Tier
AdminCategoria
SecurityEscopo
project
Privilégios
4
Role ID
roles/compute.securityPoliciesAdminAdmin
Administrative control over a service, may include IAM
Descrição
Create and manage Cloud Armor security policies for DDoS protection and WAF.
Privilégios / Capacidades(4)
Create and modify Cloud Armor security policies
Configure WAF rules and rate limiting
Manage adaptive protection settings
Associate policies with backends
Role Definition (JSON)
{
"name": "roles/compute.securityPoliciesAdmin",
"title": "Compute Security Policies Admin",
"description": "Create and manage Cloud Armor security policies for DDoS protection and WAF.",
"stage": "GA",
"includedPermissions": [
"Create and modify Cloud Armor security policies",
"Configure WAF rules and rate limiting",
"Manage adaptive protection settings",
"Associate policies with backends"
]
}Roles relacionadasSecurity
Compute Security Admin
Full control of Compute Engine security resources including firewalls and SSL policies.
Secret Manager Admin
Full control of Secret Manager: create, manage, and access all secrets.
Secret Manager Secret Accessor
Access the payload of Secret Manager secrets. Common role for application workloads.
Secret Manager Secret Version Adder
Add new versions to an existing Secret Manager secret.
Secret Manager Secret Version Manager
Enable, disable, and destroy secret versions. Manage secret version lifecycle.