Sign in into the **Google Cloud Console**

Type "**IAM & Admin**" in the search bar and click on the **IAM & Admin** option

**What is IAM & Admin?**\
\
**IAM & Admin** in GCP is a service that manages access and permissions to cloud resources. It allows administrators to assign roles to users or service accounts, controlling what actions they can perform. IAM offers predefined or custom roles and policies to ensure secure access. The "Admin" tools help manage these policies, billing, and security settings, providing centralized control over resource management and user permissions.

**IAM & Admin** wizard will open, click on the **Organization Policies** option from the left bar

**What are Orgazination Policies?**\
\
**Organization Policies** in GCP are rules that help enforce governance and security across your entire cloud environment. These policies allow administrators to set restrictions and guidelines on resource usage, ensuring compliance with organizational standards. For example, you can control which regions resources can be deployed in, which services can be used, or enforce security practices like requiring encryption. Organization Policies apply across projects within the organization, providing centralized control to manage resources consistently and securely.

Scroll to the **Policies for project** section, here you can view all the policies for your project

Click on the **Allow extending lifetime of oAuth2.0 access tokens to up to 12 hours** link to view its details

**Note:** You can click on any policy name to view its details according to your requirements.

**What is the Allow extending lifetime of oAuth2.0 access tokens to up to 12 hours Policy?**\
\
The **"Allow extending lifetime of OAuth2.0 access tokens to up to 12 hours"** policy in GCP allows administrators to extend the default lifetime of OAuth 2.0 access tokens from the typical one hour to a maximum of 12 hours. This policy is used when certain applications or services require longer access durations without frequent re-authentication.

By enabling this policy, admins can grant tokens that last longer, improving usability for services that need extended, uninterrupted access. However, it should be used with caution, as longer token lifetimes can increase security risks if tokens are compromised.

Scroll to the **ID** section, here you can view its ID for each policy

Congratulations! on completing this lab and Understanding Organization Policy!

Google Cloud

This guide provides essential insights into understanding organization policies, ensuring you are well-informed about the rules and regulations that govern your workplace.