【发布时间】:2022-07-22 17:15:10
【问题描述】:
当尝试删除我的云作曲家环境时,它会因为权限不足而卡住。根据这篇文章,我已经删除了存储桶、GKE 集群和部署: Cannot delete Cloud Composer environment
服务帐号是标准的计算 SA。
DELETE operation on this environment failed 33 minutes ago with the following error message:
Could not configure workload identity: Permission iam.serviceAccounts.getIamPolicy is required to perform this operation on service account projects/-/serviceAccounts/"project-id"-compute@developer.gserviceaccount.com.
即使我暂时将计算帐户设为项目所有者和 IAM 安全管理员,它也不起作用。 我试图通过 GUI、gcloud CLI 和 terraform 删除它,但没有成功。任何建议或尝试的东西都将不胜感激:)
【问题讨论】:
标签: google-cloud-platform permissions identity-management