Service Account Key Admin

GCP IAM — detalhes da role

Tier
Admin
Categoria
IAM
Escopo
resource
Privilégios
3
Role IDroles/iam.serviceAccountKeyAdmin

Esta é uma role privilegiada — concede capacidades de controle elevado. Aplique o princípio do menor privilégio e monitore atribuições via Cloud Audit Logs.

Admin

Administrative control over a service, may include IAM

Descrição

Create, delete, and rotate service account keys.

Privilégios / Capacidades(3)

Create service account keys
Delete service account keys
List service account keys

Permissions(6)

iam.serviceAccountKeys.create
iam.serviceAccountKeys.delete
iam.serviceAccountKeys.get
iam.serviceAccountKeys.list
iam.serviceAccountKeys.enable
iam.serviceAccountKeys.disable

Role Definition (JSON)

{
  "name": "roles/iam.serviceAccountKeyAdmin",
  "title": "Service Account Key Admin",
  "description": "Create, delete, and rotate service account keys.",
  "stage": "GA",
  "includedPermissions": [
    "iam.serviceAccountKeys.create",
    "iam.serviceAccountKeys.delete",
    "iam.serviceAccountKeys.get",
    "iam.serviceAccountKeys.list",
    "iam.serviceAccountKeys.enable",
    "iam.serviceAccountKeys.disable"