The principal in the request matches the principal in the policy. The
principal can be included directly or indirectly:
A principal is included directly if that principal is listed in the
role binding.
A principal is included indirectly if that principal is in a Google
group, Google Workspace account, or Cloud Identity domain that is listed
in the policy.
MembershipNotMatched
The principal in the request doesn't match the principal in the policy.
MembershipUnknownInfo
The principal in the policy is a group or domain, and the sender of the
request doesn't have permission to view whether the principal in the
request is a member of the group or domain.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Missing the information I need","missingTheInformationINeed","thumb-down"],["Too complicated / too many steps","tooComplicatedTooManySteps","thumb-down"],["Out of date","outOfDate","thumb-down"],["Samples / code issue","samplesCodeIssue","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-07 UTC."],[[["\u003cp\u003eThis documentation covers the \u003ccode\u003eMembershipMatchingState\u003c/code\u003e enum within the Policy Troubleshooter v3 API, providing reference for its different states.\u003c/p\u003e\n"],["\u003cp\u003eThe \u003ccode\u003eMembershipMatchingState\u003c/code\u003e enum indicates whether a principal in a request matches a principal in a policy, either directly or indirectly through group or domain membership.\u003c/p\u003e\n"],["\u003cp\u003eThe enum includes fields like \u003ccode\u003eMembershipMatched\u003c/code\u003e, \u003ccode\u003eMembershipNotMatched\u003c/code\u003e, \u003ccode\u003eMembershipUnknownInfo\u003c/code\u003e, \u003ccode\u003eMembershipUnknownUnsupported\u003c/code\u003e, and \u003ccode\u003eUnspecified\u003c/code\u003e, each representing a distinct state of principal matching.\u003c/p\u003e\n"],["\u003cp\u003eThe \u003ccode\u003eGoogle.Cloud.PolicyTroubleshooter.Iam.V3\u003c/code\u003e namespace contains this enum, and it is found within the \u003ccode\u003eGoogle.Cloud.PolicyTroubleshooter.Iam.V3.dll\u003c/code\u003e assembly.\u003c/p\u003e\n"]]],[],null,[]]
