-
Notifications
You must be signed in to change notification settings - Fork 4
TF_GCP_15
Fredrik Grönqvist edited this page Apr 23, 2021
·
1 revision
google_organization_iam_member
Ensures that there are no IAM members on org level that points to a default service account. Generally one should avoid using default service accounts in favor of using specific service accounts for each service. Using a shared account can lead to unintended consequences, such as another service getting elevated permissions. All permissions on org level are inherited.