Set up Gemini Cloud Assist
Stay organized with collections Save and categorize content based on your preferences.

Before you can use Gemini Cloud Assist, your administrator needs to perform the setup steps that are described in this document. Gemini Cloud Assist can be set up for a project or a folder.

Set up Gemini Cloud Assist for a project

The following steps detail how to set up Gemini Cloud Assist for a project in the Google Cloud console or using Google Cloud CLI.

Console

Go to the Admin for Gemini page.

Go to Gemini for Google Cloud
From the project picker at the top of the page, select your project resource.
Select Get Gemini Cloud Assist.
In the Get Gemini Cloud Assist dialog, do the following:
1. Select the expander arrow found in the Required & recommended APIs section.
2. Ensure the following required APIs are enabled: Gemini Cloud Assist API and Gemini for Google Cloud API.
3. In the Recommended APIs list, select the APIs you want to enable.
4. Optional: Select Help Google improve Cloud Assist by sharing your prompts and answers.
5. Select Enable Gemini Cloud Assist at no cost.
Click Save.
Grant the IAM roles that are required to use Gemini Cloud Assist.
1. Go to the IAM & Admin page.
  
  Go to IAM & Admin
2. In the Principal column, find a principal for which you want to give access to Gemini Cloud Assist, and then click Edit principal in that row.
3. In the Edit access pane, click Add another role.
4. In Select a role, select Gemini Cloud Assist User.
5. Click Add another role and select Recommender Viewer.
If the principal wants to get assistance with products they don't already have access to, you might need to grant them additional IAM roles. See IAM requirements for using Gemini Cloud Assist for a table of IAM roles that enable an optimal Gemini Cloud Assist experience for different products.

gcloud

In the Google Cloud console, activate Cloud Shell.

Activate Cloud Shell
Enable the Gemini Cloud Assist API using the gcloud services enable command:
```
gcloud services enable geminicloudassist.googleapis.com
```
This step also enables the Gemini for Google Cloud API, which is also required to use Gemini Cloud Assist.

If you want to enable the Gemini Cloud Assist API in a different Google Cloud project, add the --project parameter:
```
gcloud services enable geminicloudassist.googleapis.com --project PROJECT_ID
```
The output is similar to the following:
```
Waiting for async operation operations/acf.2e2fcfce-8327-4984-9040-a67777082687 to complete...
Operation finished successfully.
```
Grant IAM roles in a Google Cloud project. For more information, see Grant a single role and gcloud projects add-iam-policy-binding.
1. Grant the roles/geminicloudassist.user role:
```
gcloud projects add-iam-policy-binding  PROJECT_ID \
    --member=PRINCIPAL --role=roles/geminicloudassist.user
```
  Replace PRINCIPAL with the identifier for the principal. The identifier takes the form user|group|serviceAccount:email or domain:domain—for example, user:cloudysanfrancisco@gmail.com, group:admins@example.com, serviceAccount:test123@example.domain.com, or domain:example.domain.com.
  
  The output is a list of policy bindings that includes the following:
```
- members:
  - user:PRINCIPAL
  role: roles/geminicloudassist.user
```
2. Repeat the previous step for the role roles/recommender.viewer.
If the principal wants to get assistance with products they don't already have access to, you might need to grant them additional IAM roles. See IAM requirements for using Gemini Cloud Assist for a table of IAM roles that enable an optimal Gemini Cloud Assist experience for different products.

Set up Gemini Cloud Assist for a folder

The following steps detail how to set up Gemini Cloud Assist for a folder in the Google Cloud console. You cannot use Google Cloud CLI to set up Gemini Cloud Assist.

Enable required and recommended APIs.
1. Go to the Admin for Gemini page.
  
  Go to Admin for Gemini
2. From the project picker at the top of the page, select your folder resource.
3. Select Get Gemini Cloud Assists.
  
  The Enable API for existing projects within folder dialog appears.
4. In the Enable API for existing projects within a folder dialog,select the expander arrow found in the Required & recommended APIs section.
5. Ensure the following required APIs are enabled: Gemini Cloud Assist API and Gemini for Google Cloud API.
6. In the Recommended APIs list, select the APIs you want to enable.
7. Optional: Select Help Google improve Cloud Assist by sharing your prompts and answers.
8. Select Enable Gemini Cloud Assist at no cost.
  
  This step enables the required and selected recommended APIs for all projects in the folder. If you want exceptions for some projects in the folder, then you can block API enablement by setting a Restrict Resource Service Usage organization policy constraint on those projects. For more information, see Restricting resource usage.
Grant the following IAM roles or create custom roles with equivalent permissions on the folder:
- Gemini for Google Cloud User
- Cloud Asset Viewer
- Recommender Viewer
If the principal wants to get assistance with products they don't already have access to, you might need to grant them additional IAM roles. See IAM requirements for using Gemini Cloud Assist for a table of IAM roles that enable an optimal Gemini Cloud Assist experience for different products.
If you are using Gemini Cloud Assist with applications, then you must also enable application management. This step creates a management project to which you must link a billing account.
1. Return to the Admin for Gemini page.
  
  Go to Admin for Gemini
2. Select Enable App Management.
  
  The IAM & Admin settings page appears.
3. Select Enable in the App-enablement section of the page.
  
  The Enable application APIs on this folder dialog appears.
4. Select Enable.
  
  A status bar displays the progress of the API enablement. The IAM & Admin settings page refreshes when API enablement completes.
5. Select Manage billing.
  
  The Linked account page appears.
6. Select a billing account from the list, and then select Set account.
Grant the IAM roles that you granted to the folder in step 2, or create custom roles with equivalent permissions to the management project created in the previous step.

Find the management project for the folder:
1. Return to the Admin for Gemini page.
  
  Go to Admin for Gemini
2. From the project picker at the top of the page, select your folder resource.
3. Select Manage Gemini Cloud Assist Settings.
  
  The Manage Gemini Cloud Assist dialog appears.
4. Note the Management project.
(Optional) Configure settings for projects in the folder.

What's next

Learn how to analyze and optimize your cloud resources with Gemini assistance.