Tier
AdminCategoria
KubernetesEscopo
project
Privilégios
4
Role ID
roles/container.clusterAdminAdmin
Administrative control over a service, may include IAM
Descrição
Manage Kubernetes clusters and node pools, without accessing deployed workloads.
Privilégios / Capacidades(4)
Create and delete GKE clusters
Configure node pools and autoscaling
Upgrade cluster versions
Manage cluster networking
Role Definition (JSON)
{
"name": "roles/container.clusterAdmin",
"title": "Kubernetes Engine Cluster Admin",
"description": "Manage Kubernetes clusters and node pools, without accessing deployed workloads.",
"stage": "GA",
"includedPermissions": [
"Create and delete GKE clusters",
"Configure node pools and autoscaling",
"Upgrade cluster versions",
"Manage cluster networking"
]
}Roles relacionadasKubernetes
Kubernetes Engine Admin
Full access to all Kubernetes Engine resources, including cluster IAM management.
Kubernetes Engine Developer
Full access to Kubernetes objects inside clusters. Deploy and manage workloads.
Kubernetes Engine Cluster Viewer
Read-only access to GKE cluster metadata. Cannot access Kubernetes objects inside the cluster.
Kubernetes Engine Viewer
Read-only access to all Kubernetes Engine resources and cluster configuration.
Kubernetes Engine Node Service Account
Minimum permissions for a GKE node pool service account to function correctly.