Some or all of the information on this page might not apply to Trusted Cloud by S3NS. See Differences from Google Cloud for more details.

Identity and Access Management (IAM) API

Manages identity and access control for Trusted Cloud Platform resources, including the creation of service accounts, which you can use to authenticate to Trusted Cloud and make API calls.

Service: iam.googleapis.com

The Service name iam.googleapis.com is needed to create RPC client stubs.

`google.iam.admin.v1.IAM`

Methods
`CreateRole`	Creates a new custom `Role`.
`CreateServiceAccount`	Creates a `ServiceAccount`.
`CreateServiceAccountKey`	Creates a `ServiceAccountKey`.
`DeleteRole`	Deletes a custom `Role`.
`DeleteServiceAccount`	Deletes a `ServiceAccount`.
`DeleteServiceAccountKey`	Deletes a `ServiceAccountKey`.
`DisableServiceAccount`	Disables a `ServiceAccount` immediately.
`DisableServiceAccountKey`	Disable a `ServiceAccountKey`.
`EnableServiceAccount`	Enables a `ServiceAccount` that was disabled by `DisableServiceAccount`.
`EnableServiceAccountKey`	Enable a `ServiceAccountKey`.
`GetIamPolicy`	Gets the IAM policy that is attached to a `ServiceAccount`.
`GetRole`	Gets the definition of a `Role`.
`GetServiceAccount`	Gets a `ServiceAccount`.
`GetServiceAccountKey`	Gets a `ServiceAccountKey`.
`LintPolicy`	Lints, or validates, an IAM policy.
`ListRoles`	Lists every predefined `Role` that IAM supports, or every custom role that is defined for an organization or project.
`ListServiceAccountKeys`	Lists every `ServiceAccountKey` for a service account.
`ListServiceAccounts`	Lists every `ServiceAccount` that belongs to a specific project.
`PatchServiceAccount`	Patches a `ServiceAccount`.
`QueryAuditableServices`	Returns a list of services that allow you to opt into audit logs that are not generated by default.
`QueryGrantableRoles`	Lists roles that can be granted on a Trusted Cloud resource.
`QueryTestablePermissions`	Lists every permission that you can test on a resource.
`SetIamPolicy`	Sets the IAM policy that is attached to a `ServiceAccount`.
`SignBlob (deprecated)`	Signs a blob using the system-managed private key for a `ServiceAccount`.
`SignJwt (deprecated)`	Signs a JSON Web Token (JWT) using the system-managed private key for a `ServiceAccount`.
`TestIamPermissions`	Tests whether the caller has the specified permissions on a `ServiceAccount`.
`UndeleteRole`	Undeletes a custom `Role`.
`UndeleteServiceAccount`	Restores a deleted `ServiceAccount`.
`UpdateRole`	Updates the definition of a custom `Role`.
`UpdateServiceAccount`	Note: We are in the process of deprecating this method.
`UploadServiceAccountKey`	Uploads the public key portion of a key pair that you manage, and associates the public key with a `ServiceAccount`.

`google.iam.admin.v1.OauthClients`

Methods
`CreateOauthClient`	The method `google.iam.admin.v1.OauthClients.CreateOauthClient` is not available in Trusted Cloud by S3NS.
`CreateOauthClientCredential`	The method `google.iam.admin.v1.OauthClients.CreateOauthClientCredential` is not available in Trusted Cloud by S3NS.
`DeleteOauthClient`	The method `google.iam.admin.v1.OauthClients.DeleteOauthClient` is not available in Trusted Cloud by S3NS.
`DeleteOauthClientCredential`	The method `google.iam.admin.v1.OauthClients.DeleteOauthClientCredential` is not available in Trusted Cloud by S3NS.
`GetOauthClient`	The method `google.iam.admin.v1.OauthClients.GetOauthClient` is not available in Trusted Cloud by S3NS.
`GetOauthClientCredential`	The method `google.iam.admin.v1.OauthClients.GetOauthClientCredential` is not available in Trusted Cloud by S3NS.
`ListOauthClientCredentials`	The method `google.iam.admin.v1.OauthClients.ListOauthClientCredentials` is not available in Trusted Cloud by S3NS.
`ListOauthClients`	The method `google.iam.admin.v1.OauthClients.ListOauthClients` is not available in Trusted Cloud by S3NS.
`UndeleteOauthClient`	The method `google.iam.admin.v1.OauthClients.UndeleteOauthClient` is not available in Trusted Cloud by S3NS.
`UpdateOauthClient`	The method `google.iam.admin.v1.OauthClients.UpdateOauthClient` is not available in Trusted Cloud by S3NS.
`UpdateOauthClientCredential`	The method `google.iam.admin.v1.OauthClients.UpdateOauthClientCredential` is not available in Trusted Cloud by S3NS.

`google.iam.admin.v1.WorkforcePools`

Methods
`CreateWorkforcePool`	The method `google.iam.admin.v1.WorkforcePools.CreateWorkforcePool` is not available in Trusted Cloud by S3NS.
`CreateWorkforcePoolProvider`	The method `google.iam.admin.v1.WorkforcePools.CreateWorkforcePoolProvider` is not available in Trusted Cloud by S3NS.
`CreateWorkforcePoolProviderKey`	The method `google.iam.admin.v1.WorkforcePools.CreateWorkforcePoolProviderKey` is not available in Trusted Cloud by S3NS.
`CreateWorkforcePoolProviderScimTenant`	The method `google.iam.admin.v1.WorkforcePools.CreateWorkforcePoolProviderScimTenant` is not available in Trusted Cloud by S3NS.
`CreateWorkforcePoolProviderScimToken`	The method `google.iam.admin.v1.WorkforcePools.CreateWorkforcePoolProviderScimToken` is not available in Trusted Cloud by S3NS.
`DeleteWorkforcePool`	The method `google.iam.admin.v1.WorkforcePools.DeleteWorkforcePool` is not available in Trusted Cloud by S3NS.
`DeleteWorkforcePoolProvider`	The method `google.iam.admin.v1.WorkforcePools.DeleteWorkforcePoolProvider` is not available in Trusted Cloud by S3NS.
`DeleteWorkforcePoolProviderKey`	The method `google.iam.admin.v1.WorkforcePools.DeleteWorkforcePoolProviderKey` is not available in Trusted Cloud by S3NS.
`DeleteWorkforcePoolProviderScimTenant`	The method `google.iam.admin.v1.WorkforcePools.DeleteWorkforcePoolProviderScimTenant` is not available in Trusted Cloud by S3NS.
`DeleteWorkforcePoolProviderScimToken`	The method `google.iam.admin.v1.WorkforcePools.DeleteWorkforcePoolProviderScimToken` is not available in Trusted Cloud by S3NS.
`DeleteWorkforcePoolSubject`	The method `google.iam.admin.v1.WorkforcePools.DeleteWorkforcePoolSubject` is not available in Trusted Cloud by S3NS.
`GetIamPolicy`	The method `google.iam.admin.v1.WorkforcePools.GetIamPolicy` is not available in Trusted Cloud by S3NS.
`GetWorkforcePool`	The method `google.iam.admin.v1.WorkforcePools.GetWorkforcePool` is not available in Trusted Cloud by S3NS.
`GetWorkforcePoolProvider`	The method `google.iam.admin.v1.WorkforcePools.GetWorkforcePoolProvider` is not available in Trusted Cloud by S3NS.
`GetWorkforcePoolProviderKey`	The method `google.iam.admin.v1.WorkforcePools.GetWorkforcePoolProviderKey` is not available in Trusted Cloud by S3NS.
`GetWorkforcePoolProviderScimTenant`	The method `google.iam.admin.v1.WorkforcePools.GetWorkforcePoolProviderScimTenant` is not available in Trusted Cloud by S3NS.
`GetWorkforcePoolProviderScimToken`	The method `google.iam.admin.v1.WorkforcePools.GetWorkforcePoolProviderScimToken` is not available in Trusted Cloud by S3NS.
`ListWorkforcePoolProviderKeys`	The method `google.iam.admin.v1.WorkforcePools.ListWorkforcePoolProviderKeys` is not available in Trusted Cloud by S3NS.
`ListWorkforcePoolProviderScimTenants`	The method `google.iam.admin.v1.WorkforcePools.ListWorkforcePoolProviderScimTenants` is not available in Trusted Cloud by S3NS.
`ListWorkforcePoolProviderScimTokens`	The method `google.iam.admin.v1.WorkforcePools.ListWorkforcePoolProviderScimTokens` is not available in Trusted Cloud by S3NS.
`ListWorkforcePoolProviders`	The method `google.iam.admin.v1.WorkforcePools.ListWorkforcePoolProviders` is not available in Trusted Cloud by S3NS.
`ListWorkforcePools`	The method `google.iam.admin.v1.WorkforcePools.ListWorkforcePools` is not available in Trusted Cloud by S3NS.
`SetIamPolicy`	The method `google.iam.admin.v1.WorkforcePools.SetIamPolicy` is not available in Trusted Cloud by S3NS.
`TestIamPermissions`	The method `google.iam.admin.v1.WorkforcePools.TestIamPermissions` is not available in Trusted Cloud by S3NS.
`UndeleteWorkforcePool`	The method `google.iam.admin.v1.WorkforcePools.UndeleteWorkforcePool` is not available in Trusted Cloud by S3NS.
`UndeleteWorkforcePoolProvider`	The method `google.iam.admin.v1.WorkforcePools.UndeleteWorkforcePoolProvider` is not available in Trusted Cloud by S3NS.
`UndeleteWorkforcePoolProviderKey`	The method `google.iam.admin.v1.WorkforcePools.UndeleteWorkforcePoolProviderKey` is not available in Trusted Cloud by S3NS.
`UndeleteWorkforcePoolProviderScimTenant`	The method `google.iam.admin.v1.WorkforcePools.UndeleteWorkforcePoolProviderScimTenant` is not available in Trusted Cloud by S3NS.
`UndeleteWorkforcePoolProviderScimToken`	The method `google.iam.admin.v1.WorkforcePools.UndeleteWorkforcePoolProviderScimToken` is not available in Trusted Cloud by S3NS.
`UndeleteWorkforcePoolSubject`	The method `google.iam.admin.v1.WorkforcePools.UndeleteWorkforcePoolSubject` is not available in Trusted Cloud by S3NS.
`UpdateWorkforcePool`	The method `google.iam.admin.v1.WorkforcePools.UpdateWorkforcePool` is not available in Trusted Cloud by S3NS.
`UpdateWorkforcePoolProvider`	The method `google.iam.admin.v1.WorkforcePools.UpdateWorkforcePoolProvider` is not available in Trusted Cloud by S3NS.
`UpdateWorkforcePoolProviderScimTenant`	The method `google.iam.admin.v1.WorkforcePools.UpdateWorkforcePoolProviderScimTenant` is not available in Trusted Cloud by S3NS.
`UpdateWorkforcePoolProviderScimToken`	The method `google.iam.admin.v1.WorkforcePools.UpdateWorkforcePoolProviderScimToken` is not available in Trusted Cloud by S3NS.

`google.iam.v1.WorkloadIdentityPools`

Methods
`AddAttestationRule`	The method `google.iam.v1.WorkloadIdentityPools.AddAttestationRule` is not available in Trusted Cloud by S3NS.
`CreateWorkloadIdentityPool`	The method `google.iam.v1.WorkloadIdentityPools.CreateWorkloadIdentityPool` is not available in Trusted Cloud by S3NS.
`CreateWorkloadIdentityPoolManagedIdentity`	The method `google.iam.v1.WorkloadIdentityPools.CreateWorkloadIdentityPoolManagedIdentity` is not available in Trusted Cloud by S3NS.
`CreateWorkloadIdentityPoolNamespace`	The method `google.iam.v1.WorkloadIdentityPools.CreateWorkloadIdentityPoolNamespace` is not available in Trusted Cloud by S3NS.
`CreateWorkloadIdentityPoolProvider`	The method `google.iam.v1.WorkloadIdentityPools.CreateWorkloadIdentityPoolProvider` is not available in Trusted Cloud by S3NS.
`CreateWorkloadIdentityPoolProviderKey`	The method `google.iam.v1.WorkloadIdentityPools.CreateWorkloadIdentityPoolProviderKey` is not available in Trusted Cloud by S3NS.
`DeleteWorkloadIdentityPool`	The method `google.iam.v1.WorkloadIdentityPools.DeleteWorkloadIdentityPool` is not available in Trusted Cloud by S3NS.
`DeleteWorkloadIdentityPoolManagedIdentity`	The method `google.iam.v1.WorkloadIdentityPools.DeleteWorkloadIdentityPoolManagedIdentity` is not available in Trusted Cloud by S3NS.
`DeleteWorkloadIdentityPoolNamespace`	The method `google.iam.v1.WorkloadIdentityPools.DeleteWorkloadIdentityPoolNamespace` is not available in Trusted Cloud by S3NS.
`DeleteWorkloadIdentityPoolProvider`	The method `google.iam.v1.WorkloadIdentityPools.DeleteWorkloadIdentityPoolProvider` is not available in Trusted Cloud by S3NS.
`DeleteWorkloadIdentityPoolProviderKey`	The method `google.iam.v1.WorkloadIdentityPools.DeleteWorkloadIdentityPoolProviderKey` is not available in Trusted Cloud by S3NS.
`GetIamPolicy`	The method `google.iam.v1.WorkloadIdentityPools.GetIamPolicy` is not available in Trusted Cloud by S3NS.
`GetWorkloadIdentityPool`	The method `google.iam.v1.WorkloadIdentityPools.GetWorkloadIdentityPool` is not available in Trusted Cloud by S3NS.
`GetWorkloadIdentityPoolManagedIdentity`	The method `google.iam.v1.WorkloadIdentityPools.GetWorkloadIdentityPoolManagedIdentity` is not available in Trusted Cloud by S3NS.
`GetWorkloadIdentityPoolNamespace`	The method `google.iam.v1.WorkloadIdentityPools.GetWorkloadIdentityPoolNamespace` is not available in Trusted Cloud by S3NS.
`GetWorkloadIdentityPoolProvider`	The method `google.iam.v1.WorkloadIdentityPools.GetWorkloadIdentityPoolProvider` is not available in Trusted Cloud by S3NS.
`GetWorkloadIdentityPoolProviderKey`	The method `google.iam.v1.WorkloadIdentityPools.GetWorkloadIdentityPoolProviderKey` is not available in Trusted Cloud by S3NS.
`ListAttestationRules`	The method `google.iam.v1.WorkloadIdentityPools.ListAttestationRules` is not available in Trusted Cloud by S3NS.
`ListWorkloadIdentityPoolManagedIdentities`	The method `google.iam.v1.WorkloadIdentityPools.ListWorkloadIdentityPoolManagedIdentities` is not available in Trusted Cloud by S3NS.
`ListWorkloadIdentityPoolNamespaces`	The method `google.iam.v1.WorkloadIdentityPools.ListWorkloadIdentityPoolNamespaces` is not available in Trusted Cloud by S3NS.
`ListWorkloadIdentityPoolProviderKeys`	The method `google.iam.v1.WorkloadIdentityPools.ListWorkloadIdentityPoolProviderKeys` is not available in Trusted Cloud by S3NS.
`ListWorkloadIdentityPoolProviders`	The method `google.iam.v1.WorkloadIdentityPools.ListWorkloadIdentityPoolProviders` is not available in Trusted Cloud by S3NS.
`ListWorkloadIdentityPools`	The method `google.iam.v1.WorkloadIdentityPools.ListWorkloadIdentityPools` is not available in Trusted Cloud by S3NS.
`RemoveAttestationRule`	The method `google.iam.v1.WorkloadIdentityPools.RemoveAttestationRule` is not available in Trusted Cloud by S3NS.
`SetAttestationRules`	The method `google.iam.v1.WorkloadIdentityPools.SetAttestationRules` is not available in Trusted Cloud by S3NS.
`SetIamPolicy`	The method `google.iam.v1.WorkloadIdentityPools.SetIamPolicy` is not available in Trusted Cloud by S3NS.
`TestIamPermissions`	The method `google.iam.v1.WorkloadIdentityPools.TestIamPermissions` is not available in Trusted Cloud by S3NS.
`UndeleteWorkloadIdentityPool`	The method `google.iam.v1.WorkloadIdentityPools.UndeleteWorkloadIdentityPool` is not available in Trusted Cloud by S3NS.
`UndeleteWorkloadIdentityPoolManagedIdentity`	The method `google.iam.v1.WorkloadIdentityPools.UndeleteWorkloadIdentityPoolManagedIdentity` is not available in Trusted Cloud by S3NS.
`UndeleteWorkloadIdentityPoolNamespace`	The method `google.iam.v1.WorkloadIdentityPools.UndeleteWorkloadIdentityPoolNamespace` is not available in Trusted Cloud by S3NS.
`UndeleteWorkloadIdentityPoolProvider`	The method `google.iam.v1.WorkloadIdentityPools.UndeleteWorkloadIdentityPoolProvider` is not available in Trusted Cloud by S3NS.
`UndeleteWorkloadIdentityPoolProviderKey`	The method `google.iam.v1.WorkloadIdentityPools.UndeleteWorkloadIdentityPoolProviderKey` is not available in Trusted Cloud by S3NS.
`UpdateWorkloadIdentityPool`	The method `google.iam.v1.WorkloadIdentityPools.UpdateWorkloadIdentityPool` is not available in Trusted Cloud by S3NS.
`UpdateWorkloadIdentityPoolManagedIdentity`	The method `google.iam.v1.WorkloadIdentityPools.UpdateWorkloadIdentityPoolManagedIdentity` is not available in Trusted Cloud by S3NS.
`UpdateWorkloadIdentityPoolNamespace`	The method `google.iam.v1.WorkloadIdentityPools.UpdateWorkloadIdentityPoolNamespace` is not available in Trusted Cloud by S3NS.
`UpdateWorkloadIdentityPoolProvider`	The method `google.iam.v1.WorkloadIdentityPools.UpdateWorkloadIdentityPoolProvider` is not available in Trusted Cloud by S3NS.

`google.iam.v1beta.WorkloadIdentityPools`

Methods
`CreateWorkloadIdentityPool`	The method `google.iam.v1beta.WorkloadIdentityPools.CreateWorkloadIdentityPool` is not available in Trusted Cloud by S3NS.
`CreateWorkloadIdentityPoolProvider`	The method `google.iam.v1beta.WorkloadIdentityPools.CreateWorkloadIdentityPoolProvider` is not available in Trusted Cloud by S3NS.
`DeleteWorkloadIdentityPool`	The method `google.iam.v1beta.WorkloadIdentityPools.DeleteWorkloadIdentityPool` is not available in Trusted Cloud by S3NS.
`DeleteWorkloadIdentityPoolProvider`	The method `google.iam.v1beta.WorkloadIdentityPools.DeleteWorkloadIdentityPoolProvider` is not available in Trusted Cloud by S3NS.
`GetWorkloadIdentityPool`	The method `google.iam.v1beta.WorkloadIdentityPools.GetWorkloadIdentityPool` is not available in Trusted Cloud by S3NS.
`GetWorkloadIdentityPoolProvider`	The method `google.iam.v1beta.WorkloadIdentityPools.GetWorkloadIdentityPoolProvider` is not available in Trusted Cloud by S3NS.
`ListWorkloadIdentityPoolProviders`	The method `google.iam.v1beta.WorkloadIdentityPools.ListWorkloadIdentityPoolProviders` is not available in Trusted Cloud by S3NS.
`ListWorkloadIdentityPools`	The method `google.iam.v1beta.WorkloadIdentityPools.ListWorkloadIdentityPools` is not available in Trusted Cloud by S3NS.
`UndeleteWorkloadIdentityPool`	The method `google.iam.v1beta.WorkloadIdentityPools.UndeleteWorkloadIdentityPool` is not available in Trusted Cloud by S3NS.
`UndeleteWorkloadIdentityPoolProvider`	The method `google.iam.v1beta.WorkloadIdentityPools.UndeleteWorkloadIdentityPoolProvider` is not available in Trusted Cloud by S3NS.
`UpdateWorkloadIdentityPool`	The method `google.iam.v1beta.WorkloadIdentityPools.UpdateWorkloadIdentityPool` is not available in Trusted Cloud by S3NS.
`UpdateWorkloadIdentityPoolProvider`	The method `google.iam.v1beta.WorkloadIdentityPools.UpdateWorkloadIdentityPoolProvider` is not available in Trusted Cloud by S3NS.

`google.iam.v2.Policies`

Methods
`CreatePolicy`	Creates a policy.
`DeletePolicy`	Deletes a policy.
`GetPolicy`	Gets a policy.
`ListPolicies`	Retrieves the policies of the specified kind that are attached to a resource.
`UpdatePolicy`	Updates the specified policy.

`google.iam.v2beta.Policies`

Methods
`CreatePolicy`	Creates a policy.
`DeletePolicy`	Deletes a policy.
`GetPolicy`	Gets a policy.
`ListPolicies`	Retrieves the policies of the specified kind that are attached to a resource.
`UpdatePolicy`	Updates the specified policy.

`google.iam.v3.AccessPolicies`

Methods

`google.iam.v3.PolicyBindings`

Methods

`google.iam.v3.PrincipalAccessBoundaryPolicies`

Methods

`google.iam.v3beta.AccessPolicies`

Methods

`google.iam.v3beta.PolicyBindings`

Methods

`google.iam.v3beta.PrincipalAccessBoundaryPolicies`

Methods

`google.longrunning.Operations`

Methods
`GetOperation`	The method `google.longrunning.Operations.GetOperation` is not available in Trusted Cloud by S3NS.