I am running a basic test with GCP Shared VPC on my test deployment.
I would like a suggestion to see if I missed something or this is just some glitch from GCP:
- I have a Shared VPC host project and 3 service projects
- only 2 subnets over 3 are actually shown as shared on the Console and via gcloud command gcloud compute networks subnets list-usable --project [project ID] from one of the service projects
Background:
- there is no organization policy neither restriction,
- I have enabled the host project and attached first 2 service projects, everything was OK
- I granted individual subnets Compute network user roles to 2 users (that are also project owners of each service project)
- I have created a couple of new users with cloud identity in the same organization
- assigned project owner to newly created users for a new project and granted Network user for 3 shared subnets
- Consider I am using the free 300$ trial, but I don't think it would impact just one subnet over 3
Thank you
EDIT :
I tried adding network user role to the host project itself for the service project owner user and I can see all shared VPC subnets.
I think this may be a problem then of how the roles are applied (even if I verified them for each subnet) or simply a problem of subnet roles vs project roles
See Question&Answers more detail:
os 与恶龙缠斗过久,自身亦成为恶龙;凝视深渊过久,深渊将回以凝视…
