As an organization manager you easily apply for your organization to join RosettaHUB by submitting an application here: https://www.rosettahub.com/registration/institution.xhtml . RosettaHub can manage your organization's AWS, Azure and GCP accounts. Putting your root cloud accounts under the management of RosettaHUB allows for mass on-boarding to AWS, Azure and GCP for all members of your organization. The platform creates individual cloud accounts for each member whilst allowing you to control costs and define budgets, permissions and limits on each cloud account. A RosettaHub cloud account maps an AWS sub-account an Azure resource group or a GCP project.
To give access to RosettaHub to administer a GCP folder, the organization needs to execute the following script and replace folder_id with the rosettahub folder id and rh-email with the email that has been communicated by RosettaHUB.
In order for RH to manage users access to GCP regions, the organization can grant these additional rights and replace project_id with the project id communicated by RosettaHUB and org_id with the organization's organization id under GCP:
If the organization wants to restrict all users to one region, the organization can simply enforce an organization policy for regions at the folder level and communicate the selected region to RosettaHUB.