ID 및 액세스 관리(IAM) 역할은 Microsoft Active Directory(관리형 Microsoft AD) API의 관리형 서비스 사용 방법을 규정합니다. 다음은 관리형 Microsoft AD에서 사용할 수 있는 각 IAM 역할과 이러한 역할에 사용할 수 있는 메서드 목록입니다.
또한 서비스 계정에는 관리형 Microsoft AD를 보고 사용 설정할 수 있는 servicemanagement.services.bind
권한이 있어야 합니다. 서비스 관리 역할 및 권한에 대해 자세히 알아보세요.
Role | Permissions |
---|---|
Google Cloud Managed Identities Admin( Full access to Google Cloud Managed Identities Domains and related resources. Intended to be granted on a project-level. |
|
Google Cloud Managed Identities Backup Admin( Full access to Google Cloud Managed Identities Backup and related resources. Intended to be granted on a project-level |
|
Google Cloud Managed Identities Backup Viewer( Read-only access to Google Cloud Managed Identities Backup and related resources. |
|
Google Cloud Managed Identities Domain Admin( Read-Update-Delete to Google Cloud Managed Identities Domains and related resources. Intended to be granted on a resource (domain) level. |
|
Google Cloud Managed Identities Domain Join Beta( Access to domain join VMs with Cloud AD |
|
Google Cloud Managed Identities Peering Admin( Full access to Google Cloud Managed Identities Domains and related resources. Intended to be granted on a project-level |
|
Google Cloud Managed Identities Peering Viewer( Read-only access to Google Cloud Managed Identities Peering and related resources. |
|
Google Cloud Managed Identities Viewer( Read-only access to Google Cloud Managed Identities Domains and related resources. |
|
IAM 역할에 대한 자세한 내용은 역할 이해를 참조하세요.