Proper roles/permissions required to create VPC Access connector

44 views
Skip to first unread message

Konstantin Boyandin

unread,
Oct 26, 2021, 10:27:03 AM10/26/21
to gce-discussion
Hello,

Can someone advise which permission(s)/role(s) shall be used for a service account to create VPC Access connectors?

Assigning  roles/compute.networkAdmin didn't help.

Thanks.

Hao Zhang

unread,
Oct 26, 2021, 7:09:09 PM10/26/21
to gce-discussion
Hello,

Based on the documentation,  you have to grant the service account Serverless VPC Access Service Agent role.

Konstantin Boyandin

unread,
Oct 27, 2021, 3:57:30 AM10/27/21
to gce-discussion
I am afraid that doesn't help.

Adding the service account to "roles/vpcaccess.serviceAgent" changed nothing:

Error: Error creating Connector: googleapi: Error 403: The caller does not have permission

Konstantin Boyandin

unread,
Oct 27, 2021, 4:14:01 AM10/27/21
to gce-discussion
I had to assign roles/vpcaccess.admin to allow connector creation. Thanks for reference anyway.

Ahmad P - Cloud Platform Support

unread,
Oct 27, 2021, 10:20:04 AM10/27/21
to gce-discussion
Thank you for shared information.
Reply all
Reply to author
Forward
0 new messages