Folder Admin

GCP IAM — detalhes da role

Tier
Admin
Categoria
Management
Escopo
folder
Privilégios
3
Role IDroles/resourcemanager.folderAdmin

Esta é uma role privilegiada — concede capacidades de controle elevado. Aplique o princípio do menor privilégio e monitore atribuições via Cloud Audit Logs.

Admin

Administrative control over a service, may include IAM

Descrição

Full control over a folder, including creating subfolders and projects.

Privilégios / Capacidades(3)

Create, update, delete folders
Manage IAM policies on folders
Move folders and projects

Role Definition (JSON)

{
  "name": "roles/resourcemanager.folderAdmin",
  "title": "Folder Admin",
  "description": "Full control over a folder, including creating subfolders and projects.",
  "stage": "GA",
  "includedPermissions": [
    "Create, update, delete folders",
    "Manage IAM policies on folders",
    "Move folders and projects"
  ]
}