This page lists the IAM roles and permissions for Network Connectivity Center. To search through all roles and permissions, see the role and permission index.
Network Connectivity Center roles
| Role | Permissions |
|---|---|
Service Automation Consumer Network Admin( Service Automation Consumer Network Admin is responsible for setting up ServiceConnectionPolicies. |
|
Group Admin( Enables full access to group resources and read-only access to hub and spoke resources |
|
Group User( Enables use access on group resources |
|
Hub & Spoke Admin( Enables full access to hub and spoke resources. Lowest-level resources where you can grant this role:
|
|
Hub & Spoke Viewer( Enables read-only access to hub and spoke resources. Lowest-level resources where you can grant this role:
|
|
Regional Endpoint Admin( Full access to all Regional Endpoint resources. |
|
Regional Endpoint Viewer( Read-only access to all Regional Endpoint resources. |
|
Network Connectivity Service Agent( Grants the Network Connectivity API authority to read some networking resources. It does not mutate these resources. |
|
Service Class User( Service Class User uses a ServiceClass |
|
Service Automation Service Producer Admin( Service Automation Producer Admin uses information from a consumer request to manage ServiceClasses and ServiceConnectionMaps |
|
Spoke Admin( Enables full access to spoke resources and read-only access to hub resources. Lowest-level resources where you can grant this role:
|
|
Network Connectivity Center permissions
| Permission | Included in roles |
|---|---|
|
Owner (
Editor (
Hub & Spoke Admin (
Spoke Admin ( |
|
Owner (
Editor (
Hub & Spoke Admin (
Spoke Admin ( |
|
Owner (
Editor (
Viewer (
Group Admin (
Hub & Spoke Admin (
Hub & Spoke Viewer (
Spoke Admin ( |
|
Owner (
Editor (
Viewer (
Security Admin (
Security Reviewer (
Group Admin (
Hub & Spoke Admin (
Hub & Spoke Viewer (
Spoke Admin ( |
|
Owner (
Editor (
Hub & Spoke Admin (
Spoke Admin ( |
|
Owner (
Editor (
Group Admin (
Hub & Spoke Admin ( |
|
Owner (
Editor (
Group Admin (
Hub & Spoke Admin ( |
|
Owner (
Editor (
Viewer (
Group Admin (
Hub & Spoke Admin (
Hub & Spoke Viewer ( |
|
Owner (
Editor (
Viewer (
Security Admin (
Security Reviewer (
Group Admin (
Hub & Spoke Admin (
Hub & Spoke Viewer ( |
|
Owner (
Editor (
Viewer (
Security Admin (
Security Reviewer (
Group Admin (
Hub & Spoke Admin (
Hub & Spoke Viewer ( |
|
Owner (
Editor (
Group Admin (
Hub & Spoke Admin ( |
|
Owner (
Editor (
Group Admin (
Hub & Spoke Admin ( |
|
Owner (
Security Admin (
Group Admin (
Hub & Spoke Admin ( |
|
Owner (
Editor (
Group Admin (
Group User (
Hub & Spoke Admin ( |
|
Owner (
Editor (
Viewer (
Group Admin (
Hub & Spoke Admin (
Hub & Spoke Viewer (
Spoke Admin ( Service agent roles
|
|
Owner (
Editor (
Viewer (
Security Admin (
Security Reviewer (
Group Admin (
Hub & Spoke Admin (
Hub & Spoke Viewer (
Spoke Admin ( |
|
Owner (
Editor (
Viewer (
Security Admin (
Security Reviewer (
Group Admin (
Hub & Spoke Admin (
Hub & Spoke Viewer (
Spoke Admin ( Service agent roles
|
|
Owner (
Security Admin (
Hub & Spoke Admin ( |
|
Owner (
Editor (
Viewer (
Group Admin (
Hub & Spoke Admin (
Hub & Spoke Viewer (
Spoke Admin ( Service agent roles
|
|
Owner (
Editor (
Viewer (
Security Admin (
Security Reviewer (
Group Admin (
Hub & Spoke Admin (
Hub & Spoke Viewer (
Spoke Admin ( |
|
Owner (
Editor (
Viewer (
Security Admin (
Security Reviewer (
Group Admin (
Hub & Spoke Admin (
Hub & Spoke Viewer (
Spoke Admin ( Service agent roles
|
|
Owner (
Security Admin (
Hub & Spoke Admin ( |
|
Owner (
Editor (
Hub & Spoke Admin ( |
|
Owner (
Editor (
Hub & Spoke Admin ( |
|
Owner (
Editor (
Viewer (
Group Admin (
Hub & Spoke Admin (
Hub & Spoke Viewer (
Spoke Admin ( |
|
Owner (
Editor (
Viewer (
Security Admin (
Security Reviewer (
Group Admin (
Hub & Spoke Admin (
Hub & Spoke Viewer (
Spoke Admin ( |
|
Owner (
Editor (
Viewer (
Security Admin (
Security Reviewer (
Group Admin (
Hub & Spoke Admin (
Hub & Spoke Viewer (
Spoke Admin ( |
|
Owner (
Editor (
Viewer (
Hub & Spoke Admin (
Hub & Spoke Viewer ( |
|
Owner (
Editor (
Viewer (
Hub & Spoke Admin (
Hub & Spoke Viewer ( |
|
Owner (
Security Admin (
Hub & Spoke Admin ( |
|
Owner (
Editor (
Hub & Spoke Admin ( |
|
Owner (
Editor (
Compute Network Admin ( Service agent roles
|
|
Owner (
Editor (
Compute Network Admin ( Service agent roles
|
|
Owner (
Editor (
Viewer (
Compute Network Admin (
Compute Network User (
Compute Network Viewer ( Service agent roles
|
|
Owner (
Editor (
Viewer (
Compute Network Admin (
Security Admin (
Security Reviewer ( Service agent roles
|
|
Owner (
Editor (
Viewer (
Compute Network Admin (
Compute Network User (
Compute Network Viewer (
Security Admin (
Security Reviewer ( Service agent roles
|
|
Owner (
Compute Network Admin (
Security Admin ( Service agent roles
|
|
Owner (
Editor (
Compute Network Admin ( Service agent roles
|
|
Owner (
Editor (
Viewer (
Compute Network Admin (
Compute Network User (
Compute Network Viewer (
Group Admin (
Hub & Spoke Admin (
Hub & Spoke Viewer (
Spoke Admin ( Service agent roles
|
|
Owner (
Editor (
Viewer (
Compute Network Admin (
Compute Network User (
Compute Network Viewer (
Security Admin (
Security Reviewer (
Group Admin (
Hub & Spoke Admin (
Hub & Spoke Viewer (
Spoke Admin ( Service agent roles
|
|
Owner (
Editor (
Compute Network Admin (
Hub & Spoke Admin ( Service agent roles
|
|
Owner (
Editor (
Compute Network Admin (
Hub & Spoke Admin ( Service agent roles
|
|
Owner (
Editor (
Viewer (
Compute Network Admin (
Compute Network User (
Compute Network Viewer (
Group Admin (
Hub & Spoke Admin (
Service Automation Service Producer Admin (
Spoke Admin ( Service agent roles
|
|
Owner (
Editor (
Viewer (
Compute Network Admin (
Compute Network User (
Compute Network Viewer (
Security Admin (
Security Reviewer (
Group Admin (
Hub & Spoke Admin (
Service Automation Service Producer Admin (
Spoke Admin ( Service agent roles
|
|
Owner (
Editor (
Compute Network Admin ( Service agent roles
|
|
Owner (
Editor (
Compute Network Admin ( Service agent roles
|
|
Owner (
Editor (
Viewer (
Compute Network Admin (
Compute Network User (
Compute Network Viewer ( Service agent roles
|
|
Owner (
Editor (
Viewer (
Compute Network Admin (
Security Admin (
Security Reviewer ( Service agent roles
|
|
Owner (
Editor (
Viewer (
Compute Network Admin (
Compute Network User (
Compute Network Viewer (
Security Admin (
Security Reviewer ( Service agent roles
|
|
Owner (
Compute Network Admin (
Security Admin ( Service agent roles
|
|
Owner (
Editor (
Compute Network Admin (
Regional Endpoint Admin ( Service agent roles
|
|
Owner (
Editor (
Compute Network Admin (
Regional Endpoint Admin ( Service agent roles
|
|
Owner (
Editor (
Viewer (
Compute Network Admin (
Regional Endpoint Admin (
Regional Endpoint Viewer ( Service agent roles
|
|
Owner (
Editor (
Viewer (
Compute Network Admin (
Security Admin (
Security Reviewer (
Regional Endpoint Admin (
Regional Endpoint Viewer ( Service agent roles
|
|
Owner (
Editor (
Compute Network Admin (
Service Automation Service Producer Admin ( Service agent roles
|
|
Owner (
Editor (
Compute Network Admin (
Service Automation Service Producer Admin ( Service agent roles
|
|
Owner (
Editor (
Viewer (
Compute Network Admin (
Service Class User (
Service Automation Service Producer Admin ( Service agent roles
|
|
Owner (
Editor (
Viewer (
Compute Network Admin (
Security Admin (
Security Reviewer (
Service Class User (
Service Automation Service Producer Admin ( Service agent roles
|
|
Owner (
Editor (
Compute Network Admin (
Service Automation Service Producer Admin ( Service agent roles
|
|
Owner (
Editor (
Compute Network Admin (
Service Class User (
Service Automation Service Producer Admin ( Service agent roles
|
|
Owner (
Editor (
Compute Network Admin (
Service Automation Service Producer Admin ( Service agent roles
|
|
Owner (
Editor (
Compute Network Admin (
Service Automation Service Producer Admin ( Service agent roles
|
|
Owner (
Editor (
Viewer (
Compute Network Admin (
Service Automation Service Producer Admin ( Service agent roles
|
|
Owner (
Editor (
Viewer (
Compute Network Admin (
Security Admin (
Security Reviewer (
Service Automation Service Producer Admin ( Service agent roles
|
|
Owner (
Editor (
Compute Network Admin (
Service Automation Service Producer Admin ( Service agent roles
|
|
Owner (
Editor (
Compute Network Admin (
Service Automation Consumer Network Admin ( Service agent roles
|
|
Owner (
Editor (
Compute Network Admin (
Service Automation Consumer Network Admin ( Service agent roles
|
|
Owner (
Editor (
Viewer (
Compute Network Admin (
Service Automation Consumer Network Admin ( Service agent roles
|
|
Owner (
Editor (
Viewer (
Compute Network Admin (
Security Admin (
Security Reviewer (
Service Automation Consumer Network Admin (
Cloud Memorystore Redis Admin ( Service agent roles
|
|
Owner (
Editor (
Compute Network Admin (
Service Automation Consumer Network Admin ( Service agent roles
|
|
Owner (
Editor (
Hub & Spoke Admin (
Spoke Admin ( |
|
Owner (
Editor (
Hub & Spoke Admin (
Spoke Admin ( |
|
Owner (
Editor (
Viewer (
Group Admin (
Hub & Spoke Admin (
Hub & Spoke Viewer (
Spoke Admin ( |
|
Owner (
Editor (
Viewer (
Security Admin (
Security Reviewer (
Group Admin (
Hub & Spoke Admin (
Hub & Spoke Viewer (
Spoke Admin ( |
|
Owner (
Editor (
Viewer (
Security Admin (
Security Reviewer (
Group Admin (
Hub & Spoke Admin (
Hub & Spoke Viewer (
Spoke Admin ( |
|
Owner (
Security Admin (
Hub & Spoke Admin (
Spoke Admin ( |
|
Owner (
Editor (
Hub & Spoke Admin (
Spoke Admin ( |