Proper roles/permissions required to create VPC Access connector
1,867 views
Skip to first unread message
Konstantin Boyandin
Oct 26, 2021, 10:27:03 AM10/26/21
to gce-discussion
Hello,
Can someone advise which permission(s)/role(s) shall be used for a service account to create VPC Access connectors?
Assigning roles/compute.networkAdmin didn't help.
Thanks.
Can someone advise which permission(s)/role(s) shall be used for a service account to create VPC Access connectors?
Assigning roles/compute.networkAdmin didn't help.
Thanks.
Hao Zhang
Oct 26, 2021, 7:09:09 PM10/26/21
to gce-discussion
Hello,
Based on the documentation, you have to grant the service account Serverless VPC Access Service Agent role.
Konstantin Boyandin
Oct 27, 2021, 3:57:30 AM10/27/21
to gce-discussion
I am afraid that doesn't help.
Adding the service account to "roles/vpcaccess.serviceAgent" changed nothing:
Error: Error creating Connector: googleapi: Error 403: The caller does not have permission
Adding the service account to "roles/vpcaccess.serviceAgent" changed nothing:
Error: Error creating Connector: googleapi: Error 403: The caller does not have permission
Konstantin Boyandin
Oct 27, 2021, 4:14:01 AM10/27/21
to gce-discussion
I had to assign roles/vpcaccess.admin to allow connector creation. Thanks for reference anyway.
Ahmad P - Cloud Platform Support
Oct 27, 2021, 10:20:04 AM10/27/21
to gce-discussion
Thank you for shared information.
Reply all
Reply to author
Forward
0 new messages