CheckOnboardingStatusResponse

Response message for CheckOnboardingStatus method.

JSON representation 
{
  "serviceAccount": string,
  "findings": [
    {
      object (Finding)
    }
  ]
}
Fields
serviceAccount

string

The service account that PAM uses to act on this resource.
findings[]

object (Finding)

List of issues that are preventing PAM from functioning for this resource and need to be fixed to complete onboarding. Some issues might not be detected or reported.

Finding

Finding represents an issue which prevents PAM from functioning properly for this resource.

JSON representation 
{

  // Union field finding_type can be only one of the following:
  "iamAccessDenied": {
    object (IAMAccessDenied)
  }
  // End of list of possible types for union field finding_type.
}
Fields

Union field finding_type.

finding_type can be only one of the following:
iamAccessDenied

object (IAMAccessDenied)

PAM's service account is being denied access by Cloud IAM.

IAMAccessDenied

PAM's service account is being denied access by Cloud IAM. This can be fixed by granting a role that contains the missing permissions to the service account or exempting it from deny policies if they are blocking the access.

JSON representation 
{
  "missingPermissions": [
    string
  ]
}
Fields
missingPermissions[]

string

List of permissions that are being denied.