Your organization has multiple Google Cloud projects managed under personal Gmail accounts. Leadership wants centralized administration that lets IT create and suspend corporate accounts, define groups for IAM policies, and integrate later with on-premises Active Directory. They have no need for Gmail or Google Workspace licences and would like to avoid additional cost. Which Google-provided service best meets these requirements?
Set up a Cloud Identity Free edition tenant and manage users and groups there until integration with Active Directory is configured.
Use Cloud IAM to create user principals in each project and add them to custom IAM roles; Cloud IAM is the directory for Google Cloud.
Deploy Cloud Identity-Aware Proxy and configure it to generate Google accounts for employees; IAP provides identity services at no charge.
Create an Organization node in Resource Manager and add users directly to it because the Organization node stores user identities.
Cloud Identity can be deployed as a standalone directory service, providing lifecycle management for users and groups without requiring paid Google Workspace licenses. A Cloud Identity Free tenant lets administrators create, suspend, or delete user accounts, organize them into groups that can be referenced in IAM bindings, and later synchronize identities from on-premises directories such as Active Directory.
The Organization node is part of the resource hierarchy but is not itself a directory service. Cloud IAM does not host identities-it only authorizes principals that already exist. Cloud Identity-Aware Proxy offers access controls for applications but does not create or manage user accounts.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is Cloud Identity Free Edition and what are its primary features?
Open an interactive chat with Bash
How does Cloud Identity Free Edition integrate with Active Directory?
Open an interactive chat with Bash
Why can’t the Organization node or Cloud IAM be used for identity management in this scenario?
Open an interactive chat with Bash
What is Cloud Identity Free edition and how does it work?
Open an interactive chat with Bash
What is the difference between Cloud Identity and Google Workspace?
Open an interactive chat with Bash
How do IAM bindings use user groups in Cloud Identity?
Open an interactive chat with Bash
GCP Associate Cloud Engineer
Setting up a cloud solution environment
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99 $11.99
$11.99/mo
Billed monthly, Cancel any time.
$19.99 after promotion ends
3 Month Pass
$44.99 $26.99
$8.99/mo
One time purchase of $26.99, Does not auto-renew.
$44.99 after promotion ends
Save $18!
MOST POPULAR
Annual Pass
$119.99 $71.99
$5.99/mo
One time purchase of $71.99, Does not auto-renew.
$119.99 after promotion ends
Save $48!
BEST DEAL
Lifetime Pass
$189.99 $113.99
One time purchase, Good for life.
Save $76!
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .