Understanding Organization Policy | Scribe

    Understanding Organization Policy

    • Hafeez Baig |
    • 6 steps |
    • 31 seconds
    1
    Sign in into the **Google Cloud Console**
    2
    Type "**IAM & Admin**" in the search bar and click on the **IAM & Admin** option
    information ordinal icon
    **What is IAM & Admin?**\ \ **IAM & Admin** in GCP is a service that manages access and permissions to cloud resources. It allows administrators to assign roles to users or service accounts, controlling what actions they can perform. IAM offers predefined or custom roles and policies to ensure secure access. The "Admin" tools help manage these policies, billing, and security settings, providing centralized control over resource management and user permissions.
    3
    **IAM & Admin** wizard will open, click on the **Organization Policies** option from the left bar
    information ordinal icon
    **What are Orgazination Policies?**\ \ **Organization Policies** in GCP are rules that help enforce governance and security across your entire cloud environment. These policies allow administrators to set restrictions and guidelines on resource usage, ensuring compliance with organizational standards. For example, you can control which regions resources can be deployed in, which services can be used, or enforce security practices like requiring encryption. Organization Policies apply across projects within the organization, providing centralized control to manage resources consistently and securely.
    4
    Scroll to the **Policies for project** section, here you can view all the policies for your project
    5
    Click on the **Allow extending lifetime of oAuth2.0 access tokens to up to 12 hours** link to view its details **Note:** You can click on any policy name to view its details according to your requirements.
    information ordinal icon
    **What is the Allow extending lifetime of oAuth2.0 access tokens to up to 12 hours Policy?**\ \ The **"Allow extending lifetime of OAuth2.0 access tokens to up to 12 hours"** policy in GCP allows administrators to extend the default lifetime of OAuth 2.0 access tokens from the typical one hour to a maximum of 12 hours. This policy is used when certain applications or services require longer access durations without frequent re-authentication. By enabling this policy, admins can grant tokens that last longer, improving usability for services that need extended, uninterrupted access. However, it should be used with caution, as longer token lifetimes can increase security risks if tokens are compromised.
    6
    Scroll to the **ID** section, here you can view its ID for each policy
    information ordinal icon
    Congratulations! on completing this lab and Understanding Organization Policy!