This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

sole admin has no permission to change org policies?

Posted 2 weeks ago
Hjt222
New Member
Reply posted on --/--/---- --:-- AM

I'm trying to edit my policy for service account key creation.

As the only admin, and as the person who paid to setup google cloud for my organization, apparently I dont have permissions to do that
I get the following:

You need permissions for this action.

Required permission(s):
orgpolicy.policies.create, orgpolicy.policies.delete, orgpolicy.policies.update, and orgpolicy.policy.get

2h wasted trying to figure out how this terrible ux works. Anyone help?

@cloudconsole @Firebase-Hasan 

2 2 67
Topic Labels
2 REPLIES 2

Posted on --/--/---- --:-- AM
LeAnt
Staff
Reply posted on --/--/---- --:-- AM

Hi @Hjt222 

Welcome to Google Cloud Community!

The error that you're getting indicates the missing permissions needed for the task that you want to perform. Make sure that you're using the principal account (in case there are multiple accounts) that has the admin role. You can also use the IAM Policy Troubleshooter to understand why you don't have the needed permissions.

And finally, with this kind of issues, it is best to file a case with our support team so that they can check your organization and your project, as well as your admin account and verify what is needed to resolve your issue.

I hope this information is helpful.

Posted on --/--/---- --:-- AM
noodles1
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

Hey @Hjt222 - I found the answer here.

The key was adding the "Organization Policy Administrator" role.