Cloud IAM
E184219
Cloud IAM is Google Cloud’s identity and access management service that lets administrators define and enforce who can access specific cloud resources and what actions they can perform.
All labels observed (6)
| Label | Occurrences |
|---|---|
| Cloud IAM canonical | 5 |
| Cloud IAM audit logs | 1 |
| Cloud Identity domains | 1 |
| Google Cloud IAM | 1 |
| Google Identity and Access Management | 1 |
| Workload Identity Federation | 1 |
How this entity was disambiguated
This entity first appeared as the object of triple T1634162 — resolving that mention is where its identity was fixed. The disambiguator weighed these candidate entities and picked the highlighted one (or “None”, minting a new entity). This is how homonymy is resolved: the same surface form can point to different entities.
Target entity: Cloud IAM Context triple: [Google Cloud, hasComponent, Cloud IAM]
-
A.
Google Cloud
Google Cloud is Alphabet Inc.'s cloud computing platform offering infrastructure, platform, and software services for building, deploying, and scaling applications and data solutions.
-
B.
Azure Security Center
Azure Security Center is a cloud security management and threat protection service that helps monitor, harden, and defend workloads running in Microsoft Azure and hybrid environments.
-
C.
Google Admin console
Google Admin console is a web-based management interface that lets administrators configure, secure, and monitor Google Workspace services and user accounts across an organization.
-
D.
Azure
Azure is Microsoft's cloud computing platform offering a wide range of services for building, deploying, and managing applications and infrastructure through Microsoft-managed data centers.
-
E.
CLOUD
CLOUD is a CERN experiment that studies how cosmic rays and atmospheric aerosols influence cloud formation and, consequently, Earth's climate.
- F. None of above. chosen
- G. Unsure - the case is ambiguous/there is not enough information to decide.
Target entity: Cloud IAM Target entity description: Cloud IAM is Google Cloud’s identity and access management service that lets administrators define and enforce who can access specific cloud resources and what actions they can perform.
-
A.
Google Cloud
Google Cloud is Alphabet Inc.'s cloud computing platform offering infrastructure, platform, and software services for building, deploying, and scaling applications and data solutions.
-
B.
Azure Security Center
Azure Security Center is a cloud security management and threat protection service that helps monitor, harden, and defend workloads running in Microsoft Azure and hybrid environments.
-
C.
Google Admin console
Google Admin console is a web-based management interface that lets administrators configure, secure, and monitor Google Workspace services and user accounts across an organization.
-
D.
Azure
Azure is Microsoft's cloud computing platform offering a wide range of services for building, deploying, and managing applications and infrastructure through Microsoft-managed data centers.
-
E.
CLOUD
CLOUD is a CERN experiment that studies how cosmic rays and atmospheric aerosols influence cloud formation and, consequently, Earth's climate.
- F. None of above. chosen
Statements (54)
| Predicate | Object |
|---|---|
| instanceOf |
Google Cloud service
ⓘ
access control system ⓘ identity and access management service ⓘ |
| alsoKnownAs |
Cloud IAM
ⓘ
surface form:
Google Cloud IAM
|
| basicRolesInclude |
roles/editor
ⓘ
roles/owner ⓘ roles/viewer ⓘ |
| controlsAccessTo |
Google Cloud
ⓘ
surface form:
Google Cloud resources
folders ⓘ organizations ⓘ projects ⓘ service-specific resources ⓘ |
| enforcementModel | resource hierarchy inheritance ⓘ |
| integratesWith |
Cloud Logging
ⓘ
surface form:
Cloud Audit Logs
Cloud Identity ⓘ Google Cloud Console ⓘ Google Workspace ⓘ REST API ⓘ
surface form:
REST APIs
gcloud CLI ⓘ |
| manages |
identities
ⓘ
permissions ⓘ roles ⓘ |
| memberTypesInclude |
Cloud IAM
self-linksurface differs
ⓘ
surface form:
Cloud Identity domains
G Suite domains ⓘ Google Account ⓘ
surface form:
Google accounts
Google groups ⓘ service accounts ⓘ |
| policyAttachmentLevel |
folder
ⓘ
organization ⓘ project ⓘ resource ⓘ |
| policyStructure | set of bindings between members and roles ⓘ |
| providedBy | Google Cloud ⓘ |
| purpose |
define who can do what on which resources
ⓘ
manage identities and access to Google Cloud resources ⓘ |
| roleTypesInclude |
basic roles
ⓘ
custom roles ⓘ predefined roles ⓘ |
| scopeOfControl |
what actions principals can perform on resources
ⓘ
who can access specific cloud resources ⓘ |
| supportsConcept |
policy-based access control
ⓘ
principle of least privilege ⓘ role-based access control ⓘ |
| supportsFeature |
IAM Conditions
ⓘ
audit logging integration ⓘ conditional role bindings ⓘ custom roles ⓘ organization policies integration ⓘ service account impersonation ⓘ |
| usesConcept |
bindings
ⓘ
members ⓘ policies ⓘ principals ⓘ roles ⓘ |
How these facts were elicited
The pipeline generated the facts above by prompting gpt-5.1 with this entity's name + description and the instruction below.
You are a knowledge base construction expert. Given a subject entity and a description of it, return factual statements that you know for the subject as a JSON list of dictionaries(triples), where keys must be "subject", "predicate" and "object". The number of facts may be very high, between 25 to 50 or more, for very popular subjects. For less popular subjects, the number of facts can be very low, like 5 or 10. # Requirements - If you don't know the subject at all, return an empty list. - If the subject is not a named entity, return an empty list. - Include at least one triple where predicate is "instanceOf". - Do not get too wordy. - Separate several objects into multiple triples with one object.
Subject: Cloud IAM Description of subject: Cloud IAM is Google Cloud’s identity and access management service that lets administrators define and enforce who can access specific cloud resources and what actions they can perform.
Referenced by (10)
Full triples — surface form annotated when it differs from this entity's canonical label.