User emails ending in the provided identities are allowed to have IAM
permissions on a project or the organization. Otherwise a finding will
be created.
A valid identity can be:
a domain that starts with "@", e.g. "@yourdomain.com".
a fully specified email address that does not start with "@", e.g.
"abc@gmail.com"
Regular expressions are not supported.
Service accounts are not examined by the scanner and will be omitted if
added to the list.
If not specified, only Gmail accounts will be considered as non-approved.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Missing the information I need","missingTheInformationINeed","thumb-down"],["Too complicated / too many steps","tooComplicatedTooManySteps","thumb-down"],["Out of date","outOfDate","thumb-down"],["Samples / code issue","samplesCodeIssue","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-07 UTC."],[[["\u003cp\u003eThe latest version available for \u003ccode\u003eNonOrgIamMemberSettings\u003c/code\u003e is 2.0.0-beta04, with previous versions including 2.0.0-beta03 and 1.0.0-beta04.\u003c/p\u003e\n"],["\u003cp\u003e\u003ccode\u003eNonOrgIamMemberSettings\u003c/code\u003e is a class that configures settings for the "NON_ORG_IAM_MEMBER" scanner within Google Cloud Security Center.\u003c/p\u003e\n"],["\u003cp\u003eThis class inherits from \u003ccode\u003eObject\u003c/code\u003e and implements several interfaces including \u003ccode\u003eIMessage\u003c/code\u003e, \u003ccode\u003eIEquatable\u003c/code\u003e, \u003ccode\u003eIDeepCloneable\u003c/code\u003e, and \u003ccode\u003eIBufferMessage\u003c/code\u003e.\u003c/p\u003e\n"],["\u003cp\u003eIt includes a property \u003ccode\u003eApprovedIdentities\u003c/code\u003e, which is a list of approved email domains or addresses that are permitted to have IAM permissions.\u003c/p\u003e\n"],["\u003cp\u003eThe class has two constructors, one that is empty, and one that takes a \u003ccode\u003eSecurityHealthAnalyticsSettings.Types.NonOrgIamMemberSettings\u003c/code\u003e object as a parameter to initialize its settings.\u003c/p\u003e\n"]]],[],null,[]]
