Network Connectivity Center roles and permissions

This page lists the IAM roles and permissions for Network Connectivity Center. To search through all roles and permissions, see the role and permission index.

Network Connectivity Center roles

Role Permissions

(roles/networkconnectivity.consumerNetworkAdmin)

Service Automation Consumer Network Admin is responsible for setting up ServiceConnectionPolicies.

networkconnectivity.serviceConnectionPolicies.*

  • networkconnectivity.serviceConnectionPolicies.create
  • networkconnectivity.serviceConnectionPolicies.delete
  • networkconnectivity.serviceConnectionPolicies.get
  • networkconnectivity.serviceConnectionPolicies.list
  • networkconnectivity.serviceConnectionPolicies.update

resourcemanager.projects.get

resourcemanager.projects.list

(roles/networkconnectivity.groupAdmin)

Enables full access to group resources and read-only access to hub and spoke resources

networkconnectivity.gatewayAdvertisedRoutes.get

networkconnectivity.gatewayAdvertisedRoutes.list

networkconnectivity.groups.*

  • networkconnectivity.groups.acceptSpoke
  • networkconnectivity.groups.acceptSpokeUpdate
  • networkconnectivity.groups.get
  • networkconnectivity.groups.getIamPolicy
  • networkconnectivity.groups.list
  • networkconnectivity.groups.rejectSpoke
  • networkconnectivity.groups.rejectSpokeUpdate
  • networkconnectivity.groups.setIamPolicy
  • networkconnectivity.groups.use

networkconnectivity.hubRouteTables.get

networkconnectivity.hubRouteTables.getIamPolicy

networkconnectivity.hubRouteTables.list

networkconnectivity.hubRoutes.get

networkconnectivity.hubRoutes.getIamPolicy

networkconnectivity.hubRoutes.list

networkconnectivity.hubs.get

networkconnectivity.hubs.getIamPolicy

networkconnectivity.hubs.list

networkconnectivity.locations.*

  • networkconnectivity.locations.get
  • networkconnectivity.locations.list

networkconnectivity.operations.get

networkconnectivity.operations.list

networkconnectivity.spokes.get

networkconnectivity.spokes.getIamPolicy

networkconnectivity.spokes.list

resourcemanager.projects.get

resourcemanager.projects.list

(roles/networkconnectivity.groupUser)

Enables use access on group resources

networkconnectivity.groups.use

(roles/networkconnectivity.hubAdmin)

Enables full access to hub and spoke resources.

Lowest-level resources where you can grant this role:

  • Project

networkconnectivity.gatewayAdvertisedRoutes.*

  • networkconnectivity.gatewayAdvertisedRoutes.create
  • networkconnectivity.gatewayAdvertisedRoutes.delete
  • networkconnectivity.gatewayAdvertisedRoutes.get
  • networkconnectivity.gatewayAdvertisedRoutes.list
  • networkconnectivity.gatewayAdvertisedRoutes.update

networkconnectivity.groups.*

  • networkconnectivity.groups.acceptSpoke
  • networkconnectivity.groups.acceptSpokeUpdate
  • networkconnectivity.groups.get
  • networkconnectivity.groups.getIamPolicy
  • networkconnectivity.groups.list
  • networkconnectivity.groups.rejectSpoke
  • networkconnectivity.groups.rejectSpokeUpdate
  • networkconnectivity.groups.setIamPolicy
  • networkconnectivity.groups.use

networkconnectivity.hubRouteTables.*

  • networkconnectivity.hubRouteTables.get
  • networkconnectivity.hubRouteTables.getIamPolicy
  • networkconnectivity.hubRouteTables.list
  • networkconnectivity.hubRouteTables.setIamPolicy

networkconnectivity.hubRoutes.*

  • networkconnectivity.hubRoutes.get
  • networkconnectivity.hubRoutes.getIamPolicy
  • networkconnectivity.hubRoutes.list
  • networkconnectivity.hubRoutes.setIamPolicy

networkconnectivity.hubs.*

  • networkconnectivity.hubs.create
  • networkconnectivity.hubs.delete
  • networkconnectivity.hubs.get
  • networkconnectivity.hubs.getIamPolicy
  • networkconnectivity.hubs.list
  • networkconnectivity.hubs.listSpokes
  • networkconnectivity.hubs.queryStatus
  • networkconnectivity.hubs.setIamPolicy
  • networkconnectivity.hubs.update

networkconnectivity.locations.*

  • networkconnectivity.locations.get
  • networkconnectivity.locations.list

networkconnectivity.operations.*

  • networkconnectivity.operations.cancel
  • networkconnectivity.operations.delete
  • networkconnectivity.operations.get
  • networkconnectivity.operations.list

networkconnectivity.spokes.*

  • networkconnectivity.spokes.create
  • networkconnectivity.spokes.delete
  • networkconnectivity.spokes.get
  • networkconnectivity.spokes.getIamPolicy
  • networkconnectivity.spokes.list
  • networkconnectivity.spokes.setIamPolicy
  • networkconnectivity.spokes.update

resourcemanager.projects.get

resourcemanager.projects.list

(roles/networkconnectivity.hubViewer)

Enables read-only access to hub and spoke resources.

Lowest-level resources where you can grant this role:

  • Project

networkconnectivity.gatewayAdvertisedRoutes.get

networkconnectivity.gatewayAdvertisedRoutes.list

networkconnectivity.groups.get

networkconnectivity.groups.getIamPolicy

networkconnectivity.groups.list

networkconnectivity.hubRouteTables.get

networkconnectivity.hubRouteTables.getIamPolicy

networkconnectivity.hubRouteTables.list

networkconnectivity.hubRoutes.get

networkconnectivity.hubRoutes.getIamPolicy

networkconnectivity.hubRoutes.list

networkconnectivity.hubs.get

networkconnectivity.hubs.getIamPolicy

networkconnectivity.hubs.list

networkconnectivity.hubs.listSpokes

networkconnectivity.hubs.queryStatus

networkconnectivity.locations.*

  • networkconnectivity.locations.get
  • networkconnectivity.locations.list

networkconnectivity.spokes.get

networkconnectivity.spokes.getIamPolicy

networkconnectivity.spokes.list

resourcemanager.projects.get

resourcemanager.projects.list

(roles/networkconnectivity.regionalEndpointAdmin)

Full access to all Regional Endpoint resources.

networkconnectivity.regionalEndpoints.*

  • networkconnectivity.regionalEndpoints.create
  • networkconnectivity.regionalEndpoints.delete
  • networkconnectivity.regionalEndpoints.get
  • networkconnectivity.regionalEndpoints.list

resourcemanager.projects.get

resourcemanager.projects.list

(roles/networkconnectivity.regionalEndpointViewer)

Read-only access to all Regional Endpoint resources.

networkconnectivity.regionalEndpoints.get

networkconnectivity.regionalEndpoints.list

resourcemanager.projects.get

resourcemanager.projects.list

(roles/networkconnectivity.serviceAgent)

Grants the Network Connectivity API authority to read some networking resources. It does not mutate these resources.

compute.addresses.create

compute.addresses.createInternal

compute.addresses.delete

compute.addresses.deleteInternal

compute.addresses.get

compute.addresses.setLabels

compute.addresses.use

compute.forwardingRules.create

compute.forwardingRules.delete

compute.forwardingRules.get

compute.forwardingRules.pscCreate

compute.forwardingRules.pscDelete

compute.forwardingRules.pscSetLabels

compute.forwardingRules.pscUpdate

compute.forwardingRules.setLabels

compute.instances.get

compute.interconnectAttachments.get

compute.networks.get

compute.networks.use

compute.projects.get

compute.regionOperations.get

compute.routers.get

compute.subnetworks.get

compute.subnetworks.getIamPolicy

compute.subnetworks.list

compute.subnetworks.setIamPolicy

compute.subnetworks.use

compute.vpnTunnels.get

dns.managedZones.create

dns.networks.bindPrivateDNSZone

networkconnectivity.hubRouteTables.get

networkconnectivity.hubRouteTables.list

networkconnectivity.hubRoutes.get

networkconnectivity.hubRoutes.list

networkconnectivity.operations.get

servicedirectory.namespaces.associatePrivateZone

servicedirectory.namespaces.create

servicedirectory.namespaces.delete

servicedirectory.services.create

servicedirectory.services.delete

(roles/networkconnectivity.serviceClassUser)

Service Class User uses a ServiceClass

networkconnectivity.serviceClasses.get

networkconnectivity.serviceClasses.list

networkconnectivity.serviceClasses.use

resourcemanager.projects.get

resourcemanager.projects.list

(roles/networkconnectivity.serviceProducerAdmin)

Service Automation Producer Admin uses information from a consumer request to manage ServiceClasses and ServiceConnectionMaps

networkconnectivity.operations.get

networkconnectivity.operations.list

networkconnectivity.serviceClasses.*

  • networkconnectivity.serviceClasses.create
  • networkconnectivity.serviceClasses.delete
  • networkconnectivity.serviceClasses.get
  • networkconnectivity.serviceClasses.list
  • networkconnectivity.serviceClasses.update
  • networkconnectivity.serviceClasses.use

networkconnectivity.serviceConnectionMaps.*

  • networkconnectivity.serviceConnectionMaps.create
  • networkconnectivity.serviceConnectionMaps.delete
  • networkconnectivity.serviceConnectionMaps.get
  • networkconnectivity.serviceConnectionMaps.list
  • networkconnectivity.serviceConnectionMaps.update

resourcemanager.projects.get

resourcemanager.projects.list

(roles/networkconnectivity.spokeAdmin)

Enables full access to spoke resources and read-only access to hub resources.

Lowest-level resources where you can grant this role:

  • Project

networkconnectivity.gatewayAdvertisedRoutes.*

  • networkconnectivity.gatewayAdvertisedRoutes.create
  • networkconnectivity.gatewayAdvertisedRoutes.delete
  • networkconnectivity.gatewayAdvertisedRoutes.get
  • networkconnectivity.gatewayAdvertisedRoutes.list
  • networkconnectivity.gatewayAdvertisedRoutes.update

networkconnectivity.hubRouteTables.get

networkconnectivity.hubRouteTables.getIamPolicy

networkconnectivity.hubRouteTables.list

networkconnectivity.hubRoutes.get

networkconnectivity.hubRoutes.getIamPolicy

networkconnectivity.hubRoutes.list

networkconnectivity.hubs.get

networkconnectivity.hubs.getIamPolicy

networkconnectivity.hubs.list

networkconnectivity.locations.*

  • networkconnectivity.locations.get
  • networkconnectivity.locations.list

networkconnectivity.operations.get

networkconnectivity.operations.list

networkconnectivity.spokes.*

  • networkconnectivity.spokes.create
  • networkconnectivity.spokes.delete
  • networkconnectivity.spokes.get
  • networkconnectivity.spokes.getIamPolicy
  • networkconnectivity.spokes.list
  • networkconnectivity.spokes.setIamPolicy
  • networkconnectivity.spokes.update

resourcemanager.projects.get

resourcemanager.projects.list

Network Connectivity Center permissions

Permission Included in roles

Owner (roles/owner)

Editor (roles/editor)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Spoke Admin (roles/networkconnectivity.spokeAdmin)

Owner (roles/owner)

Editor (roles/editor)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Spoke Admin (roles/networkconnectivity.spokeAdmin)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Group Admin (roles/networkconnectivity.groupAdmin)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Hub & Spoke Viewer (roles/networkconnectivity.hubViewer)

Spoke Admin (roles/networkconnectivity.spokeAdmin)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Group Admin (roles/networkconnectivity.groupAdmin)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Hub & Spoke Viewer (roles/networkconnectivity.hubViewer)

Spoke Admin (roles/networkconnectivity.spokeAdmin)

Owner (roles/owner)

Editor (roles/editor)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Spoke Admin (roles/networkconnectivity.spokeAdmin)

Owner (roles/owner)

Editor (roles/editor)

Group Admin (roles/networkconnectivity.groupAdmin)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Owner (roles/owner)

Editor (roles/editor)

Group Admin (roles/networkconnectivity.groupAdmin)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Group Admin (roles/networkconnectivity.groupAdmin)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Hub & Spoke Viewer (roles/networkconnectivity.hubViewer)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Group Admin (roles/networkconnectivity.groupAdmin)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Hub & Spoke Viewer (roles/networkconnectivity.hubViewer)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Group Admin (roles/networkconnectivity.groupAdmin)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Hub & Spoke Viewer (roles/networkconnectivity.hubViewer)

Owner (roles/owner)

Editor (roles/editor)

Group Admin (roles/networkconnectivity.groupAdmin)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Owner (roles/owner)

Editor (roles/editor)

Group Admin (roles/networkconnectivity.groupAdmin)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Owner (roles/owner)

Security Admin (roles/iam.securityAdmin)

Group Admin (roles/networkconnectivity.groupAdmin)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Owner (roles/owner)

Editor (roles/editor)

Group Admin (roles/networkconnectivity.groupAdmin)

Group User (roles/networkconnectivity.groupUser)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Group Admin (roles/networkconnectivity.groupAdmin)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Hub & Spoke Viewer (roles/networkconnectivity.hubViewer)

Spoke Admin (roles/networkconnectivity.spokeAdmin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Group Admin (roles/networkconnectivity.groupAdmin)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Hub & Spoke Viewer (roles/networkconnectivity.hubViewer)

Spoke Admin (roles/networkconnectivity.spokeAdmin)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Group Admin (roles/networkconnectivity.groupAdmin)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Hub & Spoke Viewer (roles/networkconnectivity.hubViewer)

Spoke Admin (roles/networkconnectivity.spokeAdmin)

Service agent roles

Owner (roles/owner)

Security Admin (roles/iam.securityAdmin)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Group Admin (roles/networkconnectivity.groupAdmin)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Hub & Spoke Viewer (roles/networkconnectivity.hubViewer)

Spoke Admin (roles/networkconnectivity.spokeAdmin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Group Admin (roles/networkconnectivity.groupAdmin)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Hub & Spoke Viewer (roles/networkconnectivity.hubViewer)

Spoke Admin (roles/networkconnectivity.spokeAdmin)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Group Admin (roles/networkconnectivity.groupAdmin)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Hub & Spoke Viewer (roles/networkconnectivity.hubViewer)

Spoke Admin (roles/networkconnectivity.spokeAdmin)

Service agent roles

Owner (roles/owner)

Security Admin (roles/iam.securityAdmin)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Owner (roles/owner)

Editor (roles/editor)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Owner (roles/owner)

Editor (roles/editor)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Group Admin (roles/networkconnectivity.groupAdmin)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Hub & Spoke Viewer (roles/networkconnectivity.hubViewer)

Spoke Admin (roles/networkconnectivity.spokeAdmin)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Group Admin (roles/networkconnectivity.groupAdmin)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Hub & Spoke Viewer (roles/networkconnectivity.hubViewer)

Spoke Admin (roles/networkconnectivity.spokeAdmin)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Group Admin (roles/networkconnectivity.groupAdmin)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Hub & Spoke Viewer (roles/networkconnectivity.hubViewer)

Spoke Admin (roles/networkconnectivity.spokeAdmin)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Hub & Spoke Viewer (roles/networkconnectivity.hubViewer)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Hub & Spoke Viewer (roles/networkconnectivity.hubViewer)

Owner (roles/owner)

Security Admin (roles/iam.securityAdmin)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Owner (roles/owner)

Editor (roles/editor)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Owner (roles/owner)

Editor (roles/editor)

Compute Network Admin (roles/compute.networkAdmin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Compute Network Admin (roles/compute.networkAdmin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Compute Network Admin (roles/compute.networkAdmin)

Compute Network User (roles/compute.networkUser)

Compute Network Viewer (roles/compute.networkViewer)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Compute Network Admin (roles/compute.networkAdmin)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Compute Network Admin (roles/compute.networkAdmin)

Compute Network User (roles/compute.networkUser)

Compute Network Viewer (roles/compute.networkViewer)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Service agent roles

Owner (roles/owner)

Compute Network Admin (roles/compute.networkAdmin)

Security Admin (roles/iam.securityAdmin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Compute Network Admin (roles/compute.networkAdmin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Compute Network Admin (roles/compute.networkAdmin)

Compute Network User (roles/compute.networkUser)

Compute Network Viewer (roles/compute.networkViewer)

Group Admin (roles/networkconnectivity.groupAdmin)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Hub & Spoke Viewer (roles/networkconnectivity.hubViewer)

Spoke Admin (roles/networkconnectivity.spokeAdmin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Compute Network Admin (roles/compute.networkAdmin)

Compute Network User (roles/compute.networkUser)

Compute Network Viewer (roles/compute.networkViewer)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Group Admin (roles/networkconnectivity.groupAdmin)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Hub & Spoke Viewer (roles/networkconnectivity.hubViewer)

Spoke Admin (roles/networkconnectivity.spokeAdmin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Compute Network Admin (roles/compute.networkAdmin)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Compute Network Admin (roles/compute.networkAdmin)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Compute Network Admin (roles/compute.networkAdmin)

Compute Network User (roles/compute.networkUser)

Compute Network Viewer (roles/compute.networkViewer)

Group Admin (roles/networkconnectivity.groupAdmin)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Service Automation Service Producer Admin (roles/networkconnectivity.serviceProducerAdmin)

Spoke Admin (roles/networkconnectivity.spokeAdmin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Compute Network Admin (roles/compute.networkAdmin)

Compute Network User (roles/compute.networkUser)

Compute Network Viewer (roles/compute.networkViewer)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Group Admin (roles/networkconnectivity.groupAdmin)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Service Automation Service Producer Admin (roles/networkconnectivity.serviceProducerAdmin)

Spoke Admin (roles/networkconnectivity.spokeAdmin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Compute Network Admin (roles/compute.networkAdmin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Compute Network Admin (roles/compute.networkAdmin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Compute Network Admin (roles/compute.networkAdmin)

Compute Network User (roles/compute.networkUser)

Compute Network Viewer (roles/compute.networkViewer)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Compute Network Admin (roles/compute.networkAdmin)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Compute Network Admin (roles/compute.networkAdmin)

Compute Network User (roles/compute.networkUser)

Compute Network Viewer (roles/compute.networkViewer)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Service agent roles

Owner (roles/owner)

Compute Network Admin (roles/compute.networkAdmin)

Security Admin (roles/iam.securityAdmin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Compute Network Admin (roles/compute.networkAdmin)

Regional Endpoint Admin (roles/networkconnectivity.regionalEndpointAdmin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Compute Network Admin (roles/compute.networkAdmin)

Regional Endpoint Admin (roles/networkconnectivity.regionalEndpointAdmin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Compute Network Admin (roles/compute.networkAdmin)

Regional Endpoint Admin (roles/networkconnectivity.regionalEndpointAdmin)

Regional Endpoint Viewer (roles/networkconnectivity.regionalEndpointViewer)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Compute Network Admin (roles/compute.networkAdmin)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Regional Endpoint Admin (roles/networkconnectivity.regionalEndpointAdmin)

Regional Endpoint Viewer (roles/networkconnectivity.regionalEndpointViewer)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Compute Network Admin (roles/compute.networkAdmin)

Service Automation Service Producer Admin (roles/networkconnectivity.serviceProducerAdmin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Compute Network Admin (roles/compute.networkAdmin)

Service Automation Service Producer Admin (roles/networkconnectivity.serviceProducerAdmin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Compute Network Admin (roles/compute.networkAdmin)

Service Class User (roles/networkconnectivity.serviceClassUser)

Service Automation Service Producer Admin (roles/networkconnectivity.serviceProducerAdmin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Compute Network Admin (roles/compute.networkAdmin)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Service Class User (roles/networkconnectivity.serviceClassUser)

Service Automation Service Producer Admin (roles/networkconnectivity.serviceProducerAdmin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Compute Network Admin (roles/compute.networkAdmin)

Service Automation Service Producer Admin (roles/networkconnectivity.serviceProducerAdmin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Compute Network Admin (roles/compute.networkAdmin)

Service Class User (roles/networkconnectivity.serviceClassUser)

Service Automation Service Producer Admin (roles/networkconnectivity.serviceProducerAdmin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Compute Network Admin (roles/compute.networkAdmin)

Service Automation Service Producer Admin (roles/networkconnectivity.serviceProducerAdmin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Compute Network Admin (roles/compute.networkAdmin)

Service Automation Service Producer Admin (roles/networkconnectivity.serviceProducerAdmin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Compute Network Admin (roles/compute.networkAdmin)

Service Automation Service Producer Admin (roles/networkconnectivity.serviceProducerAdmin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Compute Network Admin (roles/compute.networkAdmin)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Service Automation Service Producer Admin (roles/networkconnectivity.serviceProducerAdmin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Compute Network Admin (roles/compute.networkAdmin)

Service Automation Service Producer Admin (roles/networkconnectivity.serviceProducerAdmin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Compute Network Admin (roles/compute.networkAdmin)

Service Automation Consumer Network Admin (roles/networkconnectivity.consumerNetworkAdmin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Compute Network Admin (roles/compute.networkAdmin)

Service Automation Consumer Network Admin (roles/networkconnectivity.consumerNetworkAdmin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Compute Network Admin (roles/compute.networkAdmin)

Service Automation Consumer Network Admin (roles/networkconnectivity.consumerNetworkAdmin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Compute Network Admin (roles/compute.networkAdmin)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Service Automation Consumer Network Admin (roles/networkconnectivity.consumerNetworkAdmin)

Cloud Memorystore Redis Admin (roles/redis.admin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Compute Network Admin (roles/compute.networkAdmin)

Service Automation Consumer Network Admin (roles/networkconnectivity.consumerNetworkAdmin)

Service agent roles

Owner (roles/owner)

Editor (roles/editor)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Spoke Admin (roles/networkconnectivity.spokeAdmin)

Owner (roles/owner)

Editor (roles/editor)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Spoke Admin (roles/networkconnectivity.spokeAdmin)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Group Admin (roles/networkconnectivity.groupAdmin)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Hub & Spoke Viewer (roles/networkconnectivity.hubViewer)

Spoke Admin (roles/networkconnectivity.spokeAdmin)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Group Admin (roles/networkconnectivity.groupAdmin)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Hub & Spoke Viewer (roles/networkconnectivity.hubViewer)

Spoke Admin (roles/networkconnectivity.spokeAdmin)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Group Admin (roles/networkconnectivity.groupAdmin)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Hub & Spoke Viewer (roles/networkconnectivity.hubViewer)

Spoke Admin (roles/networkconnectivity.spokeAdmin)

Owner (roles/owner)

Security Admin (roles/iam.securityAdmin)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Spoke Admin (roles/networkconnectivity.spokeAdmin)

Owner (roles/owner)

Editor (roles/editor)

Hub & Spoke Admin (roles/networkconnectivity.hubAdmin)

Spoke Admin (roles/networkconnectivity.spokeAdmin)