Container Security roles and permissions

This page lists the IAM roles and permissions for Container Security. To search through all roles and permissions, see the role and permission index.

Container Security roles

Role Permissions

(roles/containersecurity.viewer)

Read-only access to GKE Security Posture resources.

container.clusters.list

containersecurity.*

  • containersecurity.clusterSummaries.list
  • containersecurity.findings.list
  • containersecurity.locations.get
  • containersecurity.locations.list

resourcemanager.projects.get

resourcemanager.projects.list

Container Security permissions

Permission Included in roles

Owner (roles/owner)

Editor (roles/editor)

GKE Security Posture Viewer (roles/containersecurity.viewer)

Security Admin (roles/iam.securityAdmin)

Security Auditor (roles/iam.securityAuditor)

Security Reviewer (roles/iam.securityReviewer)

Owner (roles/owner)

Editor (roles/editor)

GKE Security Posture Viewer (roles/containersecurity.viewer)

Security Admin (roles/iam.securityAdmin)

Security Auditor (roles/iam.securityAuditor)

Security Reviewer (roles/iam.securityReviewer)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

GKE Security Posture Viewer (roles/containersecurity.viewer)

Support User (roles/iam.supportUser)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

GKE Security Posture Viewer (roles/containersecurity.viewer)

Security Admin (roles/iam.securityAdmin)

Security Auditor (roles/iam.securityAuditor)

Security Reviewer (roles/iam.securityReviewer)

Support User (roles/iam.supportUser)