이 페이지의 일부 또는 모든 정보는 Trusted Cloud by S3NS에 적용되지 않을 수 있습니다. 자세한 내용은 Google Cloud와의 차이점을 참조하세요.

Google Security Operations 서비스 관리 역할 및 권한

이 페이지에는 Google Security Operations 서비스 관리의 IAM 역할과 권한이 나와 있습니다. 모든 역할과 권한을 검색하려면 역할 및 권한 색인을 참조하세요.

Google Security Operations 서비스 관리 역할

Role Permissions

Role	Permissions
Chronicle Service Admin (`roles/chroniclesm.admin`) Admins can view and modify Chronicle service details.	`chroniclesm.*` `chroniclesm.gcpAssociations.create` `chroniclesm.gcpAssociations.delete` `chroniclesm.gcpAssociations.get` `chroniclesm.gcpAssociations.list` `chroniclesm.gcpLogFlowFilters.get` `chroniclesm.gcpLogFlowFilters.update` `chroniclesm.gcpSettings.get` `chroniclesm.gcpSettings.update`
Chronicle Service Viewer (`roles/chroniclesm.viewer`) Viewers can see Chronicle service details but not change them.	`chroniclesm.gcpAssociations.get` `chroniclesm.gcpAssociations.list` `chroniclesm.gcpLogFlowFilters.get` `chroniclesm.gcpSettings.get`

Chronicle Service Admin

(roles/chroniclesm.admin)

Admins can view and modify Chronicle service details.

chroniclesm.*

chroniclesm.gcpAssociations.create
chroniclesm.gcpAssociations.delete
chroniclesm.gcpAssociations.get
chroniclesm.gcpAssociations.list
chroniclesm.gcpLogFlowFilters.get
chroniclesm.gcpLogFlowFilters.update
chroniclesm.gcpSettings.get
chroniclesm.gcpSettings.update

Chronicle Service Viewer

(roles/chroniclesm.viewer)

Viewers can see Chronicle service details but not change them.

chroniclesm.gcpAssociations.get

chroniclesm.gcpAssociations.list

chroniclesm.gcpLogFlowFilters.get

chroniclesm.gcpSettings.get

Google Security Operations 서비스 관리 권한

권한	역할에 포함됨
`chroniclesm.gcpAssociations.create`	소유자(`roles/owner`) Chronicle 서비스 관리자(`roles/chroniclesm.admin`)
`chroniclesm.gcpAssociations.delete`	소유자(`roles/owner`) Chronicle 서비스 관리자(`roles/chroniclesm.admin`)
`chroniclesm.gcpAssociations.get`	소유자(`roles/owner`) 편집자(`roles/editor`) 뷰어 (`roles/viewer`) Chronicle 서비스 관리자(`roles/chroniclesm.admin`) Chronicle 서비스 뷰어(`roles/chroniclesm.viewer`)
`chroniclesm.gcpAssociations.list`	소유자(`roles/owner`) 편집자(`roles/editor`) 뷰어 (`roles/viewer`) Chronicle 서비스 관리자(`roles/chroniclesm.admin`) Chronicle 서비스 뷰어(`roles/chroniclesm.viewer`) 보안 관리자(`roles/iam.securityAdmin`) 보안 검토자(`roles/iam.securityReviewer`)
`chroniclesm.gcpLogFlowFilters.get`	소유자(`roles/owner`) 편집자(`roles/editor`) 뷰어 (`roles/viewer`) Chronicle 서비스 관리자(`roles/chroniclesm.admin`) Chronicle 서비스 뷰어(`roles/chroniclesm.viewer`)
`chroniclesm.gcpLogFlowFilters.update`	소유자(`roles/owner`) 편집자(`roles/editor`) Chronicle 서비스 관리자(`roles/chroniclesm.admin`)
`chroniclesm.gcpSettings.get`	소유자(`roles/owner`) 편집자(`roles/editor`) 뷰어 (`roles/viewer`) Chronicle 서비스 관리자(`roles/chroniclesm.admin`) Chronicle 서비스 뷰어(`roles/chroniclesm.viewer`)
`chroniclesm.gcpSettings.update`	소유자(`roles/owner`) 편집자(`roles/editor`) Chronicle 서비스 관리자(`roles/chroniclesm.admin`)

Google Security Operations 서비스 관리 역할 및 권한

Google Security Operations 서비스 관리 역할

Chronicle Service Admin

Chronicle Service Viewer

Google Security Operations 서비스 관리 권한

`chroniclesm.gcpAssociations.create`

`chroniclesm.gcpAssociations.delete`

`chroniclesm.gcpAssociations.get`

`chroniclesm.gcpAssociations.list`

`chroniclesm.gcpLogFlowFilters.get`

`chroniclesm.gcpLogFlowFilters.update`

`chroniclesm.gcpSettings.get`

`chroniclesm.gcpSettings.update`