This Boolean constraint, when set to true, enables OS Login on all newly created projects.
All VM instances created in new projects will have OS Login enabled.

On new and existing projects, this constraint prevents metadata updates that disable OS Login at the project or instance level.
By default, the OS Login feature is disabled on Compute Engine projects.

GKE instances in private clusters running node pool versions 1.20.5-gke.2000 and later support OS Login.
GKE instances in public clusters do not currently support OS Login. If this constraint is applied to a project running public clusters, GKE instances running in that project may not function properly.

Affected Resources:

Compute Engine
Kubernetes Cluster

In Solvay...

OS Login simplifies SSH access management within GCP by linking your Linux user account to your Google identity.
This allow administrators to easily manage access to instances at either an instance or project level by setting IAM permissions.

In term of security, you don't have to worry about team members having installed their SSH keys on the VMs.

You can refer to this documentation from Google on accessing the VMs.

No exception will be granted.
This ensure simplified access management via the IAM permissions.