- NAME
-
- gcloud access-context-manager authorized-orgs create - create a new authorized organizations description
- SYNOPSIS
-
-
gcloud access-context-manager authorized-orgs create(AUTHORIZED_ORGS_DESC:--policy=POLICY)--asset_type=ASSET_TYPE--authorization_direction=AUTHORIZATION_DIRECTION--authorization_type=AUTHORIZATION_TYPE[--async] [--orgs=[ORGS, …]] [GCLOUD_WIDE_FLAG …]
-
- DESCRIPTION
- Create a new authorized organizations description in a given access policy.
- EXAMPLES
- To create a new authorized organizations description:
gcloud access-context-manager authorized-orgs create --orgs = organizations/12345 --policy = 9876543 - POSITIONAL ARGUMENTS
-
- Authorized orgs desc resource - The authorized organizations description to
create. The arguments in this group can be used to specify the attributes of
this resource.
This must be specified.
-
AUTHORIZED_ORGS_DESC - ID of the authorized-orgs-desc or fully qualified identifier for the
authorized-orgs-desc.
To set the
authorized_orgs_descattribute:- provide the argument
authorized_orgs_descon the command line.
This positional argument must be specified if any of the other arguments in this group are specified.
- provide the argument
-
--policy=POLICY - The ID of the access policy.
To set the
policyattribute:- provide the argument
authorized_orgs_descon the command line with a fully specified name; - provide the argument
--policyon the command line; - set the property
access_context_manager/policy; - automatically, if the current account belongs to an organization with exactly one access policy..
- provide the argument
-
- Authorized orgs desc resource - The authorized organizations description to
create. The arguments in this group can be used to specify the attributes of
this resource.
- REQUIRED FLAGS
-
-
--asset_type=ASSET_TYPE - The asset type of this authorized organizations description. For example,
device, or credential strength.
ASSET_TYPEmust be one of:asset-type-credential-strength,asset-type-device,asset-type-unspecified. - Authorization direction of this authorization relationship. Specifies whether to
allow specified organizations to evaluate this organization's traffic, or allow
specified organizations traffic to be evaluated by this org.
AUTHORIZATION_DIRECTIONmust be one of:authorization-direction-from,authorization-direction-to,authorization-direction-unspecified. - The authorization type of the authorized organizations description. For example,
trust, troubleshooting or logging.
AUTHORIZATION_TYPEmust be one of:authorization-type-trust,authorization-type-unspecified.
-
- OPTIONAL FLAGS
-
-
--async - Return immediately, without waiting for the operation in progress to complete.
-
--orgs=[ORGS,…] - Comma-separated list of organizations (in the following format:
organizations/<organizationnumber>).
-
- GCLOUD WIDE FLAGS
- These flags are available to all commands:
--access-token-file,--account,--billing-project,--configuration,--flags-file,--flatten,--format,--help,--impersonate-service-account,--log-http,--project,--quiet,--trace-token,--user-output-enabled,--verbosity.Run
$ gcloud helpfor details. - API REFERENCE
- This command uses the
accesscontextmanager/v1API. The full documentation for this API can be found at: https://cloud.google.com/access-context-manager/docs/reference/rest/ - NOTES
- This variant is also available:
gcloud alpha access-context-manager authorized-orgs create
gcloud access-context-manager authorized-orgs create
Except as otherwise noted, the content of this page is licensed under the Creative Commons Attribution 4.0 License , and code samples are licensed under the Apache 2.0 License . For details, see the Google Developers Site Policies . Java is a registered trademark of Oracle and/or its affiliates.
Last updated 2026-05-27 UTC.
