Container Security roles and permissions

This page lists the IAM roles and permissions for Container Security. To search through all roles and permissions, see the role and permission index.

Container Security roles

Role Permissions

Role	Permissions
GKE Security Posture Viewer ^Beta (`roles/containersecurity.viewer`) Read-only access to GKE Security Posture resources.	`container.clusters.list` `containersecurity.*` `containersecurity.clusterSummaries.list` `containersecurity.findings.list` `containersecurity.locations.get` `containersecurity.locations.list` `resourcemanager.projects.get` `resourcemanager.projects.list`

(roles/containersecurity.viewer)

Read-only access to GKE Security Posture resources.

container.clusters.list

containersecurity.*

resourcemanager.projects.get

resourcemanager.projects.list

Permission	Included in roles
`containersecurity.clusterSummaries.list`	Owner (`roles/owner`) Editor (`roles/editor`) GKE Security Posture Viewer (`roles/containersecurity.viewer`) Security Admin (`roles/iam.securityAdmin`) Security Auditor (`roles/iam.securityAuditor`) Security Reviewer (`roles/iam.securityReviewer`)
`containersecurity.findings.list`	Owner (`roles/owner`) Editor (`roles/editor`) GKE Security Posture Viewer (`roles/containersecurity.viewer`) Security Admin (`roles/iam.securityAdmin`) Security Auditor (`roles/iam.securityAuditor`) Security Reviewer (`roles/iam.securityReviewer`)
`containersecurity.locations.get`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) GKE Security Posture Viewer (`roles/containersecurity.viewer`) Support User (`roles/iam.supportUser`)
`containersecurity.locations.list`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) GKE Security Posture Viewer (`roles/containersecurity.viewer`) Security Admin (`roles/iam.securityAdmin`) Security Auditor (`roles/iam.securityAuditor`) Security Reviewer (`roles/iam.securityReviewer`) Support User (`roles/iam.supportUser`)