- NAME
-
- gcloud access-context-manager perimeters replace-all - replace all existing service perimeters
- SYNOPSIS
-
-
gcloud access-context-manager perimeters replace-all[POLICY]--source-file=SOURCE_FILE[--etag=ETAG] [GCLOUD_WIDE_FLAG …]
-
- DESCRIPTION
- Replace all existing service perimeter in specified access policy with service perimeters specified in a file.
- EXAMPLES
- To replace all perimeters within a policy, using etag:
gcloud access-context-manager perimeters replace-all my-policy-number --source-file = path-to-file-containing-all-replacement-service-perimeters.yaml --etag = optional-latest-etag-of-policyTo replace all perimeters within a policy, without using etag:
gcloud access-context-manager perimeters replace-all my-policy-number --source-file = path-to-file-containing-all-replacement-service-perimeters.yaml - POSITIONAL ARGUMENTS
-
- Policy resource - The access policy that contains the perimeters you want to replace. This represents a Cloud resource.
- [
POLICY] - ID of the policy or fully qualified identifier for the policy.
To set the
policyattribute:- provide the argument
policyon the command line; - set the property
access_context_manager/policy; - automatically, if the current account belongs to an organization with exactly one access policy..
- provide the argument
- REQUIRED FLAGS
-
-
--source-file=SOURCE_FILE - Path to a file containing a list of service perimeters.
An service perimeter file is a YAML-formatted list of service perimeters, which are YAML objects representing a Condition as described in the API reference. For example:
- name: my_perimeter title: My Perimeter description: Perimeter for foo. perimeterType: PERIMETER_TYPE_REGULAR status: resources: - projects/0123456789 accessLevels: - accessPolicies/my_policy/accessLevels/my_level restrictedServices: - storage.googleapis.com
For more information about the alpha version, see: https://cloud.google.com/access-context-manager/docs/reference/rest/v1alpha/accessPolicies.servicePerimeters For other versions, see: https://cloud.google.com/access-context-manager/docs/reference/rest/v1/accessPolicies.servicePerimeters
-
- OPTIONAL FLAGS
-
-
--etag=ETAG - An etag which specifies the version of the Access Policy. Only etags that represent the latest version of the Access Policy will be accepted.
-
- GCLOUD WIDE FLAGS
- These flags are available to all commands:
--access-token-file,--account,--billing-project,--configuration,--flags-file,--flatten,--format,--help,--impersonate-service-account,--log-http,--project,--quiet,--trace-token,--user-output-enabled,--verbosity.Run
$ gcloud helpfor details. - API REFERENCE
- This command uses the
accesscontextmanager/v1API. The full documentation for this API can be found at: https://cloud.google.com/access-context-manager/docs/reference/rest/ - NOTES
- These variants are also available:
gcloud alpha access-context-manager perimeters replace-allgcloud beta access-context-manager perimeters replace-all
gcloud access-context-manager perimeters replace-all
Except as otherwise noted, the content of this page is licensed under the Creative Commons Attribution 4.0 License , and code samples are licensed under the Apache 2.0 License . For details, see the Google Developers Site Policies . Java is a registered trademark of Oracle and/or its affiliates.
Last updated 2026-05-27 UTC.
