top of page
Search

Extending onPremise Active Directory to GCP

  • Writer: Anand Nerurkar
    Anand Nerurkar
  • Sep 16, 2023
  • 1 min read

Normally Users and Groups exist in Active Directory and they reside in AD Domain Contoller.




Cloud Identity

===

1.

with Directory Synch, it allow to synch users and groups from on premise to GCP cloud identity .

2. You can set up cloud identity domain to indicate authentication of those user would happen with onpremise federation endpoint.




Google Cloud Directory Synch


setting up users account with below powershell scipt and execute it


This will set up users and grouo in onpremise AD as below



Goto Google Cloud Ditectory synch and click on synch and apply



Goto Google Cloud Identity and refresh it

You will see users ang group in this identity domain.


now users and group are available in Google Cloud Identity, goto IAM


click Add - select group-add role for accessing BigQuery on GCP


we can set up IAM policy for user to access in certian time window and from partucular ip as below.

Below are the scenario where we may set up AD or AD related application in GCP


Architecture Choices are

1.


2.


3.




 
 
 

Recent Posts

See All
Best Chunking Practices

1. Chunk by Semantic Boundaries (NOT fixed size only) Split by sections, headings, paragraphs , or logical units. Avoid cutting a sentence or concept in half. Works best with docs, tech specs, policie

 
 
 
Future State Architecture

USE CASE: LARGE RETAIL BANK – DIGITAL CHANNEL MODERNIZATION 🔹 Business Context A large retail bank wants to “modernize” its digital channels (internet banking + mobile apps). Constraints: Heavy regul

 
 
 

Comments

Rated 0 out of 5 stars.
No ratings yet
Add a rating
  • Facebook
  • Twitter
  • LinkedIn

©2024 by AeeroTech. Proudly created with Wix.com

bottom of page