Secret Manager Admin

GCP IAM — detalhes da role

Tier
Admin
Categoria
Security
Escopo
project
Privilégios
5
Role IDroles/secretmanager.admin

Esta é uma role privilegiada — concede capacidades de controle elevado. Aplique o princípio do menor privilégio e monitore atribuições via Cloud Audit Logs.

Admin

Administrative control over a service, may include IAM

Descrição

Full control of Secret Manager: create, manage, and access all secrets.

Privilégios / Capacidades(5)

Create and delete secrets
Add and disable secret versions
Access secret values
Set IAM policies on secrets
View secret metadata

Role Definition (JSON)

{
  "name": "roles/secretmanager.admin",
  "title": "Secret Manager Admin",
  "description": "Full control of Secret Manager: create, manage, and access all secrets.",
  "stage": "GA",
  "includedPermissions": [
    "Create and delete secrets",
    "Add and disable secret versions",
    "Access secret values",
    "Set IAM policies on secrets",
    "View secret metadata"
  ]