I was managing IAM policies in my Google Cloud Organization and attempted to disable the policy constraint iam.disableServiceAccountKeyCreation. During this process, I mistakenly removed the Owner role from my account.
Issue:
Now, I no longer have the necessary permissions to manage IAM settings, and I cannot assign the Owner role back to myself. When I run IAM-related commands, I get permission errors, such as:
ERROR: (gcloudanizations.get-iam-policy) [email] does not have permission to access anizations instance [anization_id:getIamPolicy] (or it may not exist): The caller does not have permission.
What I Tried:
- Checking active accounts:
gcloud auth list- It shows my email as active.
- Checking IAM roles:
gcloud anizations get-iam-policy anization_id- Results in a permission denied error.
- Attempting to restore my role:
- Since I lost Owner access, I can't use
gcloud projects add-iam-policy-binding.
- Since I lost Owner access, I can't use
- Checking Google Cloud Support:
- Every time I try to create a support ticket, it says I don't have permission.
Question:
How can I restore the Owner role to my account in this situation? Is there any way to regain access without a pre-existing Owner or a support request?
Any help would be greatly appreciated!