Labs

IAM 101

Conditional IAM 101 

Service account impersonation

Workload identity federation with AWS 

Workload identity federation with Github Actions

Course Content

IAM 101

  • Overview of IAM in GCP
  • Overview of IAM concepts like Roles, Rolebindings, IAM policies and resource hierarchies
  • Introduction to Conditional IAM 

Service accounts in GCP 

  • Overview of service accounts in GCP
  • Hands on - Service account with GCP VM 
  • Keyless authentication with service account impersonation 

Workload Identity Federation 

  • Introduction and overview of Workload Identity federation 

Although Google Cloud sets itself apart from competitors like AWS and Azure, it nonetheless shares several similarities to other cloud providers, right down to how it handles Identity and Access Management (IAM).

In this course, we’re going to be learning about various IAM techniques to control users’ access to your cloud resources. We’ll do this by going hands-on with multiple IAM services provided by GCP, and understanding core concepts related to IAM.

We start with an overview of IAM in Google Cloud, looking at Roles, IAM policies, and more. You’ll get to learn these concepts with the help of hands-on labs. Next, we’ll explore service accounts and keyless authentication. In the final module, our focus will be on Workload Identity Federation, one of the most innovative ways to securely provide access to a large team of users.

Beginner

4
Hours
7
Lessons
5
Cloud Labs
learning path:
Google Cloud Security

Google Cloud IAM Essentials

Ideal for
Cloud Engineer
Security Champion
Security Engineer
Security Architect
Get Started

You might also like these courses

Or explore these Learning Paths

Ready to Elevate Your Security Training?

Empower your teams with the skills they need to secure your applications and stay ahead of the curve.
Get Our Newsletter
Get Started
X
X
Copyright AppSecEngineer © 2025