List of issues that are preventing PAM from functioning for this resource and need to be fixed to complete onboarding. Some issues might not be detected or reported.
Finding
Finding represents an issue which prevents PAM from functioning properly for this resource.
JSON representation
{// Union field finding_type can be only one of the following:"iamAccessDenied": {object (IAMAccessDenied)}// End of list of possible types for union field finding_type.}
PAM's service account is being denied access by Cloud IAM.
IAMAccessDenied
PAM's service account is being denied access by Cloud IAM. This can be fixed by granting a role that contains the missing permissions to the service account or exempting it from deny policies if they are blocking the access.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2024-09-17 UTC."],[[["The `CheckOnboardingStatus` method returns a JSON response containing a service account and a list of findings."],["Findings represent issues preventing PAM (Privileged Access Management) from functioning correctly for a given resource, requiring remediation for successful onboarding."],["A finding can be of type `IAMAccessDenied`, indicating that PAM's service account lacks necessary permissions due to Cloud IAM restrictions."],["When `IAMAccessDenied` occurs, the JSON response provides a list of `missingPermissions` that need to be granted to the PAM service account."]]],[]]