Get hands-on experience with 20+ free Google Cloud products and $300 in free credit for new customers.

Attribute based access control (ABAC) in GCP - Is there a managed service?

Is there a native GCP service that supports Attribute based access control (ABAC). I am aware of Cloud IAP but supports RBAC i guess.

0 2 91
2 REPLIES 2

Hi @dheerajpanyam

Welcome to Google Cloud Community

While Google Cloud Platform (GCP) doesn't offer a dedicated 'ABAC service,' it provides robust native support for Attribute-Based Access Control (ABAC). This is primarily achieved by strategically combining three key features:

  • IAM Conditions: provide the means to establish and apply access controls for Google Cloud resources based on attributes and conditions. 
  • Resource Tags: You can use tags and conditional enforcement of policies for fine-grained control across your resource hierarchy.
  • Access Context Manager: allows you to define fine-grained access control based on user identity and the context of the request (e.g. IP address, User Identity, Device Type and Operating System)

For additional reference for Attribute for IAM Conditions.

Was this helpful? If so, please accept this answer as “Solution”. If you need additional assistance, reply here within 2 business days and I’ll be happy to help.

Thanks @kensan . Sorry i was not clear, what i need is ABAC that is more application related perhaps needs to be handled by the app. This is not ABAC for GCP Infra access.