Roles Data

Name Description Title Included Permissions Copy Stage
roles/servicedirectory.pscAuthorizedService Gives access to VPC Networks via Service Directory Private Service Connect Authorized Service ['resourcemanager.projects.get', 'resourcemanager.projects.list', 'servicedirectory.networks.access'] GA
roles/servicedirectory.networkAttacher Gives access to attach VPC Networks to Service Directory Endpoints Service Directory Network Attacher ['resourcemanager.projects.get', 'resourcemanager.projects.list', 'servicedirectory.networks.attach'] GA
roles/servicedirectory.viewer View Service Directory resources. Service Directory Viewer ['resourcemanager.projects.get', 'resourcemanager.projects.list', 'servicedirectory.endpoints.get', 'servicedirectory.endpoints.getIamPolicy', 'servicedirectory.endpoints.list', 'servicedirectory.locations.get', 'servicedirectory.locations.list', 'servicedirectory.namespaces.get', 'servicedirectory.namespaces.getIamPolicy', 'servicedirectory.namespaces.list', 'servicedirectory.services.get', 'servicedirectory.services.getIamPolicy', 'servicedirectory.services.list', 'servicedirectory.services.resolve'] GA
roles/servicedirectory.editor Edit Service Directory resources. Service Directory Editor ['resourcemanager.projects.get', 'resourcemanager.projects.list', 'servicedirectory.endpoints.create', 'servicedirectory.endpoints.delete', 'servicedirectory.endpoints.get', 'servicedirectory.endpoints.getIamPolicy', 'servicedirectory.endpoints.list', 'servicedirectory.endpoints.update', 'servicedirectory.locations.get', 'servicedirectory.locations.list', 'servicedirectory.namespaces.associatePrivateZone', 'servicedirectory.namespaces.create', 'servicedirectory.namespaces.delete', 'servicedirectory.namespaces.get', 'servicedirectory.namespaces.getIamPolicy', 'servicedirectory.namespaces.list', 'servicedirectory.namespaces.update', 'servicedirectory.networks.attach', 'servicedirectory.services.bind', 'servicedirectory.services.create', 'servicedirectory.services.delete', 'servicedirectory.services.get', 'servicedirectory.services.getIamPolicy', 'servicedirectory.services.list', 'servicedirectory.services.resolve', 'servicedirectory.services.update'] GA
roles/servicedirectory.admin Full control of all Service Directory resources and permissions. Service Directory Admin ['resourcemanager.projects.get', 'resourcemanager.projects.list', 'servicedirectory.endpoints.create', 'servicedirectory.endpoints.delete', 'servicedirectory.endpoints.get', 'servicedirectory.endpoints.getIamPolicy', 'servicedirectory.endpoints.list', 'servicedirectory.endpoints.setIamPolicy', 'servicedirectory.endpoints.update', 'servicedirectory.locations.get', 'servicedirectory.locations.list', 'servicedirectory.namespaces.associatePrivateZone', 'servicedirectory.namespaces.create', 'servicedirectory.namespaces.delete', 'servicedirectory.namespaces.get', 'servicedirectory.namespaces.getIamPolicy', 'servicedirectory.namespaces.list', 'servicedirectory.namespaces.setIamPolicy', 'servicedirectory.namespaces.update', 'servicedirectory.networks.attach', 'servicedirectory.services.bind', 'servicedirectory.services.create', 'servicedirectory.services.delete', 'servicedirectory.services.get', 'servicedirectory.services.getIamPolicy', 'servicedirectory.services.list', 'servicedirectory.services.resolve', 'servicedirectory.services.setIamPolicy', 'servicedirectory.services.update'] GA
roles/servicedirectory.serviceAgent Give the Service Directory service agent access to Cloud Platform resources. Service Directory Service Agent ['container.clusters.get', 'gkehub.features.get', 'gkehub.gateway.delete', 'gkehub.gateway.generateCredentials', 'gkehub.gateway.get', 'gkehub.gateway.patch', 'gkehub.gateway.post', 'gkehub.gateway.put', 'gkehub.locations.get', 'gkehub.locations.list', 'gkehub.memberships.get', 'gkehub.memberships.list', 'resourcemanager.projects.get', 'resourcemanager.projects.list', 'servicedirectory.endpoints.create', 'servicedirectory.endpoints.delete', 'servicedirectory.endpoints.get', 'servicedirectory.endpoints.getIamPolicy', 'servicedirectory.endpoints.list', 'servicedirectory.endpoints.update', 'servicedirectory.locations.get', 'servicedirectory.locations.list', 'servicedirectory.namespaces.associatePrivateZone', 'servicedirectory.namespaces.create', 'servicedirectory.namespaces.delete', 'servicedirectory.namespaces.get', 'servicedirectory.namespaces.getIamPolicy', 'servicedirectory.namespaces.list', 'servicedirectory.namespaces.update', 'servicedirectory.networks.attach', 'servicedirectory.services.bind', 'servicedirectory.services.create', 'servicedirectory.services.delete', 'servicedirectory.services.get', 'servicedirectory.services.getIamPolicy', 'servicedirectory.services.list', 'servicedirectory.services.resolve', 'servicedirectory.services.update'] GA