Access Context Manager Policy Admin

GCP IAM — detalhes da role

Tier
Admin
Categoria
Security
Escopo
org
Privilégios
4
Role IDroles/accesscontextmanager.policyAdmin

Esta é uma role privilegiada — concede capacidades de controle elevado. Aplique o princípio do menor privilégio e monitore atribuições via Cloud Audit Logs.

Admin

Administrative control over a service, may include IAM

Descrição

Full control of VPC Service Controls, access policies, and service perimeters.

Privilégios / Capacidades(4)

Create and manage access policies
Define access levels
Create and modify service perimeters
Manage access context for VPC Service Controls

Role Definition (JSON)

{
  "name": "roles/accesscontextmanager.policyAdmin",
  "title": "Access Context Manager Policy Admin",
  "description": "Full control of VPC Service Controls, access policies, and service perimeters.",
  "stage": "GA",
  "includedPermissions": [
    "Create and manage access policies",
    "Define access levels",
    "Create and modify service perimeters",
    "Manage access context for VPC Service Controls"
  ]
}