Tier
AdminCategoria
ManagementEscopo
project
Privilégios
4
Role ID
roles/servicemanagement.adminEsta é uma role privilegiada — concede capacidades de controle elevado. Aplique o princípio do menor privilégio e monitore atribuições via Cloud Audit Logs.
Admin
Administrative control over a service, may include IAM
Descrição
Full control of Service Management: manage, enable, and configure GCP managed services.
Privilégios / Capacidades(4)
Create and manage Cloud Endpoints services
Enable and disable services
Set IAM policies on services
Manage service configurations and rollouts
Role Definition (JSON)
{
"name": "roles/servicemanagement.admin",
"title": "Service Management Admin",
"description": "Full control of Service Management: manage, enable, and configure GCP managed services.",
"stage": "GA",
"includedPermissions": [
"Create and manage Cloud Endpoints services",
"Enable and disable services",
"Set IAM policies on services",
"Manage service configurations and rollouts"
]
}Roles relacionadasManagement
Organization Admin
Full control over an organization resource including IAM and folder management.
Folder Admin
Full control over a folder, including creating subfolders and projects.
Folder Viewer
Read-only access to folder metadata. Can view folder hierarchy and list projects.
Project Creator
Can create new projects within an organization or folder.
Project Deleter
Can delete projects within an organization or folder.