Logging Admin

GCP IAM — detalhes da role

Tier
Admin
Categoria
Observability
Escopo
project
Privilégios
5
Role IDroles/logging.admin

Esta é uma role privilegiada — concede capacidades de controle elevado. Aplique o princípio do menor privilégio e monitore atribuições via Cloud Audit Logs.

Admin

Administrative control over a service, may include IAM

Descrição

Full control of all Cloud Logging: log buckets, sinks, views, and exclusions.

Privilégios / Capacidades(5)

Read all logs including private logs
Create and manage log sinks and exports
Configure log buckets and views
Set exclusion filters
Manage log-based metrics

Role Definition (JSON)

{
  "name": "roles/logging.admin",
  "title": "Logging Admin",
  "description": "Full control of all Cloud Logging: log buckets, sinks, views, and exclusions.",
  "stage": "GA",
  "includedPermissions": [
    "Read all logs including private logs",
    "Create and manage log sinks and exports",
    "Configure log buckets and views",
    "Set exclusion filters",
    "Manage log-based metrics"
  ]