Compute Admin

GCP IAM — detalhes da role

Tier
Admin
Categoria
Compute
Escopo
project
Privilégios
5
Role IDroles/compute.admin

Esta é uma role privilegiada — concede capacidades de controle elevado. Aplique o princípio do menor privilégio e monitore atribuições via Cloud Audit Logs.

Admin

Administrative control over a service, may include IAM

Descrição

Full control of all Compute Engine resources including VMs, disks, networks, and images.

Privilégios / Capacidades(5)

Create, update, delete VMs
Manage disks and snapshots
Configure networks and firewalls
Manage images and machine types
Set IAM policies on Compute resources

Role Definition (JSON)

{
  "name": "roles/compute.admin",
  "title": "Compute Admin",
  "description": "Full control of all Compute Engine resources including VMs, disks, networks, and images.",
  "stage": "GA",
  "includedPermissions": [
    "Create, update, delete VMs",
    "Manage disks and snapshots",
    "Configure networks and firewalls",
    "Manage images and machine types",
    "Set IAM policies on Compute resources"
  ]