Container Security roles and permissions
Stay organized with collections Save and categorize content based on your preferences.

This page lists the IAM roles and permissions for Container Security. To search through all roles and permissions, see the role and permission index.

Container Security roles

Role Permissions

Role	Permissions
GKE Security Posture Viewer ^Beta (`roles/containersecurity.viewer`) Read-only access to GKE Security Posture resources.	`container.clusters.list` `containersecurity.*` `containersecurity.clusterSummaries.list` `containersecurity.findings.list` `containersecurity.locations.get` `containersecurity.locations.list` `resourcemanager.projects.get` `resourcemanager.projects.list`

(roles/containersecurity.viewer)

Read-only access to GKE Security Posture resources.

container.clusters.list

containersecurity.*

resourcemanager.projects.get

resourcemanager.projects.list

Permission	Included in roles
`containersecurity.clusterSummaries.list`	Owner (`roles/owner`) Editor (`roles/editor`) GKE Security Posture Viewer (`roles/containersecurity.viewer`) Security Admin (`roles/iam.securityAdmin`) Security Reviewer (`roles/iam.securityReviewer`)
`containersecurity.findings.list`	Owner (`roles/owner`) Editor (`roles/editor`) GKE Security Posture Viewer (`roles/containersecurity.viewer`) Security Admin (`roles/iam.securityAdmin`) Security Reviewer (`roles/iam.securityReviewer`)
`containersecurity.locations.get`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) GKE Security Posture Viewer (`roles/containersecurity.viewer`)
`containersecurity.locations.list`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) GKE Security Posture Viewer (`roles/containersecurity.viewer`) Security Admin (`roles/iam.securityAdmin`) Security Reviewer (`roles/iam.securityReviewer`)