Se usó la API de Cloud Translation para traducir esta página.

Control de acceso con IAM

En esta página, se describe cómo usar Identity and Access Management (IAM) para administrar el acceso a los recursos de Colab Enterprise. Para administrar el acceso a otros recursos de Vertex AI, consulta Control de acceso de Vertex AI con IAM.

Controla el acceso a los notebooks con IAM

Puedes administrar el acceso a los notebooks de Colab Enterprise (archivos IPYNB) a nivel de proyecto o por notebook.

Para otorgar acceso a los notebooks a nivel del proyecto, asigna una o más funciones a una principal (usuario, grupo o cuenta de servicio).
Para otorgar acceso a un notebook específico, asigna uno o más roles a un director en el notebook. Para obtener más información, consulta Administra el acceso a un notebook.

Ejecutar código que interactúa con otros servicios de Google Cloud

El otorgamiento de acceso a un notebook se limita a los permisos específicos relacionados con la interacción con él. Por ejemplo, puedes otorgar la posibilidad de crear un notebook, escribir código en él o borrarlo.

Para ejecutar código que interactúe con otros servicios de Google Cloud , debes usar uno de los siguientes métodos:

Ejecuta código en un entorno de ejecución con credenciales de usuario final habilitadas. Esto significa que tu notebook tiene el mismo acceso a los servicios de Google Cloud que el usuario de la notebook.
Ejecuta código que autentique y autorice tu notebook para interactuar con los servicios de Google Cloud .

Para obtener más información, consulta Cómo ejecutar código que interactúa conGoogle Cloud.

Tipos de roles de IAM

Existen diferentes tipos de roles de IAM que se pueden usar en Colab Enterprise:

Los roles predefinidos te permiten otorgar un conjunto de permisos relacionados con tus recursos de Colab Enterprise a nivel del proyecto.
Los roles básicos (propietario, editor y visualizador) proporcionan control de acceso a tus recursos de Colab Enterprise a nivel del proyecto y son comunes para todos los servicios de Google Cloud.
Las funciones personalizadas te permiten elegir un conjunto de permisos específico, crear tu propia función con esos permisos y otorgarla a los usuarios en tu organización.

Para agregar, actualizar o quitar estos roles en tu proyecto de Colab Enterprise, consulta la documentación sobre cómo administrar el acceso a proyectos, carpetas y organizaciones.

Roles predefinidos para Colab Enterprise

Colab Enterprise es parte de Vertex AI, y los recursos de Colab Enterprise se administran a través de la API de Vertex AI. Por lo tanto, puedes otorgar a las principales acceso a los recursos de Colab Enterprise a través de los roles de Vertex AI.

La siguiente tabla incluye todos los roles predefinidos de Vertex AI.

Para usar roles predefinidos para operaciones comunes de Colab Enterprise, consulta Administrador de Colab Enterprise (roles/aiplatform.colabEnterpriseAdmin) y Usuario de Colab Enterprise (roles/aiplatform.colabEnterpriseUser).
Para conocer los roles relacionados con la administración del entorno de ejecución, consulta Administrador del entorno de ejecución del notebook (roles/aiplatform.notebookRuntimeAdmin) y Usuario del entorno de ejecución del notebook (roles/aiplatform.notebookRuntimeUser).
Administrador de Vertex AI (roles/aiplatform.admin), Usuario de Vertex AI (roles/aiplatform.user) y Visualizador de Vertex AI (roles/aiplatform.viewer) también incluyen permisos de Colab Enterprise.

Role Permissions

Role	Permissions
Vertex AI Administrator (`roles/aiplatform.admin`) Grants full access to all resources in Vertex AI	`aiplatform.*` `aiplatform.agentExamples.create` `aiplatform.agentExamples.delete` `aiplatform.agentExamples.get` `aiplatform.agentExamples.list` `aiplatform.agentExamples.update` `aiplatform.agents.create` `aiplatform.agents.delete` `aiplatform.agents.get` `aiplatform.agents.list` `aiplatform.agents.update` `aiplatform.annotationSpecs.create` `aiplatform.annotationSpecs.delete` `aiplatform.annotationSpecs.get` `aiplatform.annotationSpecs.list` `aiplatform.annotationSpecs.update` `aiplatform.annotations.create` `aiplatform.annotations.delete` `aiplatform.annotations.get` `aiplatform.annotations.list` `aiplatform.annotations.update` `aiplatform.apps.create` `aiplatform.apps.delete` `aiplatform.apps.get` `aiplatform.apps.list` `aiplatform.apps.update` `aiplatform.artifacts.create` `aiplatform.artifacts.delete` `aiplatform.artifacts.get` `aiplatform.artifacts.list` `aiplatform.artifacts.update` `aiplatform.batchPredictionJobs.cancel` `aiplatform.batchPredictionJobs.create` `aiplatform.batchPredictionJobs.delete` `aiplatform.batchPredictionJobs.get` `aiplatform.batchPredictionJobs.list` `aiplatform.cacheConfigs.get` `aiplatform.cacheConfigs.update` `aiplatform.cachedContents.create` `aiplatform.cachedContents.delete` `aiplatform.cachedContents.get` `aiplatform.cachedContents.list` `aiplatform.cachedContents.update` `aiplatform.consents.get` `aiplatform.consents.update` `aiplatform.contexts.addContextArtifactsAndExecutions` `aiplatform.contexts.addContextChildren` `aiplatform.contexts.create` `aiplatform.contexts.delete` `aiplatform.contexts.get` `aiplatform.contexts.list` `aiplatform.contexts.queryContextLineageSubgraph` `aiplatform.contexts.update` `aiplatform.customJobs.cancel` `aiplatform.customJobs.create` `aiplatform.customJobs.delete` `aiplatform.customJobs.get` `aiplatform.customJobs.list` `aiplatform.dataItems.create` `aiplatform.dataItems.delete` `aiplatform.dataItems.get` `aiplatform.dataItems.list` `aiplatform.dataItems.update` `aiplatform.dataLabelingJobs.cancel` `aiplatform.dataLabelingJobs.create` `aiplatform.dataLabelingJobs.delete` `aiplatform.dataLabelingJobs.get` `aiplatform.dataLabelingJobs.list` `aiplatform.datasetVersions.create` `aiplatform.datasetVersions.delete` `aiplatform.datasetVersions.get` `aiplatform.datasetVersions.list` `aiplatform.datasetVersions.restore` `aiplatform.datasets.create` `aiplatform.datasets.delete` `aiplatform.datasets.export` `aiplatform.datasets.get` `aiplatform.datasets.import` `aiplatform.datasets.list` `aiplatform.datasets.update` `aiplatform.deploymentResourcePools.create` `aiplatform.deploymentResourcePools.delete` `aiplatform.deploymentResourcePools.get` `aiplatform.deploymentResourcePools.list` `aiplatform.deploymentResourcePools.queryDeployedModels` `aiplatform.deploymentResourcePools.update` `aiplatform.edgeDeploymentJobs.create` `aiplatform.edgeDeploymentJobs.delete` `aiplatform.edgeDeploymentJobs.get` `aiplatform.edgeDeploymentJobs.list` `aiplatform.edgeDeviceDebugInfo.get` `aiplatform.edgeDevices.create` `aiplatform.edgeDevices.delete` `aiplatform.edgeDevices.get` `aiplatform.edgeDevices.list` `aiplatform.edgeDevices.update` `aiplatform.endpoints.create` `aiplatform.endpoints.delete` `aiplatform.endpoints.deploy` `aiplatform.endpoints.explain` `aiplatform.endpoints.get` `aiplatform.endpoints.getIamPolicy` `aiplatform.endpoints.list` `aiplatform.endpoints.predict` `aiplatform.endpoints.setIamPolicy` `aiplatform.endpoints.undeploy` `aiplatform.endpoints.update` `aiplatform.entityTypes.create` `aiplatform.entityTypes.delete` `aiplatform.entityTypes.deleteFeatureValues` `aiplatform.entityTypes.exportFeatureValues` `aiplatform.entityTypes.get` `aiplatform.entityTypes.getIamPolicy` `aiplatform.entityTypes.importFeatureValues` `aiplatform.entityTypes.list` `aiplatform.entityTypes.readFeatureValues` `aiplatform.entityTypes.setIamPolicy` `aiplatform.entityTypes.streamingReadFeatureValues` `aiplatform.entityTypes.update` `aiplatform.entityTypes.writeFeatureValues` `aiplatform.executions.addExecutionEvents` `aiplatform.executions.create` `aiplatform.executions.delete` `aiplatform.executions.get` `aiplatform.executions.list` `aiplatform.executions.queryExecutionInputsAndOutputs` `aiplatform.executions.update` `aiplatform.extensions.delete` `aiplatform.extensions.execute` `aiplatform.extensions.get` `aiplatform.extensions.import` `aiplatform.extensions.list` `aiplatform.extensions.update` `aiplatform.featureGroups.create` `aiplatform.featureGroups.delete` `aiplatform.featureGroups.get` `aiplatform.featureGroups.list` `aiplatform.featureGroups.update` `aiplatform.featureOnlineStores.create` `aiplatform.featureOnlineStores.delete` `aiplatform.featureOnlineStores.get` `aiplatform.featureOnlineStores.getIamPolicy` `aiplatform.featureOnlineStores.list` `aiplatform.featureOnlineStores.setIamPolicy` `aiplatform.featureOnlineStores.update` `aiplatform.featureViewSyncs.get` `aiplatform.featureViewSyncs.list` `aiplatform.featureViews.create` `aiplatform.featureViews.delete` `aiplatform.featureViews.fetchFeatureValues` `aiplatform.featureViews.get` `aiplatform.featureViews.getIamPolicy` `aiplatform.featureViews.list` `aiplatform.featureViews.searchNearestEntities` `aiplatform.featureViews.setIamPolicy` `aiplatform.featureViews.sync` `aiplatform.featureViews.update` `aiplatform.features.create` `aiplatform.features.delete` `aiplatform.features.get` `aiplatform.features.list` `aiplatform.features.update` `aiplatform.featurestores.batchReadFeatureValues` `aiplatform.featurestores.create` `aiplatform.featurestores.delete` `aiplatform.featurestores.exportFeatures` `aiplatform.featurestores.get` `aiplatform.featurestores.getIamPolicy` `aiplatform.featurestores.importFeatures` `aiplatform.featurestores.list` `aiplatform.featurestores.readFeatures` `aiplatform.featurestores.setIamPolicy` `aiplatform.featurestores.update` `aiplatform.featurestores.writeFeatures` `aiplatform.humanInTheLoops.cancel` `aiplatform.humanInTheLoops.create` `aiplatform.humanInTheLoops.delete` `aiplatform.humanInTheLoops.get` `aiplatform.humanInTheLoops.list` `aiplatform.humanInTheLoops.queryAnnotationStats` `aiplatform.humanInTheLoops.send` `aiplatform.humanInTheLoops.update` `aiplatform.hyperparameterTuningJobs.cancel` `aiplatform.hyperparameterTuningJobs.create` `aiplatform.hyperparameterTuningJobs.delete` `aiplatform.hyperparameterTuningJobs.get` `aiplatform.hyperparameterTuningJobs.list` `aiplatform.indexEndpoints.create` `aiplatform.indexEndpoints.delete` `aiplatform.indexEndpoints.deploy` `aiplatform.indexEndpoints.get` `aiplatform.indexEndpoints.list` `aiplatform.indexEndpoints.queryVectors` `aiplatform.indexEndpoints.undeploy` `aiplatform.indexEndpoints.update` `aiplatform.indexes.create` `aiplatform.indexes.delete` `aiplatform.indexes.get` `aiplatform.indexes.list` `aiplatform.indexes.update` `aiplatform.locations.evaluateInstances` `aiplatform.locations.get` `aiplatform.locations.list` `aiplatform.metadataSchemas.create` `aiplatform.metadataSchemas.delete` `aiplatform.metadataSchemas.get` `aiplatform.metadataSchemas.list` `aiplatform.metadataStores.create` `aiplatform.metadataStores.delete` `aiplatform.metadataStores.get` `aiplatform.metadataStores.list` `aiplatform.migratableResources.migrate` `aiplatform.migratableResources.search` `aiplatform.modelDeploymentMonitoringJobs.create` `aiplatform.modelDeploymentMonitoringJobs.delete` `aiplatform.modelDeploymentMonitoringJobs.get` `aiplatform.modelDeploymentMonitoringJobs.list` `aiplatform.modelDeploymentMonitoringJobs.pause` `aiplatform.modelDeploymentMonitoringJobs.resume` `aiplatform.modelDeploymentMonitoringJobs.searchStatsAnomalies` `aiplatform.modelDeploymentMonitoringJobs.update` `aiplatform.modelEvaluationSlices.get` `aiplatform.modelEvaluationSlices.import` `aiplatform.modelEvaluationSlices.list` `aiplatform.modelEvaluations.exportEvaluatedDataItems` `aiplatform.modelEvaluations.get` `aiplatform.modelEvaluations.import` `aiplatform.modelEvaluations.list` `aiplatform.modelMonitoringJobs.create` `aiplatform.modelMonitoringJobs.delete` `aiplatform.modelMonitoringJobs.get` `aiplatform.modelMonitoringJobs.list` `aiplatform.modelMonitors.create` `aiplatform.modelMonitors.delete` `aiplatform.modelMonitors.get` `aiplatform.modelMonitors.list` `aiplatform.modelMonitors.searchModelMonitoringAlerts` `aiplatform.modelMonitors.searchModelMonitoringStats` `aiplatform.modelMonitors.update` `aiplatform.models.delete` `aiplatform.models.export` `aiplatform.models.get` `aiplatform.models.list` `aiplatform.models.update` `aiplatform.models.upload` `aiplatform.nasJobs.cancel` `aiplatform.nasJobs.create` `aiplatform.nasJobs.delete` `aiplatform.nasJobs.get` `aiplatform.nasJobs.list` `aiplatform.nasTrialDetails.get` `aiplatform.nasTrialDetails.list` `aiplatform.notebookExecutionJobs.create` `aiplatform.notebookExecutionJobs.delete` `aiplatform.notebookExecutionJobs.get` `aiplatform.notebookExecutionJobs.list` `aiplatform.notebookRuntimeTemplates.apply` `aiplatform.notebookRuntimeTemplates.create` `aiplatform.notebookRuntimeTemplates.delete` `aiplatform.notebookRuntimeTemplates.get` `aiplatform.notebookRuntimeTemplates.getIamPolicy` `aiplatform.notebookRuntimeTemplates.list` `aiplatform.notebookRuntimeTemplates.setIamPolicy` `aiplatform.notebookRuntimeTemplates.update` `aiplatform.notebookRuntimes.assign` `aiplatform.notebookRuntimes.delete` `aiplatform.notebookRuntimes.get` `aiplatform.notebookRuntimes.list` `aiplatform.notebookRuntimes.start` `aiplatform.notebookRuntimes.update` `aiplatform.notebookRuntimes.upgrade` `aiplatform.operations.list` `aiplatform.persistentResources.create` `aiplatform.persistentResources.delete` `aiplatform.persistentResources.get` `aiplatform.persistentResources.list` `aiplatform.pipelineJobs.cancel` `aiplatform.pipelineJobs.create` `aiplatform.pipelineJobs.delete` `aiplatform.pipelineJobs.get` `aiplatform.pipelineJobs.list` `aiplatform.provisionedThroughputs.create` `aiplatform.provisionedThroughputs.list` `aiplatform.ragCorpora.create` `aiplatform.ragCorpora.delete` `aiplatform.ragCorpora.get` `aiplatform.ragCorpora.list` `aiplatform.ragCorpora.query` `aiplatform.ragCorpora.update` `aiplatform.ragFiles.delete` `aiplatform.ragFiles.get` `aiplatform.ragFiles.import` `aiplatform.ragFiles.list` `aiplatform.ragFiles.upload` `aiplatform.reasoningEngines.create` `aiplatform.reasoningEngines.delete` `aiplatform.reasoningEngines.get` `aiplatform.reasoningEngines.list` `aiplatform.reasoningEngines.query` `aiplatform.reasoningEngines.update` `aiplatform.schedules.create` `aiplatform.schedules.delete` `aiplatform.schedules.get` `aiplatform.schedules.list` `aiplatform.schedules.update` `aiplatform.sessions.get` `aiplatform.sessions.list` `aiplatform.sessions.run` `aiplatform.specialistPools.create` `aiplatform.specialistPools.delete` `aiplatform.specialistPools.get` `aiplatform.specialistPools.list` `aiplatform.specialistPools.update` `aiplatform.studies.create` `aiplatform.studies.delete` `aiplatform.studies.get` `aiplatform.studies.list` `aiplatform.studies.update` `aiplatform.tensorboardExperiments.create` `aiplatform.tensorboardExperiments.delete` `aiplatform.tensorboardExperiments.get` `aiplatform.tensorboardExperiments.list` `aiplatform.tensorboardExperiments.update` `aiplatform.tensorboardExperiments.write` `aiplatform.tensorboardRuns.batchCreate` `aiplatform.tensorboardRuns.create` `aiplatform.tensorboardRuns.delete` `aiplatform.tensorboardRuns.get` `aiplatform.tensorboardRuns.list` `aiplatform.tensorboardRuns.update` `aiplatform.tensorboardRuns.write` `aiplatform.tensorboardTimeSeries.batchCreate` `aiplatform.tensorboardTimeSeries.batchRead` `aiplatform.tensorboardTimeSeries.create` `aiplatform.tensorboardTimeSeries.delete` `aiplatform.tensorboardTimeSeries.get` `aiplatform.tensorboardTimeSeries.list` `aiplatform.tensorboardTimeSeries.read` `aiplatform.tensorboardTimeSeries.update` `aiplatform.tensorboards.create` `aiplatform.tensorboards.delete` `aiplatform.tensorboards.get` `aiplatform.tensorboards.list` `aiplatform.tensorboards.recordAccess` `aiplatform.tensorboards.update` `aiplatform.trainingPipelines.cancel` `aiplatform.trainingPipelines.create` `aiplatform.trainingPipelines.delete` `aiplatform.trainingPipelines.get` `aiplatform.trainingPipelines.list` `aiplatform.trials.create` `aiplatform.trials.delete` `aiplatform.trials.get` `aiplatform.trials.list` `aiplatform.trials.update` `aiplatform.tuningJobs.cancel` `aiplatform.tuningJobs.create` `aiplatform.tuningJobs.delete` `aiplatform.tuningJobs.get` `aiplatform.tuningJobs.list` `aiplatform.tuningJobs.vertexTune` `resourcemanager.projects.get` `resourcemanager.projects.list`
Colab Enterprise Admin (`roles/aiplatform.colabEnterpriseAdmin`) Admin role of using colab enterprise.	`aiplatform.notebookExecutionJobs.` `aiplatform.notebookExecutionJobs.create` `aiplatform.notebookExecutionJobs.delete` `aiplatform.notebookExecutionJobs.get` `aiplatform.notebookExecutionJobs.list` `aiplatform.notebookRuntimeTemplates.` `aiplatform.notebookRuntimeTemplates.apply` `aiplatform.notebookRuntimeTemplates.create` `aiplatform.notebookRuntimeTemplates.delete` `aiplatform.notebookRuntimeTemplates.get` `aiplatform.notebookRuntimeTemplates.getIamPolicy` `aiplatform.notebookRuntimeTemplates.list` `aiplatform.notebookRuntimeTemplates.setIamPolicy` `aiplatform.notebookRuntimeTemplates.update` `aiplatform.notebookRuntimes.` `aiplatform.notebookRuntimes.assign` `aiplatform.notebookRuntimes.delete` `aiplatform.notebookRuntimes.get` `aiplatform.notebookRuntimes.list` `aiplatform.notebookRuntimes.start` `aiplatform.notebookRuntimes.update` `aiplatform.notebookRuntimes.upgrade` `aiplatform.operations.list` `aiplatform.pipelineJobs.create` `aiplatform.schedules.` `aiplatform.schedules.create` `aiplatform.schedules.delete` `aiplatform.schedules.get` `aiplatform.schedules.list` `aiplatform.schedules.update` `compute.reservations.get` `compute.reservations.list` `dataform.*` `dataform.compilationResults.create` `dataform.compilationResults.get` `dataform.compilationResults.list` `dataform.compilationResults.query` `dataform.config.get` `dataform.config.update` `dataform.locations.get` `dataform.locations.list` `dataform.releaseConfigs.create` `dataform.releaseConfigs.delete` `dataform.releaseConfigs.get` `dataform.releaseConfigs.list` `dataform.releaseConfigs.update` `dataform.repositories.commit` `dataform.repositories.computeAccessTokenStatus` `dataform.repositories.create` `dataform.repositories.delete` `dataform.repositories.fetchHistory` `dataform.repositories.fetchRemoteBranches` `dataform.repositories.get` `dataform.repositories.getIamPolicy` `dataform.repositories.list` `dataform.repositories.queryDirectoryContents` `dataform.repositories.readFile` `dataform.repositories.setIamPolicy` `dataform.repositories.update` `dataform.workflowConfigs.create` `dataform.workflowConfigs.delete` `dataform.workflowConfigs.get` `dataform.workflowConfigs.list` `dataform.workflowConfigs.update` `dataform.workflowInvocations.cancel` `dataform.workflowInvocations.create` `dataform.workflowInvocations.delete` `dataform.workflowInvocations.get` `dataform.workflowInvocations.list` `dataform.workflowInvocations.query` `dataform.workspaces.commit` `dataform.workspaces.create` `dataform.workspaces.delete` `dataform.workspaces.fetchFileDiff` `dataform.workspaces.fetchFileGitStatuses` `dataform.workspaces.fetchGitAheadBehind` `dataform.workspaces.get` `dataform.workspaces.getIamPolicy` `dataform.workspaces.installNpmPackages` `dataform.workspaces.list` `dataform.workspaces.makeDirectory` `dataform.workspaces.moveDirectory` `dataform.workspaces.moveFile` `dataform.workspaces.pull` `dataform.workspaces.push` `dataform.workspaces.queryDirectoryContents` `dataform.workspaces.readFile` `dataform.workspaces.removeDirectory` `dataform.workspaces.removeFile` `dataform.workspaces.reset` `dataform.workspaces.searchFiles` `dataform.workspaces.setIamPolicy` `dataform.workspaces.writeFile` `resourcemanager.projects.get` `resourcemanager.projects.list`
Colab Enterprise User (`roles/aiplatform.colabEnterpriseUser`) User role of using colab enterprise.	`aiplatform.notebookExecutionJobs.` `aiplatform.notebookExecutionJobs.create` `aiplatform.notebookExecutionJobs.delete` `aiplatform.notebookExecutionJobs.get` `aiplatform.notebookExecutionJobs.list` `aiplatform.notebookRuntimeTemplates.apply` `aiplatform.notebookRuntimeTemplates.get` `aiplatform.notebookRuntimeTemplates.getIamPolicy` `aiplatform.notebookRuntimeTemplates.list` `aiplatform.notebookRuntimes.assign` `aiplatform.notebookRuntimes.get` `aiplatform.notebookRuntimes.list` `aiplatform.operations.list` `aiplatform.pipelineJobs.create` `aiplatform.schedules.` `aiplatform.schedules.create` `aiplatform.schedules.delete` `aiplatform.schedules.get` `aiplatform.schedules.list` `aiplatform.schedules.update` `dataform.locations.*` `dataform.locations.get` `dataform.locations.list` `dataform.repositories.create` `dataform.repositories.list` `resourcemanager.projects.get` `resourcemanager.projects.list`
Vertex AI Feature Store EntityType owner (`roles/aiplatform.entityTypeOwner`) Provides full access to all permissions for a particular entity type resource. Lowest-level resources where you can grant this role: Entity type	`aiplatform.entityTypes.delete` `aiplatform.entityTypes.deleteFeatureValues` `aiplatform.entityTypes.exportFeatureValues` `aiplatform.entityTypes.get` `aiplatform.entityTypes.getIamPolicy` `aiplatform.entityTypes.importFeatureValues` `aiplatform.entityTypes.readFeatureValues` `aiplatform.entityTypes.setIamPolicy` `aiplatform.entityTypes.streamingReadFeatureValues` `aiplatform.entityTypes.update` `aiplatform.entityTypes.writeFeatureValues` `aiplatform.featureGroups.get` `aiplatform.featureGroups.list` `aiplatform.featureOnlineStores.get` `aiplatform.featureOnlineStores.list` `aiplatform.featureViewSyncs.` `aiplatform.featureViewSyncs.get` `aiplatform.featureViewSyncs.list` `aiplatform.featureViews.fetchFeatureValues` `aiplatform.featureViews.get` `aiplatform.featureViews.list` `aiplatform.featureViews.searchNearestEntities` `aiplatform.features.` `aiplatform.features.create` `aiplatform.features.delete` `aiplatform.features.get` `aiplatform.features.list` `aiplatform.features.update` `aiplatform.featurestores.batchReadFeatureValues` `resourcemanager.projects.get` `resourcemanager.projects.list`
Vertex AI Platform Express Admin ^Beta (`roles/aiplatform.expressAdmin`) Grants admin access to Vertex AI Express	`aiplatform.datasetVersions.*` `aiplatform.datasetVersions.create` `aiplatform.datasetVersions.delete` `aiplatform.datasetVersions.get` `aiplatform.datasetVersions.list` `aiplatform.datasetVersions.restore` `aiplatform.datasets.create` `aiplatform.datasets.delete` `aiplatform.datasets.get` `aiplatform.datasets.list` `aiplatform.datasets.update` `aiplatform.endpoints.predict` `aiplatform.locations.evaluateInstances`
Vertex AI Platform Express User ^Beta (`roles/aiplatform.expressUser`) Grants user access to Vertex AI Express	`aiplatform.endpoints.predict`
Vertex AI Feature Store Admin (`roles/aiplatform.featurestoreAdmin`) Grants full access to all resources in Vertex AI Feature Store Lowest-level resources where you can grant this role: Entity type	`aiplatform.entityTypes.` `aiplatform.entityTypes.create` `aiplatform.entityTypes.delete` `aiplatform.entityTypes.deleteFeatureValues` `aiplatform.entityTypes.exportFeatureValues` `aiplatform.entityTypes.get` `aiplatform.entityTypes.getIamPolicy` `aiplatform.entityTypes.importFeatureValues` `aiplatform.entityTypes.list` `aiplatform.entityTypes.readFeatureValues` `aiplatform.entityTypes.setIamPolicy` `aiplatform.entityTypes.streamingReadFeatureValues` `aiplatform.entityTypes.update` `aiplatform.entityTypes.writeFeatureValues` `aiplatform.featureGroups.` `aiplatform.featureGroups.create` `aiplatform.featureGroups.delete` `aiplatform.featureGroups.get` `aiplatform.featureGroups.list` `aiplatform.featureGroups.update` `aiplatform.featureOnlineStores.` `aiplatform.featureOnlineStores.create` `aiplatform.featureOnlineStores.delete` `aiplatform.featureOnlineStores.get` `aiplatform.featureOnlineStores.getIamPolicy` `aiplatform.featureOnlineStores.list` `aiplatform.featureOnlineStores.setIamPolicy` `aiplatform.featureOnlineStores.update` `aiplatform.featureViewSyncs.` `aiplatform.featureViewSyncs.get` `aiplatform.featureViewSyncs.list` `aiplatform.featureViews.` `aiplatform.featureViews.create` `aiplatform.featureViews.delete` `aiplatform.featureViews.fetchFeatureValues` `aiplatform.featureViews.get` `aiplatform.featureViews.getIamPolicy` `aiplatform.featureViews.list` `aiplatform.featureViews.searchNearestEntities` `aiplatform.featureViews.setIamPolicy` `aiplatform.featureViews.sync` `aiplatform.featureViews.update` `aiplatform.features.` `aiplatform.features.create` `aiplatform.features.delete` `aiplatform.features.get` `aiplatform.features.list` `aiplatform.features.update` `aiplatform.featurestores.*` `aiplatform.featurestores.batchReadFeatureValues` `aiplatform.featurestores.create` `aiplatform.featurestores.delete` `aiplatform.featurestores.exportFeatures` `aiplatform.featurestores.get` `aiplatform.featurestores.getIamPolicy` `aiplatform.featurestores.importFeatures` `aiplatform.featurestores.list` `aiplatform.featurestores.readFeatures` `aiplatform.featurestores.setIamPolicy` `aiplatform.featurestores.update` `aiplatform.featurestores.writeFeatures` `aiplatform.operations.list` `resourcemanager.projects.get` `resourcemanager.projects.list`
Vertex AI Feature Store Data Viewer (`roles/aiplatform.featurestoreDataViewer`) This role provides permissions to read Feature data. Lowest-level resources where you can grant this role: Entity type	`aiplatform.entityTypes.exportFeatureValues` `aiplatform.entityTypes.get` `aiplatform.entityTypes.readFeatureValues` `aiplatform.entityTypes.streamingReadFeatureValues` `aiplatform.featureGroups.get` `aiplatform.featureGroups.list` `aiplatform.featureOnlineStores.get` `aiplatform.featureOnlineStores.list` `aiplatform.featureViewSyncs.*` `aiplatform.featureViewSyncs.get` `aiplatform.featureViewSyncs.list` `aiplatform.featureViews.fetchFeatureValues` `aiplatform.featureViews.get` `aiplatform.featureViews.list` `aiplatform.featureViews.searchNearestEntities` `aiplatform.features.get` `aiplatform.features.list` `aiplatform.featurestores.batchReadFeatureValues` `resourcemanager.projects.get` `resourcemanager.projects.list`
Vertex AI Feature Store Data Writer (`roles/aiplatform.featurestoreDataWriter`) This role provides permissions to read and write Feature data. Lowest-level resources where you can grant this role: Entity type	`aiplatform.entityTypes.deleteFeatureValues` `aiplatform.entityTypes.exportFeatureValues` `aiplatform.entityTypes.get` `aiplatform.entityTypes.importFeatureValues` `aiplatform.entityTypes.readFeatureValues` `aiplatform.entityTypes.streamingReadFeatureValues` `aiplatform.entityTypes.writeFeatureValues` `aiplatform.featureGroups.get` `aiplatform.featureGroups.list` `aiplatform.featureOnlineStores.get` `aiplatform.featureOnlineStores.list` `aiplatform.featureViewSyncs.*` `aiplatform.featureViewSyncs.get` `aiplatform.featureViewSyncs.list` `aiplatform.featureViews.fetchFeatureValues` `aiplatform.featureViews.get` `aiplatform.featureViews.list` `aiplatform.featureViews.searchNearestEntities` `aiplatform.features.get` `aiplatform.features.list` `aiplatform.featurestores.batchReadFeatureValues` `resourcemanager.projects.get` `resourcemanager.projects.list`
Vertex AI Feature Store Instance Creator (`roles/aiplatform.featurestoreInstanceCreator`) Administrator of Featurestore resources, but not the child resources under Featurestores. Lowest-level resources where you can grant this role: Featurestore	`aiplatform.featurestores.create` `aiplatform.featurestores.delete` `aiplatform.featurestores.get` `aiplatform.featurestores.list` `aiplatform.featurestores.update`
Vertex AI Feature Store Resource Viewer (`roles/aiplatform.featurestoreResourceViewer`) Viewer of all resources in Vertex AI Feature Store but cannot make changes. Lowest-level resources where you can grant this role: Entity type	`aiplatform.entityTypes.get` `aiplatform.entityTypes.list` `aiplatform.featureGroups.get` `aiplatform.featureGroups.list` `aiplatform.featureOnlineStores.get` `aiplatform.featureOnlineStores.list` `aiplatform.featureViewSyncs.*` `aiplatform.featureViewSyncs.get` `aiplatform.featureViewSyncs.list` `aiplatform.featureViews.get` `aiplatform.featureViews.list` `aiplatform.features.get` `aiplatform.features.list` `aiplatform.featurestores.get` `aiplatform.featurestores.list` `aiplatform.operations.list` `resourcemanager.projects.get` `resourcemanager.projects.list`
Vertex AI Feature Store User ^Beta (`roles/aiplatform.featurestoreUser`) Deprecated. Use featurestoreAdmin instead.	`aiplatform.entityTypes.` `aiplatform.entityTypes.create` `aiplatform.entityTypes.delete` `aiplatform.entityTypes.deleteFeatureValues` `aiplatform.entityTypes.exportFeatureValues` `aiplatform.entityTypes.get` `aiplatform.entityTypes.getIamPolicy` `aiplatform.entityTypes.importFeatureValues` `aiplatform.entityTypes.list` `aiplatform.entityTypes.readFeatureValues` `aiplatform.entityTypes.setIamPolicy` `aiplatform.entityTypes.streamingReadFeatureValues` `aiplatform.entityTypes.update` `aiplatform.entityTypes.writeFeatureValues` `aiplatform.features.` `aiplatform.features.create` `aiplatform.features.delete` `aiplatform.features.get` `aiplatform.features.list` `aiplatform.features.update` `aiplatform.featurestores.*` `aiplatform.featurestores.batchReadFeatureValues` `aiplatform.featurestores.create` `aiplatform.featurestores.delete` `aiplatform.featurestores.exportFeatures` `aiplatform.featurestores.get` `aiplatform.featurestores.getIamPolicy` `aiplatform.featurestores.importFeatures` `aiplatform.featurestores.list` `aiplatform.featurestores.readFeatures` `aiplatform.featurestores.setIamPolicy` `aiplatform.featurestores.update` `aiplatform.featurestores.writeFeatures` `aiplatform.operations.list` `resourcemanager.projects.get` `resourcemanager.projects.list`
Vertex AI Migration Service User (`roles/aiplatform.migrator`) Grants access to use migration service in Vertex AI	`aiplatform.migratableResources.*` `aiplatform.migratableResources.migrate` `aiplatform.migratableResources.search`
Notebook Executor User ^Beta (`roles/aiplatform.notebookExecutorUser`) Grants users full access to schedules and notebook execution jobs.	`aiplatform.notebookExecutionJobs.` `aiplatform.notebookExecutionJobs.create` `aiplatform.notebookExecutionJobs.delete` `aiplatform.notebookExecutionJobs.get` `aiplatform.notebookExecutionJobs.list` `aiplatform.operations.list` `aiplatform.pipelineJobs.create` `aiplatform.schedules.` `aiplatform.schedules.create` `aiplatform.schedules.delete` `aiplatform.schedules.get` `aiplatform.schedules.list` `aiplatform.schedules.update`
Notebook Runtime Admin (`roles/aiplatform.notebookRuntimeAdmin`) Grants full access to all runtime templates and runtimes in Notebook Service.	`aiplatform.notebookRuntimeTemplates.` `aiplatform.notebookRuntimeTemplates.apply` `aiplatform.notebookRuntimeTemplates.create` `aiplatform.notebookRuntimeTemplates.delete` `aiplatform.notebookRuntimeTemplates.get` `aiplatform.notebookRuntimeTemplates.getIamPolicy` `aiplatform.notebookRuntimeTemplates.list` `aiplatform.notebookRuntimeTemplates.setIamPolicy` `aiplatform.notebookRuntimeTemplates.update` `aiplatform.notebookRuntimes.` `aiplatform.notebookRuntimes.assign` `aiplatform.notebookRuntimes.delete` `aiplatform.notebookRuntimes.get` `aiplatform.notebookRuntimes.list` `aiplatform.notebookRuntimes.start` `aiplatform.notebookRuntimes.update` `aiplatform.notebookRuntimes.upgrade` `aiplatform.operations.list` `compute.reservations.get` `compute.reservations.list`
Notebook Runtime User (`roles/aiplatform.notebookRuntimeUser`) Grants users permissions to create runtime resources using a runtime template and manage the runtime resources they created.	`aiplatform.notebookRuntimeTemplates.apply` `aiplatform.notebookRuntimeTemplates.get` `aiplatform.notebookRuntimeTemplates.getIamPolicy` `aiplatform.notebookRuntimeTemplates.list` `aiplatform.notebookRuntimes.assign` `aiplatform.notebookRuntimes.get` `aiplatform.notebookRuntimes.list` `aiplatform.operations.list`
Vertex AI Platform Provisioned Throughput Admin ^Beta (`roles/aiplatform.provisionedThroughputAdmin`) Grants access to use all resources related to Vertex AI Provisioned Throughput	`aiplatform.provisionedThroughputs.*` `aiplatform.provisionedThroughputs.create` `aiplatform.provisionedThroughputs.list`
Vertex AI Tensorboard Web App User ^Beta (`roles/aiplatform.tensorboardWebAppUser`) Grants access to the Vertex AI TensorBoard web app.	`aiplatform.tensorboards.recordAccess`
Vertex AI User (`roles/aiplatform.user`) Grants access to use all resource in Vertex AI	`aiplatform.agentExamples.` `aiplatform.agentExamples.create` `aiplatform.agentExamples.delete` `aiplatform.agentExamples.get` `aiplatform.agentExamples.list` `aiplatform.agentExamples.update` `aiplatform.agents.` `aiplatform.agents.create` `aiplatform.agents.delete` `aiplatform.agents.get` `aiplatform.agents.list` `aiplatform.agents.update` `aiplatform.annotationSpecs.` `aiplatform.annotationSpecs.create` `aiplatform.annotationSpecs.delete` `aiplatform.annotationSpecs.get` `aiplatform.annotationSpecs.list` `aiplatform.annotationSpecs.update` `aiplatform.annotations.` `aiplatform.annotations.create` `aiplatform.annotations.delete` `aiplatform.annotations.get` `aiplatform.annotations.list` `aiplatform.annotations.update` `aiplatform.apps.` `aiplatform.apps.create` `aiplatform.apps.delete` `aiplatform.apps.get` `aiplatform.apps.list` `aiplatform.apps.update` `aiplatform.artifacts.` `aiplatform.artifacts.create` `aiplatform.artifacts.delete` `aiplatform.artifacts.get` `aiplatform.artifacts.list` `aiplatform.artifacts.update` `aiplatform.batchPredictionJobs.` `aiplatform.batchPredictionJobs.cancel` `aiplatform.batchPredictionJobs.create` `aiplatform.batchPredictionJobs.delete` `aiplatform.batchPredictionJobs.get` `aiplatform.batchPredictionJobs.list` `aiplatform.cacheConfigs.get` `aiplatform.cachedContents.` `aiplatform.cachedContents.create` `aiplatform.cachedContents.delete` `aiplatform.cachedContents.get` `aiplatform.cachedContents.list` `aiplatform.cachedContents.update` `aiplatform.consents.get` `aiplatform.contexts.` `aiplatform.contexts.addContextArtifactsAndExecutions` `aiplatform.contexts.addContextChildren` `aiplatform.contexts.create` `aiplatform.contexts.delete` `aiplatform.contexts.get` `aiplatform.contexts.list` `aiplatform.contexts.queryContextLineageSubgraph` `aiplatform.contexts.update` `aiplatform.customJobs.` `aiplatform.customJobs.cancel` `aiplatform.customJobs.create` `aiplatform.customJobs.delete` `aiplatform.customJobs.get` `aiplatform.customJobs.list` `aiplatform.dataItems.` `aiplatform.dataItems.create` `aiplatform.dataItems.delete` `aiplatform.dataItems.get` `aiplatform.dataItems.list` `aiplatform.dataItems.update` `aiplatform.dataLabelingJobs.` `aiplatform.dataLabelingJobs.cancel` `aiplatform.dataLabelingJobs.create` `aiplatform.dataLabelingJobs.delete` `aiplatform.dataLabelingJobs.get` `aiplatform.dataLabelingJobs.list` `aiplatform.datasetVersions.` `aiplatform.datasetVersions.create` `aiplatform.datasetVersions.delete` `aiplatform.datasetVersions.get` `aiplatform.datasetVersions.list` `aiplatform.datasetVersions.restore` `aiplatform.datasets.` `aiplatform.datasets.create` `aiplatform.datasets.delete` `aiplatform.datasets.export` `aiplatform.datasets.get` `aiplatform.datasets.import` `aiplatform.datasets.list` `aiplatform.datasets.update` `aiplatform.deploymentResourcePools.` `aiplatform.deploymentResourcePools.create` `aiplatform.deploymentResourcePools.delete` `aiplatform.deploymentResourcePools.get` `aiplatform.deploymentResourcePools.list` `aiplatform.deploymentResourcePools.queryDeployedModels` `aiplatform.deploymentResourcePools.update` `aiplatform.edgeDeploymentJobs.` `aiplatform.edgeDeploymentJobs.create` `aiplatform.edgeDeploymentJobs.delete` `aiplatform.edgeDeploymentJobs.get` `aiplatform.edgeDeploymentJobs.list` `aiplatform.edgeDeviceDebugInfo.get` `aiplatform.edgeDevices.` `aiplatform.edgeDevices.create` `aiplatform.edgeDevices.delete` `aiplatform.edgeDevices.get` `aiplatform.edgeDevices.list` `aiplatform.edgeDevices.update` `aiplatform.endpoints.create` `aiplatform.endpoints.delete` `aiplatform.endpoints.deploy` `aiplatform.endpoints.explain` `aiplatform.endpoints.get` `aiplatform.endpoints.list` `aiplatform.endpoints.predict` `aiplatform.endpoints.undeploy` `aiplatform.endpoints.update` `aiplatform.entityTypes.create` `aiplatform.entityTypes.delete` `aiplatform.entityTypes.deleteFeatureValues` `aiplatform.entityTypes.exportFeatureValues` `aiplatform.entityTypes.get` `aiplatform.entityTypes.importFeatureValues` `aiplatform.entityTypes.list` `aiplatform.entityTypes.readFeatureValues` `aiplatform.entityTypes.streamingReadFeatureValues` `aiplatform.entityTypes.update` `aiplatform.entityTypes.writeFeatureValues` `aiplatform.executions.` `aiplatform.executions.addExecutionEvents` `aiplatform.executions.create` `aiplatform.executions.delete` `aiplatform.executions.get` `aiplatform.executions.list` `aiplatform.executions.queryExecutionInputsAndOutputs` `aiplatform.executions.update` `aiplatform.extensions.` `aiplatform.extensions.delete` `aiplatform.extensions.execute` `aiplatform.extensions.get` `aiplatform.extensions.import` `aiplatform.extensions.list` `aiplatform.extensions.update` `aiplatform.featureGroups.` `aiplatform.featureGroups.create` `aiplatform.featureGroups.delete` `aiplatform.featureGroups.get` `aiplatform.featureGroups.list` `aiplatform.featureGroups.update` `aiplatform.featureOnlineStores.create` `aiplatform.featureOnlineStores.delete` `aiplatform.featureOnlineStores.get` `aiplatform.featureOnlineStores.list` `aiplatform.featureOnlineStores.update` `aiplatform.featureViewSyncs.` `aiplatform.featureViewSyncs.get` `aiplatform.featureViewSyncs.list` `aiplatform.featureViews.create` `aiplatform.featureViews.delete` `aiplatform.featureViews.fetchFeatureValues` `aiplatform.featureViews.get` `aiplatform.featureViews.list` `aiplatform.featureViews.searchNearestEntities` `aiplatform.featureViews.sync` `aiplatform.featureViews.update` `aiplatform.features.` `aiplatform.features.create` `aiplatform.features.delete` `aiplatform.features.get` `aiplatform.features.list` `aiplatform.features.update` `aiplatform.featurestores.batchReadFeatureValues` `aiplatform.featurestores.create` `aiplatform.featurestores.delete` `aiplatform.featurestores.exportFeatures` `aiplatform.featurestores.get` `aiplatform.featurestores.importFeatures` `aiplatform.featurestores.list` `aiplatform.featurestores.readFeatures` `aiplatform.featurestores.update` `aiplatform.featurestores.writeFeatures` `aiplatform.humanInTheLoops.` `aiplatform.humanInTheLoops.cancel` `aiplatform.humanInTheLoops.create` `aiplatform.humanInTheLoops.delete` `aiplatform.humanInTheLoops.get` `aiplatform.humanInTheLoops.list` `aiplatform.humanInTheLoops.queryAnnotationStats` `aiplatform.humanInTheLoops.send` `aiplatform.humanInTheLoops.update` `aiplatform.hyperparameterTuningJobs.` `aiplatform.hyperparameterTuningJobs.cancel` `aiplatform.hyperparameterTuningJobs.create` `aiplatform.hyperparameterTuningJobs.delete` `aiplatform.hyperparameterTuningJobs.get` `aiplatform.hyperparameterTuningJobs.list` `aiplatform.indexEndpoints.` `aiplatform.indexEndpoints.create` `aiplatform.indexEndpoints.delete` `aiplatform.indexEndpoints.deploy` `aiplatform.indexEndpoints.get` `aiplatform.indexEndpoints.list` `aiplatform.indexEndpoints.queryVectors` `aiplatform.indexEndpoints.undeploy` `aiplatform.indexEndpoints.update` `aiplatform.indexes.` `aiplatform.indexes.create` `aiplatform.indexes.delete` `aiplatform.indexes.get` `aiplatform.indexes.list` `aiplatform.indexes.update` `aiplatform.locations.` `aiplatform.locations.evaluateInstances` `aiplatform.locations.get` `aiplatform.locations.list` `aiplatform.metadataSchemas.` `aiplatform.metadataSchemas.create` `aiplatform.metadataSchemas.delete` `aiplatform.metadataSchemas.get` `aiplatform.metadataSchemas.list` `aiplatform.metadataStores.` `aiplatform.metadataStores.create` `aiplatform.metadataStores.delete` `aiplatform.metadataStores.get` `aiplatform.metadataStores.list` `aiplatform.modelDeploymentMonitoringJobs.` `aiplatform.modelDeploymentMonitoringJobs.create` `aiplatform.modelDeploymentMonitoringJobs.delete` `aiplatform.modelDeploymentMonitoringJobs.get` `aiplatform.modelDeploymentMonitoringJobs.list` `aiplatform.modelDeploymentMonitoringJobs.pause` `aiplatform.modelDeploymentMonitoringJobs.resume` `aiplatform.modelDeploymentMonitoringJobs.searchStatsAnomalies` `aiplatform.modelDeploymentMonitoringJobs.update` `aiplatform.modelEvaluationSlices.` `aiplatform.modelEvaluationSlices.get` `aiplatform.modelEvaluationSlices.import` `aiplatform.modelEvaluationSlices.list` `aiplatform.modelEvaluations.` `aiplatform.modelEvaluations.exportEvaluatedDataItems` `aiplatform.modelEvaluations.get` `aiplatform.modelEvaluations.import` `aiplatform.modelEvaluations.list` `aiplatform.modelMonitoringJobs.` `aiplatform.modelMonitoringJobs.create` `aiplatform.modelMonitoringJobs.delete` `aiplatform.modelMonitoringJobs.get` `aiplatform.modelMonitoringJobs.list` `aiplatform.modelMonitors.` `aiplatform.modelMonitors.create` `aiplatform.modelMonitors.delete` `aiplatform.modelMonitors.get` `aiplatform.modelMonitors.list` `aiplatform.modelMonitors.searchModelMonitoringAlerts` `aiplatform.modelMonitors.searchModelMonitoringStats` `aiplatform.modelMonitors.update` `aiplatform.models.` `aiplatform.models.delete` `aiplatform.models.export` `aiplatform.models.get` `aiplatform.models.list` `aiplatform.models.update` `aiplatform.models.upload` `aiplatform.nasJobs.` `aiplatform.nasJobs.cancel` `aiplatform.nasJobs.create` `aiplatform.nasJobs.delete` `aiplatform.nasJobs.get` `aiplatform.nasJobs.list` `aiplatform.nasTrialDetails.` `aiplatform.nasTrialDetails.get` `aiplatform.nasTrialDetails.list` `aiplatform.notebookExecutionJobs.` `aiplatform.notebookExecutionJobs.create` `aiplatform.notebookExecutionJobs.delete` `aiplatform.notebookExecutionJobs.get` `aiplatform.notebookExecutionJobs.list` `aiplatform.notebookRuntimeTemplates.apply` `aiplatform.notebookRuntimeTemplates.create` `aiplatform.notebookRuntimeTemplates.delete` `aiplatform.notebookRuntimeTemplates.get` `aiplatform.notebookRuntimeTemplates.list` `aiplatform.notebookRuntimeTemplates.update` `aiplatform.notebookRuntimes.` `aiplatform.notebookRuntimes.assign` `aiplatform.notebookRuntimes.delete` `aiplatform.notebookRuntimes.get` `aiplatform.notebookRuntimes.list` `aiplatform.notebookRuntimes.start` `aiplatform.notebookRuntimes.update` `aiplatform.notebookRuntimes.upgrade` `aiplatform.operations.list` `aiplatform.persistentResources.get` `aiplatform.persistentResources.list` `aiplatform.pipelineJobs.` `aiplatform.pipelineJobs.cancel` `aiplatform.pipelineJobs.create` `aiplatform.pipelineJobs.delete` `aiplatform.pipelineJobs.get` `aiplatform.pipelineJobs.list` `aiplatform.provisionedThroughputs.list` `aiplatform.ragCorpora.` `aiplatform.ragCorpora.create` `aiplatform.ragCorpora.delete` `aiplatform.ragCorpora.get` `aiplatform.ragCorpora.list` `aiplatform.ragCorpora.query` `aiplatform.ragCorpora.update` `aiplatform.ragFiles.` `aiplatform.ragFiles.delete` `aiplatform.ragFiles.get` `aiplatform.ragFiles.import` `aiplatform.ragFiles.list` `aiplatform.ragFiles.upload` `aiplatform.reasoningEngines.` `aiplatform.reasoningEngines.create` `aiplatform.reasoningEngines.delete` `aiplatform.reasoningEngines.get` `aiplatform.reasoningEngines.list` `aiplatform.reasoningEngines.query` `aiplatform.reasoningEngines.update` `aiplatform.schedules.` `aiplatform.schedules.create` `aiplatform.schedules.delete` `aiplatform.schedules.get` `aiplatform.schedules.list` `aiplatform.schedules.update` `aiplatform.sessions.` `aiplatform.sessions.get` `aiplatform.sessions.list` `aiplatform.sessions.run` `aiplatform.specialistPools.` `aiplatform.specialistPools.create` `aiplatform.specialistPools.delete` `aiplatform.specialistPools.get` `aiplatform.specialistPools.list` `aiplatform.specialistPools.update` `aiplatform.studies.` `aiplatform.studies.create` `aiplatform.studies.delete` `aiplatform.studies.get` `aiplatform.studies.list` `aiplatform.studies.update` `aiplatform.tensorboardExperiments.` `aiplatform.tensorboardExperiments.create` `aiplatform.tensorboardExperiments.delete` `aiplatform.tensorboardExperiments.get` `aiplatform.tensorboardExperiments.list` `aiplatform.tensorboardExperiments.update` `aiplatform.tensorboardExperiments.write` `aiplatform.tensorboardRuns.` `aiplatform.tensorboardRuns.batchCreate` `aiplatform.tensorboardRuns.create` `aiplatform.tensorboardRuns.delete` `aiplatform.tensorboardRuns.get` `aiplatform.tensorboardRuns.list` `aiplatform.tensorboardRuns.update` `aiplatform.tensorboardRuns.write` `aiplatform.tensorboardTimeSeries.` `aiplatform.tensorboardTimeSeries.batchCreate` `aiplatform.tensorboardTimeSeries.batchRead` `aiplatform.tensorboardTimeSeries.create` `aiplatform.tensorboardTimeSeries.delete` `aiplatform.tensorboardTimeSeries.get` `aiplatform.tensorboardTimeSeries.list` `aiplatform.tensorboardTimeSeries.read` `aiplatform.tensorboardTimeSeries.update` `aiplatform.tensorboards.create` `aiplatform.tensorboards.delete` `aiplatform.tensorboards.get` `aiplatform.tensorboards.list` `aiplatform.tensorboards.update` `aiplatform.trainingPipelines.` `aiplatform.trainingPipelines.cancel` `aiplatform.trainingPipelines.create` `aiplatform.trainingPipelines.delete` `aiplatform.trainingPipelines.get` `aiplatform.trainingPipelines.list` `aiplatform.trials.` `aiplatform.trials.create` `aiplatform.trials.delete` `aiplatform.trials.get` `aiplatform.trials.list` `aiplatform.trials.update` `aiplatform.tuningJobs.*` `aiplatform.tuningJobs.cancel` `aiplatform.tuningJobs.create` `aiplatform.tuningJobs.delete` `aiplatform.tuningJobs.get` `aiplatform.tuningJobs.list` `aiplatform.tuningJobs.vertexTune` `resourcemanager.projects.get` `resourcemanager.projects.list`
Vertex AI Viewer (`roles/aiplatform.viewer`) Grants access to view all resource in Vertex AI	`aiplatform.agentExamples.get` `aiplatform.agentExamples.list` `aiplatform.agents.get` `aiplatform.agents.list` `aiplatform.annotationSpecs.get` `aiplatform.annotationSpecs.list` `aiplatform.annotations.get` `aiplatform.annotations.list` `aiplatform.apps.get` `aiplatform.apps.list` `aiplatform.artifacts.get` `aiplatform.artifacts.list` `aiplatform.batchPredictionJobs.get` `aiplatform.batchPredictionJobs.list` `aiplatform.cacheConfigs.get` `aiplatform.cachedContents.get` `aiplatform.cachedContents.list` `aiplatform.consents.get` `aiplatform.contexts.get` `aiplatform.contexts.list` `aiplatform.contexts.queryContextLineageSubgraph` `aiplatform.customJobs.get` `aiplatform.customJobs.list` `aiplatform.dataItems.get` `aiplatform.dataItems.list` `aiplatform.dataLabelingJobs.get` `aiplatform.dataLabelingJobs.list` `aiplatform.datasetVersions.get` `aiplatform.datasetVersions.list` `aiplatform.datasets.get` `aiplatform.datasets.list` `aiplatform.deploymentResourcePools.get` `aiplatform.deploymentResourcePools.list` `aiplatform.deploymentResourcePools.queryDeployedModels` `aiplatform.edgeDeploymentJobs.get` `aiplatform.edgeDeploymentJobs.list` `aiplatform.edgeDeviceDebugInfo.get` `aiplatform.edgeDevices.get` `aiplatform.edgeDevices.list` `aiplatform.endpoints.get` `aiplatform.endpoints.list` `aiplatform.entityTypes.get` `aiplatform.entityTypes.list` `aiplatform.executions.get` `aiplatform.executions.list` `aiplatform.executions.queryExecutionInputsAndOutputs` `aiplatform.extensions.get` `aiplatform.extensions.list` `aiplatform.featureGroups.get` `aiplatform.featureGroups.list` `aiplatform.featureOnlineStores.get` `aiplatform.featureOnlineStores.list` `aiplatform.featureViewSyncs.` `aiplatform.featureViewSyncs.get` `aiplatform.featureViewSyncs.list` `aiplatform.featureViews.fetchFeatureValues` `aiplatform.featureViews.get` `aiplatform.featureViews.list` `aiplatform.featureViews.searchNearestEntities` `aiplatform.features.get` `aiplatform.features.list` `aiplatform.featurestores.get` `aiplatform.featurestores.list` `aiplatform.humanInTheLoops.get` `aiplatform.humanInTheLoops.list` `aiplatform.hyperparameterTuningJobs.get` `aiplatform.hyperparameterTuningJobs.list` `aiplatform.indexEndpoints.get` `aiplatform.indexEndpoints.list` `aiplatform.indexEndpoints.queryVectors` `aiplatform.indexes.get` `aiplatform.indexes.list` `aiplatform.locations.get` `aiplatform.locations.list` `aiplatform.metadataSchemas.get` `aiplatform.metadataSchemas.list` `aiplatform.metadataStores.get` `aiplatform.metadataStores.list` `aiplatform.modelDeploymentMonitoringJobs.get` `aiplatform.modelDeploymentMonitoringJobs.list` `aiplatform.modelDeploymentMonitoringJobs.searchStatsAnomalies` `aiplatform.modelEvaluationSlices.get` `aiplatform.modelEvaluationSlices.list` `aiplatform.modelEvaluations.get` `aiplatform.modelEvaluations.list` `aiplatform.modelMonitoringJobs.get` `aiplatform.modelMonitoringJobs.list` `aiplatform.modelMonitors.get` `aiplatform.modelMonitors.list` `aiplatform.modelMonitors.searchModelMonitoringAlerts` `aiplatform.modelMonitors.searchModelMonitoringStats` `aiplatform.models.get` `aiplatform.models.list` `aiplatform.nasJobs.get` `aiplatform.nasJobs.list` `aiplatform.nasTrialDetails.` `aiplatform.nasTrialDetails.get` `aiplatform.nasTrialDetails.list` `aiplatform.notebookExecutionJobs.get` `aiplatform.notebookExecutionJobs.list` `aiplatform.notebookRuntimeTemplates.get` `aiplatform.notebookRuntimeTemplates.list` `aiplatform.notebookRuntimes.get` `aiplatform.notebookRuntimes.list` `aiplatform.operations.list` `aiplatform.persistentResources.get` `aiplatform.persistentResources.list` `aiplatform.pipelineJobs.get` `aiplatform.pipelineJobs.list` `aiplatform.provisionedThroughputs.list` `aiplatform.ragCorpora.get` `aiplatform.ragCorpora.list` `aiplatform.ragCorpora.query` `aiplatform.ragFiles.get` `aiplatform.ragFiles.list` `aiplatform.reasoningEngines.get` `aiplatform.reasoningEngines.list` `aiplatform.reasoningEngines.query` `aiplatform.schedules.get` `aiplatform.schedules.list` `aiplatform.sessions.get` `aiplatform.sessions.list` `aiplatform.specialistPools.get` `aiplatform.specialistPools.list` `aiplatform.specialistPools.update` `aiplatform.studies.get` `aiplatform.studies.list` `aiplatform.tensorboardExperiments.get` `aiplatform.tensorboardExperiments.list` `aiplatform.tensorboardRuns.get` `aiplatform.tensorboardRuns.list` `aiplatform.tensorboardTimeSeries.batchRead` `aiplatform.tensorboardTimeSeries.get` `aiplatform.tensorboardTimeSeries.list` `aiplatform.tensorboardTimeSeries.read` `aiplatform.tensorboards.get` `aiplatform.tensorboards.list` `aiplatform.trainingPipelines.get` `aiplatform.trainingPipelines.list` `aiplatform.trials.get` `aiplatform.trials.list` `aiplatform.tuningJobs.get` `aiplatform.tuningJobs.list` `resourcemanager.projects.get` `resourcemanager.projects.list`

Vertex AI Administrator

(roles/aiplatform.admin)

Grants full access to all resources in Vertex AI

aiplatform.*

aiplatform.agentExamples.create
aiplatform.agentExamples.delete
aiplatform.agentExamples.get
aiplatform.agentExamples.list
aiplatform.agentExamples.update
aiplatform.agents.create
aiplatform.agents.delete
aiplatform.agents.get
aiplatform.agents.list
aiplatform.agents.update
aiplatform.annotationSpecs.create
aiplatform.annotationSpecs.delete
aiplatform.annotationSpecs.get
aiplatform.annotationSpecs.list
aiplatform.annotationSpecs.update
aiplatform.annotations.create
aiplatform.annotations.delete
aiplatform.annotations.get
aiplatform.annotations.list
aiplatform.annotations.update
aiplatform.apps.create
aiplatform.apps.delete
aiplatform.apps.get
aiplatform.apps.list
aiplatform.apps.update
aiplatform.artifacts.create
aiplatform.artifacts.delete
aiplatform.artifacts.get
aiplatform.artifacts.list
aiplatform.artifacts.update
aiplatform.batchPredictionJobs.cancel
aiplatform.batchPredictionJobs.create
aiplatform.batchPredictionJobs.delete
aiplatform.batchPredictionJobs.get
aiplatform.batchPredictionJobs.list
aiplatform.cacheConfigs.get
aiplatform.cacheConfigs.update
aiplatform.cachedContents.create
aiplatform.cachedContents.delete
aiplatform.cachedContents.get
aiplatform.cachedContents.list
aiplatform.cachedContents.update
aiplatform.consents.get
aiplatform.consents.update
aiplatform.contexts.addContextArtifactsAndExecutions
aiplatform.contexts.addContextChildren
aiplatform.contexts.create
aiplatform.contexts.delete
aiplatform.contexts.get
aiplatform.contexts.list
aiplatform.contexts.queryContextLineageSubgraph
aiplatform.contexts.update
aiplatform.customJobs.cancel
aiplatform.customJobs.create
aiplatform.customJobs.delete
aiplatform.customJobs.get
aiplatform.customJobs.list
aiplatform.dataItems.create
aiplatform.dataItems.delete
aiplatform.dataItems.get
aiplatform.dataItems.list
aiplatform.dataItems.update
aiplatform.dataLabelingJobs.cancel
aiplatform.dataLabelingJobs.create
aiplatform.dataLabelingJobs.delete
aiplatform.dataLabelingJobs.get
aiplatform.dataLabelingJobs.list
aiplatform.datasetVersions.create
aiplatform.datasetVersions.delete
aiplatform.datasetVersions.get
aiplatform.datasetVersions.list
aiplatform.datasetVersions.restore
aiplatform.datasets.create
aiplatform.datasets.delete
aiplatform.datasets.export
aiplatform.datasets.get
aiplatform.datasets.import
aiplatform.datasets.list
aiplatform.datasets.update
aiplatform.deploymentResourcePools.create
aiplatform.deploymentResourcePools.delete
aiplatform.deploymentResourcePools.get
aiplatform.deploymentResourcePools.list
aiplatform.deploymentResourcePools.queryDeployedModels
aiplatform.deploymentResourcePools.update
aiplatform.edgeDeploymentJobs.create
aiplatform.edgeDeploymentJobs.delete
aiplatform.edgeDeploymentJobs.get
aiplatform.edgeDeploymentJobs.list
aiplatform.edgeDeviceDebugInfo.get
aiplatform.edgeDevices.create
aiplatform.edgeDevices.delete
aiplatform.edgeDevices.get
aiplatform.edgeDevices.list
aiplatform.edgeDevices.update
aiplatform.endpoints.create
aiplatform.endpoints.delete
aiplatform.endpoints.deploy
aiplatform.endpoints.explain
aiplatform.endpoints.get
aiplatform.endpoints.getIamPolicy
aiplatform.endpoints.list
aiplatform.endpoints.predict
aiplatform.endpoints.setIamPolicy
aiplatform.endpoints.undeploy
aiplatform.endpoints.update
aiplatform.entityTypes.create
aiplatform.entityTypes.delete
aiplatform.entityTypes.deleteFeatureValues
aiplatform.entityTypes.exportFeatureValues
aiplatform.entityTypes.get
aiplatform.entityTypes.getIamPolicy
aiplatform.entityTypes.importFeatureValues
aiplatform.entityTypes.list
aiplatform.entityTypes.readFeatureValues
aiplatform.entityTypes.setIamPolicy
aiplatform.entityTypes.streamingReadFeatureValues
aiplatform.entityTypes.update
aiplatform.entityTypes.writeFeatureValues
aiplatform.executions.addExecutionEvents
aiplatform.executions.create
aiplatform.executions.delete
aiplatform.executions.get
aiplatform.executions.list
aiplatform.executions.queryExecutionInputsAndOutputs
aiplatform.executions.update
aiplatform.extensions.delete
aiplatform.extensions.execute
aiplatform.extensions.get
aiplatform.extensions.import
aiplatform.extensions.list
aiplatform.extensions.update
aiplatform.featureGroups.create
aiplatform.featureGroups.delete
aiplatform.featureGroups.get
aiplatform.featureGroups.list
aiplatform.featureGroups.update
aiplatform.featureOnlineStores.create
aiplatform.featureOnlineStores.delete
aiplatform.featureOnlineStores.get
aiplatform.featureOnlineStores.getIamPolicy
aiplatform.featureOnlineStores.list
aiplatform.featureOnlineStores.setIamPolicy
aiplatform.featureOnlineStores.update
aiplatform.featureViewSyncs.get
aiplatform.featureViewSyncs.list
aiplatform.featureViews.create
aiplatform.featureViews.delete
aiplatform.featureViews.fetchFeatureValues
aiplatform.featureViews.get
aiplatform.featureViews.getIamPolicy
aiplatform.featureViews.list
aiplatform.featureViews.searchNearestEntities
aiplatform.featureViews.setIamPolicy
aiplatform.featureViews.sync
aiplatform.featureViews.update
aiplatform.features.create
aiplatform.features.delete
aiplatform.features.get
aiplatform.features.list
aiplatform.features.update
aiplatform.featurestores.batchReadFeatureValues
aiplatform.featurestores.create
aiplatform.featurestores.delete
aiplatform.featurestores.exportFeatures
aiplatform.featurestores.get
aiplatform.featurestores.getIamPolicy
aiplatform.featurestores.importFeatures
aiplatform.featurestores.list
aiplatform.featurestores.readFeatures
aiplatform.featurestores.setIamPolicy
aiplatform.featurestores.update
aiplatform.featurestores.writeFeatures
aiplatform.humanInTheLoops.cancel
aiplatform.humanInTheLoops.create
aiplatform.humanInTheLoops.delete
aiplatform.humanInTheLoops.get
aiplatform.humanInTheLoops.list
aiplatform.humanInTheLoops.queryAnnotationStats
aiplatform.humanInTheLoops.send
aiplatform.humanInTheLoops.update
aiplatform.hyperparameterTuningJobs.cancel
aiplatform.hyperparameterTuningJobs.create
aiplatform.hyperparameterTuningJobs.delete
aiplatform.hyperparameterTuningJobs.get
aiplatform.hyperparameterTuningJobs.list
aiplatform.indexEndpoints.create
aiplatform.indexEndpoints.delete
aiplatform.indexEndpoints.deploy
aiplatform.indexEndpoints.get
aiplatform.indexEndpoints.list
aiplatform.indexEndpoints.queryVectors
aiplatform.indexEndpoints.undeploy
aiplatform.indexEndpoints.update
aiplatform.indexes.create
aiplatform.indexes.delete
aiplatform.indexes.get
aiplatform.indexes.list
aiplatform.indexes.update
aiplatform.locations.evaluateInstances
aiplatform.locations.get
aiplatform.locations.list
aiplatform.metadataSchemas.create
aiplatform.metadataSchemas.delete
aiplatform.metadataSchemas.get
aiplatform.metadataSchemas.list
aiplatform.metadataStores.create
aiplatform.metadataStores.delete
aiplatform.metadataStores.get
aiplatform.metadataStores.list
aiplatform.migratableResources.migrate
aiplatform.migratableResources.search
aiplatform.modelDeploymentMonitoringJobs.create
aiplatform.modelDeploymentMonitoringJobs.delete
aiplatform.modelDeploymentMonitoringJobs.get
aiplatform.modelDeploymentMonitoringJobs.list
aiplatform.modelDeploymentMonitoringJobs.pause
aiplatform.modelDeploymentMonitoringJobs.resume
aiplatform.modelDeploymentMonitoringJobs.searchStatsAnomalies
aiplatform.modelDeploymentMonitoringJobs.update
aiplatform.modelEvaluationSlices.get
aiplatform.modelEvaluationSlices.import
aiplatform.modelEvaluationSlices.list
aiplatform.modelEvaluations.exportEvaluatedDataItems
aiplatform.modelEvaluations.get
aiplatform.modelEvaluations.import
aiplatform.modelEvaluations.list
aiplatform.modelMonitoringJobs.create
aiplatform.modelMonitoringJobs.delete
aiplatform.modelMonitoringJobs.get
aiplatform.modelMonitoringJobs.list
aiplatform.modelMonitors.create
aiplatform.modelMonitors.delete
aiplatform.modelMonitors.get
aiplatform.modelMonitors.list
aiplatform.modelMonitors.searchModelMonitoringAlerts
aiplatform.modelMonitors.searchModelMonitoringStats
aiplatform.modelMonitors.update
aiplatform.models.delete
aiplatform.models.export
aiplatform.models.get
aiplatform.models.list
aiplatform.models.update
aiplatform.models.upload
aiplatform.nasJobs.cancel
aiplatform.nasJobs.create
aiplatform.nasJobs.delete
aiplatform.nasJobs.get
aiplatform.nasJobs.list
aiplatform.nasTrialDetails.get
aiplatform.nasTrialDetails.list
aiplatform.notebookExecutionJobs.create
aiplatform.notebookExecutionJobs.delete
aiplatform.notebookExecutionJobs.get
aiplatform.notebookExecutionJobs.list
aiplatform.notebookRuntimeTemplates.apply
aiplatform.notebookRuntimeTemplates.create
aiplatform.notebookRuntimeTemplates.delete
aiplatform.notebookRuntimeTemplates.get
aiplatform.notebookRuntimeTemplates.getIamPolicy
aiplatform.notebookRuntimeTemplates.list
aiplatform.notebookRuntimeTemplates.setIamPolicy
aiplatform.notebookRuntimeTemplates.update
aiplatform.notebookRuntimes.assign
aiplatform.notebookRuntimes.delete
aiplatform.notebookRuntimes.get
aiplatform.notebookRuntimes.list
aiplatform.notebookRuntimes.start
aiplatform.notebookRuntimes.update
aiplatform.notebookRuntimes.upgrade
aiplatform.operations.list
aiplatform.persistentResources.create
aiplatform.persistentResources.delete
aiplatform.persistentResources.get
aiplatform.persistentResources.list
aiplatform.pipelineJobs.cancel
aiplatform.pipelineJobs.create
aiplatform.pipelineJobs.delete
aiplatform.pipelineJobs.get
aiplatform.pipelineJobs.list
aiplatform.provisionedThroughputs.create
aiplatform.provisionedThroughputs.list
aiplatform.ragCorpora.create
aiplatform.ragCorpora.delete
aiplatform.ragCorpora.get
aiplatform.ragCorpora.list
aiplatform.ragCorpora.query
aiplatform.ragCorpora.update
aiplatform.ragFiles.delete
aiplatform.ragFiles.get
aiplatform.ragFiles.import
aiplatform.ragFiles.list
aiplatform.ragFiles.upload
aiplatform.reasoningEngines.create
aiplatform.reasoningEngines.delete
aiplatform.reasoningEngines.get
aiplatform.reasoningEngines.list
aiplatform.reasoningEngines.query
aiplatform.reasoningEngines.update
aiplatform.schedules.create
aiplatform.schedules.delete
aiplatform.schedules.get
aiplatform.schedules.list
aiplatform.schedules.update
aiplatform.sessions.get
aiplatform.sessions.list
aiplatform.sessions.run
aiplatform.specialistPools.create
aiplatform.specialistPools.delete
aiplatform.specialistPools.get
aiplatform.specialistPools.list
aiplatform.specialistPools.update
aiplatform.studies.create
aiplatform.studies.delete
aiplatform.studies.get
aiplatform.studies.list
aiplatform.studies.update
aiplatform.tensorboardExperiments.create
aiplatform.tensorboardExperiments.delete
aiplatform.tensorboardExperiments.get
aiplatform.tensorboardExperiments.list
aiplatform.tensorboardExperiments.update
aiplatform.tensorboardExperiments.write
aiplatform.tensorboardRuns.batchCreate
aiplatform.tensorboardRuns.create
aiplatform.tensorboardRuns.delete
aiplatform.tensorboardRuns.get
aiplatform.tensorboardRuns.list
aiplatform.tensorboardRuns.update
aiplatform.tensorboardRuns.write
aiplatform.tensorboardTimeSeries.batchCreate
aiplatform.tensorboardTimeSeries.batchRead
aiplatform.tensorboardTimeSeries.create
aiplatform.tensorboardTimeSeries.delete
aiplatform.tensorboardTimeSeries.get
aiplatform.tensorboardTimeSeries.list
aiplatform.tensorboardTimeSeries.read
aiplatform.tensorboardTimeSeries.update
aiplatform.tensorboards.create
aiplatform.tensorboards.delete
aiplatform.tensorboards.get
aiplatform.tensorboards.list
aiplatform.tensorboards.recordAccess
aiplatform.tensorboards.update
aiplatform.trainingPipelines.cancel
aiplatform.trainingPipelines.create
aiplatform.trainingPipelines.delete
aiplatform.trainingPipelines.get
aiplatform.trainingPipelines.list
aiplatform.trials.create
aiplatform.trials.delete
aiplatform.trials.get
aiplatform.trials.list
aiplatform.trials.update
aiplatform.tuningJobs.cancel
aiplatform.tuningJobs.create
aiplatform.tuningJobs.delete
aiplatform.tuningJobs.get
aiplatform.tuningJobs.list
aiplatform.tuningJobs.vertexTune

resourcemanager.projects.get

resourcemanager.projects.list

Colab Enterprise Admin

(roles/aiplatform.colabEnterpriseAdmin)

Admin role of using colab enterprise.

aiplatform.notebookExecutionJobs.*

aiplatform.notebookExecutionJobs.create
aiplatform.notebookExecutionJobs.delete
aiplatform.notebookExecutionJobs.get
aiplatform.notebookExecutionJobs.list

aiplatform.notebookRuntimeTemplates.*

aiplatform.notebookRuntimeTemplates.apply
aiplatform.notebookRuntimeTemplates.create
aiplatform.notebookRuntimeTemplates.delete
aiplatform.notebookRuntimeTemplates.get
aiplatform.notebookRuntimeTemplates.getIamPolicy
aiplatform.notebookRuntimeTemplates.list
aiplatform.notebookRuntimeTemplates.setIamPolicy
aiplatform.notebookRuntimeTemplates.update

aiplatform.notebookRuntimes.*

aiplatform.notebookRuntimes.assign
aiplatform.notebookRuntimes.delete
aiplatform.notebookRuntimes.get
aiplatform.notebookRuntimes.list
aiplatform.notebookRuntimes.start
aiplatform.notebookRuntimes.update
aiplatform.notebookRuntimes.upgrade

aiplatform.operations.list

aiplatform.pipelineJobs.create

aiplatform.schedules.*

aiplatform.schedules.create
aiplatform.schedules.delete
aiplatform.schedules.get
aiplatform.schedules.list
aiplatform.schedules.update

compute.reservations.get

compute.reservations.list

dataform.*

dataform.compilationResults.create
dataform.compilationResults.get
dataform.compilationResults.list
dataform.compilationResults.query
dataform.config.get
dataform.config.update
dataform.locations.get
dataform.locations.list
dataform.releaseConfigs.create
dataform.releaseConfigs.delete
dataform.releaseConfigs.get
dataform.releaseConfigs.list
dataform.releaseConfigs.update
dataform.repositories.commit
dataform.repositories.computeAccessTokenStatus
dataform.repositories.create
dataform.repositories.delete
dataform.repositories.fetchHistory
dataform.repositories.fetchRemoteBranches
dataform.repositories.get
dataform.repositories.getIamPolicy
dataform.repositories.list
dataform.repositories.queryDirectoryContents
dataform.repositories.readFile
dataform.repositories.setIamPolicy
dataform.repositories.update
dataform.workflowConfigs.create
dataform.workflowConfigs.delete
dataform.workflowConfigs.get
dataform.workflowConfigs.list
dataform.workflowConfigs.update
dataform.workflowInvocations.cancel
dataform.workflowInvocations.create
dataform.workflowInvocations.delete
dataform.workflowInvocations.get
dataform.workflowInvocations.list
dataform.workflowInvocations.query
dataform.workspaces.commit
dataform.workspaces.create
dataform.workspaces.delete
dataform.workspaces.fetchFileDiff
dataform.workspaces.fetchFileGitStatuses
dataform.workspaces.fetchGitAheadBehind
dataform.workspaces.get
dataform.workspaces.getIamPolicy
dataform.workspaces.installNpmPackages
dataform.workspaces.list
dataform.workspaces.makeDirectory
dataform.workspaces.moveDirectory
dataform.workspaces.moveFile
dataform.workspaces.pull
dataform.workspaces.push
dataform.workspaces.queryDirectoryContents
dataform.workspaces.readFile
dataform.workspaces.removeDirectory
dataform.workspaces.removeFile
dataform.workspaces.reset
dataform.workspaces.searchFiles
dataform.workspaces.setIamPolicy
dataform.workspaces.writeFile

resourcemanager.projects.get

resourcemanager.projects.list

Colab Enterprise User

(roles/aiplatform.colabEnterpriseUser)

User role of using colab enterprise.

aiplatform.notebookExecutionJobs.*

aiplatform.notebookExecutionJobs.create
aiplatform.notebookExecutionJobs.delete
aiplatform.notebookExecutionJobs.get
aiplatform.notebookExecutionJobs.list

aiplatform.notebookRuntimeTemplates.apply

aiplatform.notebookRuntimeTemplates.get

aiplatform.notebookRuntimeTemplates.getIamPolicy

aiplatform.notebookRuntimeTemplates.list

aiplatform.notebookRuntimes.assign

aiplatform.notebookRuntimes.get

aiplatform.notebookRuntimes.list

aiplatform.operations.list

aiplatform.pipelineJobs.create

aiplatform.schedules.*

aiplatform.schedules.create
aiplatform.schedules.delete
aiplatform.schedules.get
aiplatform.schedules.list
aiplatform.schedules.update

dataform.locations.*

dataform.locations.get
dataform.locations.list

dataform.repositories.create

dataform.repositories.list

resourcemanager.projects.get

resourcemanager.projects.list

Vertex AI Feature Store EntityType owner

(roles/aiplatform.entityTypeOwner)

Provides full access to all permissions for a particular entity type resource.

Lowest-level resources where you can grant this role:

Entity type

aiplatform.entityTypes.delete

aiplatform.entityTypes.deleteFeatureValues

aiplatform.entityTypes.exportFeatureValues

aiplatform.entityTypes.get

aiplatform.entityTypes.getIamPolicy

aiplatform.entityTypes.importFeatureValues

aiplatform.entityTypes.readFeatureValues

aiplatform.entityTypes.setIamPolicy

aiplatform.entityTypes.streamingReadFeatureValues

aiplatform.entityTypes.update

aiplatform.entityTypes.writeFeatureValues

aiplatform.featureGroups.get

aiplatform.featureGroups.list

aiplatform.featureOnlineStores.get

aiplatform.featureOnlineStores.list

aiplatform.featureViewSyncs.*

aiplatform.featureViewSyncs.get
aiplatform.featureViewSyncs.list

aiplatform.featureViews.fetchFeatureValues

aiplatform.featureViews.get

aiplatform.featureViews.list

aiplatform.featureViews.searchNearestEntities

aiplatform.features.*

aiplatform.features.create
aiplatform.features.delete
aiplatform.features.get
aiplatform.features.list
aiplatform.features.update

aiplatform.featurestores.batchReadFeatureValues

resourcemanager.projects.get

resourcemanager.projects.list

Vertex AI Platform Express Admin ^Beta

(roles/aiplatform.expressAdmin)

Grants admin access to Vertex AI Express

aiplatform.datasetVersions.*

aiplatform.datasetVersions.create
aiplatform.datasetVersions.delete
aiplatform.datasetVersions.get
aiplatform.datasetVersions.list
aiplatform.datasetVersions.restore

aiplatform.datasets.create

aiplatform.datasets.delete

aiplatform.datasets.get

aiplatform.datasets.list

aiplatform.datasets.update

aiplatform.endpoints.predict

aiplatform.locations.evaluateInstances

Vertex AI Platform Express User ^Beta

(roles/aiplatform.expressUser)

Grants user access to Vertex AI Express

aiplatform.endpoints.predict

Vertex AI Feature Store Admin

(roles/aiplatform.featurestoreAdmin)

Grants full access to all resources in Vertex AI Feature Store

Lowest-level resources where you can grant this role:

Entity type

aiplatform.entityTypes.*

aiplatform.entityTypes.create
aiplatform.entityTypes.delete
aiplatform.entityTypes.deleteFeatureValues
aiplatform.entityTypes.exportFeatureValues
aiplatform.entityTypes.get
aiplatform.entityTypes.getIamPolicy
aiplatform.entityTypes.importFeatureValues
aiplatform.entityTypes.list
aiplatform.entityTypes.readFeatureValues
aiplatform.entityTypes.setIamPolicy
aiplatform.entityTypes.streamingReadFeatureValues
aiplatform.entityTypes.update
aiplatform.entityTypes.writeFeatureValues

aiplatform.featureGroups.*

aiplatform.featureGroups.create
aiplatform.featureGroups.delete
aiplatform.featureGroups.get
aiplatform.featureGroups.list
aiplatform.featureGroups.update

aiplatform.featureOnlineStores.*

aiplatform.featureOnlineStores.create
aiplatform.featureOnlineStores.delete
aiplatform.featureOnlineStores.get
aiplatform.featureOnlineStores.getIamPolicy
aiplatform.featureOnlineStores.list
aiplatform.featureOnlineStores.setIamPolicy
aiplatform.featureOnlineStores.update

aiplatform.featureViewSyncs.*

aiplatform.featureViewSyncs.get
aiplatform.featureViewSyncs.list

aiplatform.featureViews.*

aiplatform.featureViews.create
aiplatform.featureViews.delete
aiplatform.featureViews.fetchFeatureValues
aiplatform.featureViews.get
aiplatform.featureViews.getIamPolicy
aiplatform.featureViews.list
aiplatform.featureViews.searchNearestEntities
aiplatform.featureViews.setIamPolicy
aiplatform.featureViews.sync
aiplatform.featureViews.update

aiplatform.features.*

aiplatform.features.create
aiplatform.features.delete
aiplatform.features.get
aiplatform.features.list
aiplatform.features.update

aiplatform.featurestores.*

aiplatform.featurestores.batchReadFeatureValues
aiplatform.featurestores.create
aiplatform.featurestores.delete
aiplatform.featurestores.exportFeatures
aiplatform.featurestores.get
aiplatform.featurestores.getIamPolicy
aiplatform.featurestores.importFeatures
aiplatform.featurestores.list
aiplatform.featurestores.readFeatures
aiplatform.featurestores.setIamPolicy
aiplatform.featurestores.update
aiplatform.featurestores.writeFeatures

aiplatform.operations.list

resourcemanager.projects.get

resourcemanager.projects.list

Vertex AI Feature Store Data Viewer

(roles/aiplatform.featurestoreDataViewer)

This role provides permissions to read Feature data.

Lowest-level resources where you can grant this role:

Entity type

aiplatform.entityTypes.exportFeatureValues

aiplatform.entityTypes.get

aiplatform.entityTypes.readFeatureValues

aiplatform.entityTypes.streamingReadFeatureValues

aiplatform.featureGroups.get

aiplatform.featureGroups.list

aiplatform.featureOnlineStores.get

aiplatform.featureOnlineStores.list

aiplatform.featureViewSyncs.*

aiplatform.featureViewSyncs.get
aiplatform.featureViewSyncs.list

aiplatform.featureViews.fetchFeatureValues

aiplatform.featureViews.get

aiplatform.featureViews.list

aiplatform.featureViews.searchNearestEntities

aiplatform.features.get

aiplatform.features.list

aiplatform.featurestores.batchReadFeatureValues

resourcemanager.projects.get

resourcemanager.projects.list

Vertex AI Feature Store Data Writer

(roles/aiplatform.featurestoreDataWriter)

This role provides permissions to read and write Feature data.

Lowest-level resources where you can grant this role:

Entity type

aiplatform.entityTypes.deleteFeatureValues

aiplatform.entityTypes.exportFeatureValues

aiplatform.entityTypes.get

aiplatform.entityTypes.importFeatureValues

aiplatform.entityTypes.readFeatureValues

aiplatform.entityTypes.streamingReadFeatureValues

aiplatform.entityTypes.writeFeatureValues

aiplatform.featureGroups.get

aiplatform.featureGroups.list

aiplatform.featureOnlineStores.get

aiplatform.featureOnlineStores.list

aiplatform.featureViewSyncs.*

aiplatform.featureViewSyncs.get
aiplatform.featureViewSyncs.list

aiplatform.featureViews.fetchFeatureValues

aiplatform.featureViews.get

aiplatform.featureViews.list

aiplatform.featureViews.searchNearestEntities

aiplatform.features.get

aiplatform.features.list

aiplatform.featurestores.batchReadFeatureValues

resourcemanager.projects.get

resourcemanager.projects.list

Vertex AI Feature Store Instance Creator

(roles/aiplatform.featurestoreInstanceCreator)

Administrator of Featurestore resources, but not the child resources under Featurestores.

Lowest-level resources where you can grant this role:

Featurestore

aiplatform.featurestores.create

aiplatform.featurestores.delete

aiplatform.featurestores.get

aiplatform.featurestores.list

aiplatform.featurestores.update

Vertex AI Feature Store Resource Viewer

(roles/aiplatform.featurestoreResourceViewer)

Viewer of all resources in Vertex AI Feature Store but cannot make changes.

Lowest-level resources where you can grant this role:

Entity type

aiplatform.entityTypes.get

aiplatform.entityTypes.list

aiplatform.featureGroups.get

aiplatform.featureGroups.list

aiplatform.featureOnlineStores.get

aiplatform.featureOnlineStores.list

aiplatform.featureViewSyncs.*

aiplatform.featureViewSyncs.get
aiplatform.featureViewSyncs.list

aiplatform.featureViews.get

aiplatform.featureViews.list

aiplatform.features.get

aiplatform.features.list

aiplatform.featurestores.get

aiplatform.featurestores.list

aiplatform.operations.list

resourcemanager.projects.get

resourcemanager.projects.list

Vertex AI Feature Store User ^Beta

(roles/aiplatform.featurestoreUser)

Deprecated. Use featurestoreAdmin instead.

aiplatform.entityTypes.*

aiplatform.entityTypes.create
aiplatform.entityTypes.delete
aiplatform.entityTypes.deleteFeatureValues
aiplatform.entityTypes.exportFeatureValues
aiplatform.entityTypes.get
aiplatform.entityTypes.getIamPolicy
aiplatform.entityTypes.importFeatureValues
aiplatform.entityTypes.list
aiplatform.entityTypes.readFeatureValues
aiplatform.entityTypes.setIamPolicy
aiplatform.entityTypes.streamingReadFeatureValues
aiplatform.entityTypes.update
aiplatform.entityTypes.writeFeatureValues

aiplatform.features.*

aiplatform.features.create
aiplatform.features.delete
aiplatform.features.get
aiplatform.features.list
aiplatform.features.update

aiplatform.featurestores.*

aiplatform.featurestores.batchReadFeatureValues
aiplatform.featurestores.create
aiplatform.featurestores.delete
aiplatform.featurestores.exportFeatures
aiplatform.featurestores.get
aiplatform.featurestores.getIamPolicy
aiplatform.featurestores.importFeatures
aiplatform.featurestores.list
aiplatform.featurestores.readFeatures
aiplatform.featurestores.setIamPolicy
aiplatform.featurestores.update
aiplatform.featurestores.writeFeatures

aiplatform.operations.list

resourcemanager.projects.get

resourcemanager.projects.list

Vertex AI Migration Service User

(roles/aiplatform.migrator)

Grants access to use migration service in Vertex AI

aiplatform.migratableResources.*

aiplatform.migratableResources.migrate
aiplatform.migratableResources.search

Notebook Executor User ^Beta

(roles/aiplatform.notebookExecutorUser)

Grants users full access to schedules and notebook execution jobs.

aiplatform.notebookExecutionJobs.*

aiplatform.notebookExecutionJobs.create
aiplatform.notebookExecutionJobs.delete
aiplatform.notebookExecutionJobs.get
aiplatform.notebookExecutionJobs.list

aiplatform.operations.list

aiplatform.pipelineJobs.create

aiplatform.schedules.*

aiplatform.schedules.create
aiplatform.schedules.delete
aiplatform.schedules.get
aiplatform.schedules.list
aiplatform.schedules.update

Notebook Runtime Admin

(roles/aiplatform.notebookRuntimeAdmin)

Grants full access to all runtime templates and runtimes in Notebook Service.

aiplatform.notebookRuntimeTemplates.*

aiplatform.notebookRuntimeTemplates.apply
aiplatform.notebookRuntimeTemplates.create
aiplatform.notebookRuntimeTemplates.delete
aiplatform.notebookRuntimeTemplates.get
aiplatform.notebookRuntimeTemplates.getIamPolicy
aiplatform.notebookRuntimeTemplates.list
aiplatform.notebookRuntimeTemplates.setIamPolicy
aiplatform.notebookRuntimeTemplates.update

aiplatform.notebookRuntimes.*

aiplatform.notebookRuntimes.assign
aiplatform.notebookRuntimes.delete
aiplatform.notebookRuntimes.get
aiplatform.notebookRuntimes.list
aiplatform.notebookRuntimes.start
aiplatform.notebookRuntimes.update
aiplatform.notebookRuntimes.upgrade

aiplatform.operations.list

compute.reservations.get

compute.reservations.list

Notebook Runtime User

(roles/aiplatform.notebookRuntimeUser)

Grants users permissions to create runtime resources using a runtime template and manage the runtime resources they created.

aiplatform.notebookRuntimeTemplates.apply

aiplatform.notebookRuntimeTemplates.get

aiplatform.notebookRuntimeTemplates.getIamPolicy

aiplatform.notebookRuntimeTemplates.list

aiplatform.notebookRuntimes.assign

aiplatform.notebookRuntimes.get

aiplatform.notebookRuntimes.list

aiplatform.operations.list

Vertex AI Platform Provisioned Throughput Admin ^Beta

(roles/aiplatform.provisionedThroughputAdmin)

Grants access to use all resources related to Vertex AI Provisioned Throughput

aiplatform.provisionedThroughputs.*

aiplatform.provisionedThroughputs.create
aiplatform.provisionedThroughputs.list

Vertex AI Tensorboard Web App User ^Beta

(roles/aiplatform.tensorboardWebAppUser)

Grants access to the Vertex AI TensorBoard web app.

aiplatform.tensorboards.recordAccess

Vertex AI User

(roles/aiplatform.user)

Grants access to use all resource in Vertex AI

aiplatform.agentExamples.*

aiplatform.agentExamples.create
aiplatform.agentExamples.delete
aiplatform.agentExamples.get
aiplatform.agentExamples.list
aiplatform.agentExamples.update

aiplatform.agents.*

aiplatform.agents.create
aiplatform.agents.delete
aiplatform.agents.get
aiplatform.agents.list
aiplatform.agents.update

aiplatform.annotationSpecs.*

aiplatform.annotationSpecs.create
aiplatform.annotationSpecs.delete
aiplatform.annotationSpecs.get
aiplatform.annotationSpecs.list
aiplatform.annotationSpecs.update

aiplatform.annotations.*

aiplatform.annotations.create
aiplatform.annotations.delete
aiplatform.annotations.get
aiplatform.annotations.list
aiplatform.annotations.update

aiplatform.apps.*

aiplatform.apps.create
aiplatform.apps.delete
aiplatform.apps.get
aiplatform.apps.list
aiplatform.apps.update

aiplatform.artifacts.*

aiplatform.artifacts.create
aiplatform.artifacts.delete
aiplatform.artifacts.get
aiplatform.artifacts.list
aiplatform.artifacts.update

aiplatform.batchPredictionJobs.*

aiplatform.batchPredictionJobs.cancel
aiplatform.batchPredictionJobs.create
aiplatform.batchPredictionJobs.delete
aiplatform.batchPredictionJobs.get
aiplatform.batchPredictionJobs.list

aiplatform.cacheConfigs.get

aiplatform.cachedContents.*

aiplatform.cachedContents.create
aiplatform.cachedContents.delete
aiplatform.cachedContents.get
aiplatform.cachedContents.list
aiplatform.cachedContents.update

aiplatform.consents.get

aiplatform.contexts.*

aiplatform.contexts.addContextArtifactsAndExecutions
aiplatform.contexts.addContextChildren
aiplatform.contexts.create
aiplatform.contexts.delete
aiplatform.contexts.get
aiplatform.contexts.list
aiplatform.contexts.queryContextLineageSubgraph
aiplatform.contexts.update

aiplatform.customJobs.*

aiplatform.customJobs.cancel
aiplatform.customJobs.create
aiplatform.customJobs.delete
aiplatform.customJobs.get
aiplatform.customJobs.list

aiplatform.dataItems.*

aiplatform.dataItems.create
aiplatform.dataItems.delete
aiplatform.dataItems.get
aiplatform.dataItems.list
aiplatform.dataItems.update

aiplatform.dataLabelingJobs.*

aiplatform.dataLabelingJobs.cancel
aiplatform.dataLabelingJobs.create
aiplatform.dataLabelingJobs.delete
aiplatform.dataLabelingJobs.get
aiplatform.dataLabelingJobs.list

aiplatform.datasetVersions.*

aiplatform.datasetVersions.create
aiplatform.datasetVersions.delete
aiplatform.datasetVersions.get
aiplatform.datasetVersions.list
aiplatform.datasetVersions.restore

aiplatform.datasets.*

aiplatform.datasets.create
aiplatform.datasets.delete
aiplatform.datasets.export
aiplatform.datasets.get
aiplatform.datasets.import
aiplatform.datasets.list
aiplatform.datasets.update

aiplatform.deploymentResourcePools.*

aiplatform.deploymentResourcePools.create
aiplatform.deploymentResourcePools.delete
aiplatform.deploymentResourcePools.get
aiplatform.deploymentResourcePools.list
aiplatform.deploymentResourcePools.queryDeployedModels
aiplatform.deploymentResourcePools.update

aiplatform.edgeDeploymentJobs.*

aiplatform.edgeDeploymentJobs.create
aiplatform.edgeDeploymentJobs.delete
aiplatform.edgeDeploymentJobs.get
aiplatform.edgeDeploymentJobs.list

aiplatform.edgeDeviceDebugInfo.get

aiplatform.edgeDevices.*

aiplatform.edgeDevices.create
aiplatform.edgeDevices.delete
aiplatform.edgeDevices.get
aiplatform.edgeDevices.list
aiplatform.edgeDevices.update

aiplatform.endpoints.create

aiplatform.endpoints.delete

aiplatform.endpoints.deploy

aiplatform.endpoints.explain

aiplatform.endpoints.get

aiplatform.endpoints.list

aiplatform.endpoints.predict

aiplatform.endpoints.undeploy

aiplatform.endpoints.update

aiplatform.entityTypes.create

aiplatform.entityTypes.delete

aiplatform.entityTypes.deleteFeatureValues

aiplatform.entityTypes.exportFeatureValues

aiplatform.entityTypes.get

aiplatform.entityTypes.importFeatureValues

aiplatform.entityTypes.list

aiplatform.entityTypes.readFeatureValues

aiplatform.entityTypes.streamingReadFeatureValues

aiplatform.entityTypes.update

aiplatform.entityTypes.writeFeatureValues

aiplatform.executions.*

aiplatform.executions.addExecutionEvents
aiplatform.executions.create
aiplatform.executions.delete
aiplatform.executions.get
aiplatform.executions.list
aiplatform.executions.queryExecutionInputsAndOutputs
aiplatform.executions.update

aiplatform.extensions.*

aiplatform.extensions.delete
aiplatform.extensions.execute
aiplatform.extensions.get
aiplatform.extensions.import
aiplatform.extensions.list
aiplatform.extensions.update

aiplatform.featureGroups.*

aiplatform.featureGroups.create
aiplatform.featureGroups.delete
aiplatform.featureGroups.get
aiplatform.featureGroups.list
aiplatform.featureGroups.update

aiplatform.featureOnlineStores.create

aiplatform.featureOnlineStores.delete

aiplatform.featureOnlineStores.get

aiplatform.featureOnlineStores.list

aiplatform.featureOnlineStores.update

aiplatform.featureViewSyncs.*

aiplatform.featureViewSyncs.get
aiplatform.featureViewSyncs.list

aiplatform.featureViews.create

aiplatform.featureViews.delete

aiplatform.featureViews.fetchFeatureValues

aiplatform.featureViews.get

aiplatform.featureViews.list

aiplatform.featureViews.searchNearestEntities

aiplatform.featureViews.sync

aiplatform.featureViews.update

aiplatform.features.*

aiplatform.features.create
aiplatform.features.delete
aiplatform.features.get
aiplatform.features.list
aiplatform.features.update

aiplatform.featurestores.batchReadFeatureValues

aiplatform.featurestores.create

aiplatform.featurestores.delete

aiplatform.featurestores.exportFeatures

aiplatform.featurestores.get

aiplatform.featurestores.importFeatures

aiplatform.featurestores.list

aiplatform.featurestores.readFeatures

aiplatform.featurestores.update

aiplatform.featurestores.writeFeatures

aiplatform.humanInTheLoops.*

aiplatform.humanInTheLoops.cancel
aiplatform.humanInTheLoops.create
aiplatform.humanInTheLoops.delete
aiplatform.humanInTheLoops.get
aiplatform.humanInTheLoops.list
aiplatform.humanInTheLoops.queryAnnotationStats
aiplatform.humanInTheLoops.send
aiplatform.humanInTheLoops.update

aiplatform.hyperparameterTuningJobs.*

aiplatform.hyperparameterTuningJobs.cancel
aiplatform.hyperparameterTuningJobs.create
aiplatform.hyperparameterTuningJobs.delete
aiplatform.hyperparameterTuningJobs.get
aiplatform.hyperparameterTuningJobs.list

aiplatform.indexEndpoints.*

aiplatform.indexEndpoints.create
aiplatform.indexEndpoints.delete
aiplatform.indexEndpoints.deploy
aiplatform.indexEndpoints.get
aiplatform.indexEndpoints.list
aiplatform.indexEndpoints.queryVectors
aiplatform.indexEndpoints.undeploy
aiplatform.indexEndpoints.update

aiplatform.indexes.*

aiplatform.indexes.create
aiplatform.indexes.delete
aiplatform.indexes.get
aiplatform.indexes.list
aiplatform.indexes.update

aiplatform.locations.*

aiplatform.locations.evaluateInstances
aiplatform.locations.get
aiplatform.locations.list

aiplatform.metadataSchemas.*

aiplatform.metadataSchemas.create
aiplatform.metadataSchemas.delete
aiplatform.metadataSchemas.get
aiplatform.metadataSchemas.list

aiplatform.metadataStores.*

aiplatform.metadataStores.create
aiplatform.metadataStores.delete
aiplatform.metadataStores.get
aiplatform.metadataStores.list

aiplatform.modelDeploymentMonitoringJobs.*

aiplatform.modelDeploymentMonitoringJobs.create
aiplatform.modelDeploymentMonitoringJobs.delete
aiplatform.modelDeploymentMonitoringJobs.get
aiplatform.modelDeploymentMonitoringJobs.list
aiplatform.modelDeploymentMonitoringJobs.pause
aiplatform.modelDeploymentMonitoringJobs.resume
aiplatform.modelDeploymentMonitoringJobs.searchStatsAnomalies
aiplatform.modelDeploymentMonitoringJobs.update

aiplatform.modelEvaluationSlices.*

aiplatform.modelEvaluationSlices.get
aiplatform.modelEvaluationSlices.import
aiplatform.modelEvaluationSlices.list

aiplatform.modelEvaluations.*

aiplatform.modelEvaluations.exportEvaluatedDataItems
aiplatform.modelEvaluations.get
aiplatform.modelEvaluations.import
aiplatform.modelEvaluations.list

aiplatform.modelMonitoringJobs.*

aiplatform.modelMonitoringJobs.create
aiplatform.modelMonitoringJobs.delete
aiplatform.modelMonitoringJobs.get
aiplatform.modelMonitoringJobs.list

aiplatform.modelMonitors.*

aiplatform.modelMonitors.create
aiplatform.modelMonitors.delete
aiplatform.modelMonitors.get
aiplatform.modelMonitors.list
aiplatform.modelMonitors.searchModelMonitoringAlerts
aiplatform.modelMonitors.searchModelMonitoringStats
aiplatform.modelMonitors.update

aiplatform.models.*

aiplatform.models.delete
aiplatform.models.export
aiplatform.models.get
aiplatform.models.list
aiplatform.models.update
aiplatform.models.upload

aiplatform.nasJobs.*

aiplatform.nasJobs.cancel
aiplatform.nasJobs.create
aiplatform.nasJobs.delete
aiplatform.nasJobs.get
aiplatform.nasJobs.list

aiplatform.nasTrialDetails.*

aiplatform.nasTrialDetails.get
aiplatform.nasTrialDetails.list

aiplatform.notebookExecutionJobs.*

aiplatform.notebookExecutionJobs.create
aiplatform.notebookExecutionJobs.delete
aiplatform.notebookExecutionJobs.get
aiplatform.notebookExecutionJobs.list

aiplatform.notebookRuntimeTemplates.apply

aiplatform.notebookRuntimeTemplates.create

aiplatform.notebookRuntimeTemplates.delete

aiplatform.notebookRuntimeTemplates.get

aiplatform.notebookRuntimeTemplates.list

aiplatform.notebookRuntimeTemplates.update

aiplatform.notebookRuntimes.*

aiplatform.notebookRuntimes.assign
aiplatform.notebookRuntimes.delete
aiplatform.notebookRuntimes.get
aiplatform.notebookRuntimes.list
aiplatform.notebookRuntimes.start
aiplatform.notebookRuntimes.update
aiplatform.notebookRuntimes.upgrade

aiplatform.operations.list

aiplatform.persistentResources.get

aiplatform.persistentResources.list

aiplatform.pipelineJobs.*

aiplatform.pipelineJobs.cancel
aiplatform.pipelineJobs.create
aiplatform.pipelineJobs.delete
aiplatform.pipelineJobs.get
aiplatform.pipelineJobs.list

aiplatform.provisionedThroughputs.list

aiplatform.ragCorpora.*

aiplatform.ragCorpora.create
aiplatform.ragCorpora.delete
aiplatform.ragCorpora.get
aiplatform.ragCorpora.list
aiplatform.ragCorpora.query
aiplatform.ragCorpora.update

aiplatform.ragFiles.*

aiplatform.ragFiles.delete
aiplatform.ragFiles.get
aiplatform.ragFiles.import
aiplatform.ragFiles.list
aiplatform.ragFiles.upload

aiplatform.reasoningEngines.*

aiplatform.reasoningEngines.create
aiplatform.reasoningEngines.delete
aiplatform.reasoningEngines.get
aiplatform.reasoningEngines.list
aiplatform.reasoningEngines.query
aiplatform.reasoningEngines.update

aiplatform.schedules.*

aiplatform.schedules.create
aiplatform.schedules.delete
aiplatform.schedules.get
aiplatform.schedules.list
aiplatform.schedules.update

aiplatform.sessions.*

aiplatform.sessions.get
aiplatform.sessions.list
aiplatform.sessions.run

aiplatform.specialistPools.*

aiplatform.specialistPools.create
aiplatform.specialistPools.delete
aiplatform.specialistPools.get
aiplatform.specialistPools.list
aiplatform.specialistPools.update

aiplatform.studies.*

aiplatform.studies.create
aiplatform.studies.delete
aiplatform.studies.get
aiplatform.studies.list
aiplatform.studies.update

aiplatform.tensorboardExperiments.*

aiplatform.tensorboardExperiments.create
aiplatform.tensorboardExperiments.delete
aiplatform.tensorboardExperiments.get
aiplatform.tensorboardExperiments.list
aiplatform.tensorboardExperiments.update
aiplatform.tensorboardExperiments.write

aiplatform.tensorboardRuns.*

aiplatform.tensorboardRuns.batchCreate
aiplatform.tensorboardRuns.create
aiplatform.tensorboardRuns.delete
aiplatform.tensorboardRuns.get
aiplatform.tensorboardRuns.list
aiplatform.tensorboardRuns.update
aiplatform.tensorboardRuns.write

aiplatform.tensorboardTimeSeries.*

aiplatform.tensorboardTimeSeries.batchCreate
aiplatform.tensorboardTimeSeries.batchRead
aiplatform.tensorboardTimeSeries.create
aiplatform.tensorboardTimeSeries.delete
aiplatform.tensorboardTimeSeries.get
aiplatform.tensorboardTimeSeries.list
aiplatform.tensorboardTimeSeries.read
aiplatform.tensorboardTimeSeries.update

aiplatform.tensorboards.create

aiplatform.tensorboards.delete

aiplatform.tensorboards.get

aiplatform.tensorboards.list

aiplatform.tensorboards.update

aiplatform.trainingPipelines.*

aiplatform.trainingPipelines.cancel
aiplatform.trainingPipelines.create
aiplatform.trainingPipelines.delete
aiplatform.trainingPipelines.get
aiplatform.trainingPipelines.list

aiplatform.trials.*

aiplatform.trials.create
aiplatform.trials.delete
aiplatform.trials.get
aiplatform.trials.list
aiplatform.trials.update

aiplatform.tuningJobs.*

aiplatform.tuningJobs.cancel
aiplatform.tuningJobs.create
aiplatform.tuningJobs.delete
aiplatform.tuningJobs.get
aiplatform.tuningJobs.list
aiplatform.tuningJobs.vertexTune

resourcemanager.projects.get

resourcemanager.projects.list

Vertex AI Viewer

(roles/aiplatform.viewer)

Grants access to view all resource in Vertex AI

aiplatform.agentExamples.get

aiplatform.agentExamples.list

aiplatform.agents.get

aiplatform.agents.list

aiplatform.annotationSpecs.get

aiplatform.annotationSpecs.list

aiplatform.annotations.get

aiplatform.annotations.list

aiplatform.apps.get

aiplatform.apps.list

aiplatform.artifacts.get

aiplatform.artifacts.list

aiplatform.batchPredictionJobs.get

aiplatform.batchPredictionJobs.list

aiplatform.cacheConfigs.get

aiplatform.cachedContents.get

aiplatform.cachedContents.list

aiplatform.consents.get

aiplatform.contexts.get

aiplatform.contexts.list

aiplatform.contexts.queryContextLineageSubgraph

aiplatform.customJobs.get

aiplatform.customJobs.list

aiplatform.dataItems.get

aiplatform.dataItems.list

aiplatform.dataLabelingJobs.get

aiplatform.dataLabelingJobs.list

aiplatform.datasetVersions.get

aiplatform.datasetVersions.list

aiplatform.datasets.get

aiplatform.datasets.list

aiplatform.deploymentResourcePools.get

aiplatform.deploymentResourcePools.list

aiplatform.deploymentResourcePools.queryDeployedModels

aiplatform.edgeDeploymentJobs.get

aiplatform.edgeDeploymentJobs.list

aiplatform.edgeDeviceDebugInfo.get

aiplatform.edgeDevices.get

aiplatform.edgeDevices.list

aiplatform.endpoints.get

aiplatform.endpoints.list

aiplatform.entityTypes.get

aiplatform.entityTypes.list

aiplatform.executions.get

aiplatform.executions.list

aiplatform.executions.queryExecutionInputsAndOutputs

aiplatform.extensions.get

aiplatform.extensions.list

aiplatform.featureGroups.get

aiplatform.featureGroups.list

aiplatform.featureOnlineStores.get

aiplatform.featureOnlineStores.list

aiplatform.featureViewSyncs.*

aiplatform.featureViewSyncs.get
aiplatform.featureViewSyncs.list

aiplatform.featureViews.fetchFeatureValues

aiplatform.featureViews.get

aiplatform.featureViews.list

aiplatform.featureViews.searchNearestEntities

aiplatform.features.get

aiplatform.features.list

aiplatform.featurestores.get

aiplatform.featurestores.list

aiplatform.humanInTheLoops.get

aiplatform.humanInTheLoops.list

aiplatform.hyperparameterTuningJobs.get

aiplatform.hyperparameterTuningJobs.list

aiplatform.indexEndpoints.get

aiplatform.indexEndpoints.list

aiplatform.indexEndpoints.queryVectors

aiplatform.indexes.get

aiplatform.indexes.list

aiplatform.locations.get

aiplatform.locations.list

aiplatform.metadataSchemas.get

aiplatform.metadataSchemas.list

aiplatform.metadataStores.get

aiplatform.metadataStores.list

aiplatform.modelDeploymentMonitoringJobs.get

aiplatform.modelDeploymentMonitoringJobs.list

aiplatform.modelDeploymentMonitoringJobs.searchStatsAnomalies

aiplatform.modelEvaluationSlices.get

aiplatform.modelEvaluationSlices.list

aiplatform.modelEvaluations.get

aiplatform.modelEvaluations.list

aiplatform.modelMonitoringJobs.get

aiplatform.modelMonitoringJobs.list

aiplatform.modelMonitors.get

aiplatform.modelMonitors.list

aiplatform.modelMonitors.searchModelMonitoringAlerts

aiplatform.modelMonitors.searchModelMonitoringStats

aiplatform.models.get

aiplatform.models.list

aiplatform.nasJobs.get

aiplatform.nasJobs.list

aiplatform.nasTrialDetails.*

aiplatform.nasTrialDetails.get
aiplatform.nasTrialDetails.list

aiplatform.notebookExecutionJobs.get

aiplatform.notebookExecutionJobs.list

aiplatform.notebookRuntimeTemplates.get

aiplatform.notebookRuntimeTemplates.list

aiplatform.notebookRuntimes.get

aiplatform.notebookRuntimes.list

aiplatform.operations.list

aiplatform.persistentResources.get

aiplatform.persistentResources.list

aiplatform.pipelineJobs.get

aiplatform.pipelineJobs.list

aiplatform.provisionedThroughputs.list

aiplatform.ragCorpora.get

aiplatform.ragCorpora.list

aiplatform.ragCorpora.query

aiplatform.ragFiles.get

aiplatform.ragFiles.list

aiplatform.reasoningEngines.get

aiplatform.reasoningEngines.list

aiplatform.reasoningEngines.query

aiplatform.schedules.get

aiplatform.schedules.list

aiplatform.sessions.get

aiplatform.sessions.list

aiplatform.specialistPools.get

aiplatform.specialistPools.list

aiplatform.specialistPools.update

aiplatform.studies.get

aiplatform.studies.list

aiplatform.tensorboardExperiments.get

aiplatform.tensorboardExperiments.list

aiplatform.tensorboardRuns.get

aiplatform.tensorboardRuns.list

aiplatform.tensorboardTimeSeries.batchRead

aiplatform.tensorboardTimeSeries.get

aiplatform.tensorboardTimeSeries.list

aiplatform.tensorboardTimeSeries.read

aiplatform.tensorboards.get

aiplatform.tensorboards.list

aiplatform.trainingPipelines.get

aiplatform.trainingPipelines.list

aiplatform.trials.get

aiplatform.trials.list

aiplatform.tuningJobs.get

aiplatform.tuningJobs.list

resourcemanager.projects.get

resourcemanager.projects.list

Funciones básicas

Los roles básicos anteriores de Google Cloudson comunes a todos los servicios de Google Cloud . Son las funciones de propietario, editor y visualizador.

Los roles básicos proporcionan permisos en Google Cloud, no solo para Colab Enterprise. Por este motivo, deberías usar los roles de Colab Enterprise siempre que sea posible.

Funciones personalizadas

Si los roles de IAM predefinidos para Colab Enterprise no satisfacen tus necesidades, puedes definir roles personalizados. Los roles personalizados te permiten elegir un conjunto de permisos específico, crear tu propio rol con esos permisos y otorgarlo a los usuarios en tu organización. Para obtener más información, consulta Comprende los roles personalizados de IAM.

Agentes de servicio para Colab Enterprise

Colab Enterprise crea y usa automáticamente agentes de servicio para acceder a recursos en tu nombre. Cuando se crea un agente de servicio, se le otorga un rol predefinido para tu proyecto.

En la siguiente tabla, se enumeran los agentes de servicio de Colab Enterprise, sus direcciones de correo electrónico y sus respectivos roles:

Nombre	Se usa para	Dirección de correo electrónico	Rol
Agente de servicio de Vertex AI	Funciones de Vertex AI	`service-PROJECT_NUMBER@gcp-sa-aiplatform.iam.gserviceaccount.com`	`roles/aiplatform.serviceAgent`
Agente de servicio de Colab de Vertex AI	Otorga a Colab Enterprise los permisos adecuados para funcionar.	`service-PROJECT_NUMBER@gcp-sa-vertex-nb.iam.gserviceaccount.com`	`roles/aiplatform.colabServiceAgent`
Agente de servicio de notebook de Vertex AI	Ejecuta recursos administrados por notebooks en el proyecto del usuario con permisos restringidos	`service-PROJECT_NUMBER@gcp-sa-aiplatform-vm.iam.gserviceaccount.com`	`roles/aiplatform.notebookServiceAgent`

Si quitas los roles predeterminados de los agentes de servicio de Colab Enterprise, Colab Enterprise puede reasignar automáticamente esos roles para garantizar la funcionalidad del servicio sin interrupciones. Para desactivar el servicio de Colab Enterprise, debes desactivar las APIs relevantes en lugar de quitar roles.

¿Qué sigue?

Otorga a una instancia principal acceso a un notebook de Colab Enterprise.
Obtén más información sobre IAM.
Obtén más información sobre cómo crear y administrar funciones personalizadas de IAM.
Más información sobre los agentes de servicio

Control de acceso con IAM

Controla el acceso a los notebooks con IAM

Ejecutar código que interactúa con otros servicios de Google Cloud

Tipos de roles de IAM

Roles predefinidos para Colab Enterprise

Vertex AI Administrator

Colab Enterprise Admin

Colab Enterprise User

Vertex AI Feature Store EntityType owner

Vertex AI Platform Express Admin Beta

Vertex AI Platform Express User Beta

Vertex AI Feature Store Admin

Vertex AI Feature Store Data Viewer

Vertex AI Feature Store Data Writer

Vertex AI Feature Store Instance Creator

Vertex AI Feature Store Resource Viewer

Vertex AI Feature Store User Beta

Vertex AI Migration Service User

Notebook Executor User Beta

Notebook Runtime Admin

Notebook Runtime User

Vertex AI Platform Provisioned Throughput Admin Beta

Vertex AI Tensorboard Web App User Beta

Vertex AI User

Vertex AI Viewer

Funciones básicas

Funciones personalizadas

Agentes de servicio para Colab Enterprise

¿Qué sigue?

Vertex AI Platform Express Admin ^Beta

Vertex AI Platform Express User ^Beta

Vertex AI Feature Store User ^Beta

Notebook Executor User ^Beta

Vertex AI Platform Provisioned Throughput Admin ^Beta

Vertex AI Tensorboard Web App User ^Beta