IAP for agents overviewStay organized with collectionsSave and categorize content based on your preferences.
Agents require secure, governed access to a vast array of tools and services.
In Gemini Enterprise Agent Platform, security administrators can govern
inline, agent-to-anywhere access by usingAgent Gateway.
You can grant Identity and Access Management (IAM) privileges tosource agents, which
are agents that access Agent Gateway. You grant access by bindingIAM allow and deny policieson Agent Registry
service instances. Agent Gateway services include MCP servers,destination agents, and endpoints. When granting IAM roles to
agents, Agent Registry services are also known asresources.
Agent Gateway uses Identity-Aware Proxy (IAP) to
enforce IAM allow and deny policies.
To learn more about how IAP uses IAM for
policy enforcement in Gemini Enterprise Agent Platform, seePolicies overviewin the Agent Platform
documentation.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2026-04-21 UTC."],[],[]]
