This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Get hands-on experience with 20+ free Google Cloud products and $300 in free credit for new customers.
Log in to ask a question

Shared VPC subnet permission Query

Posted Monday
Xienan
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

I have created shared VPC in the host project and attach a service project with it. But even I only set up the individual subnet access when attaching the service project, I can still view all subnets in the service project and use any of them to create the vm. Is it that because my role is `editor` of the folder?

Solved Solved
0 1 34
Topic Labels
Jump to Solution
0 Likes
1 ACCEPTED SOLUTION

Posted on --/--/---- --:-- AM
guptasmile
New Member
Reply posted on --/--/---- --:-- AM

Hi @Xienan,

A user who has the compute.networkUser role in the host project can see all subnets within attached service projects. Check your resource hierarchy. 

You can restrict by giving this role at subnet level only. Please follow this.

View solution in original post

Jump to Solution
1 REPLY 1

Posted on --/--/---- --:-- AM
guptasmile
New Member
Reply posted on --/--/---- --:-- AM

Hi @Xienan,

A user who has the compute.networkUser role in the host project can see all subnets within attached service projects. Check your resource hierarchy. 

You can restrict by giving this role at subnet level only. Please follow this.

Jump to Solution
Top Labels in this Space