscribed to a topic in the Google Groups "Google Cloud Developers" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/google-cloud-dev/RE87D-NyG4c/unsubscribe.
To unsubscribe from this group and all its topics, send an email to google-cloud-d...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-cloud-dev/b6acccc7-591a-4dee-bdd5-877c6a9598b5%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

--

Roman Hargrave

TaxSaver Plan - Your Satisfaction Is Our Success

rhar...@taxsaverplan.com

+1 (214) 224-9416

4131 N. Central Expressway #250

Dallas, TX 75204