发送反馈
使用 IAM 进行访问权限控制
使用集合让一切井井有条
根据您的偏好保存内容并对其进行分类。
Identity and Access Management (IAM) 角色介绍了如何使用 Managed Service for Microsoft Active Directory (Managed Microsoft AD) API。下面列出了一系列可用于代管式 Microsoft AD 的 IAM 角色及其可用的方法。
此外,服务账号必须具有 servicemanagement.services.bind 权限才能查看和启用托管式 Microsoft AD。详细了解服务管理角色和权限 。
Role
Permissions
Google Cloud Managed Identities Admin
(roles/)
Full access to Google Cloud Managed Identities Domains and related resources. Intended to be granted on a project-level.
managedidentities.*
managedidentities.managedidentities.managedidentities.backups.getmanagedidentities.managedidentities.backups.listmanagedidentities.managedidentities.managedidentities.managedidentities.managedidentities.managedidentities.managedidentities.managedidentities.managedidentities.managedidentities.managedidentities.managedidentities.managedidentities.managedidentities.domains.getmanagedidentities.managedidentities.domains.listmanagedidentities.managedidentities.managedidentities.managedidentities.managedidentities.managedidentities.managedidentities.managedidentities.managedidentities.managedidentities.managedidentities.managedidentities.managedidentities.managedidentities.managedidentities.managedidentities.managedidentities.managedidentities.peerings.getmanagedidentities.managedidentities.managedidentities.managedidentities.managedidentities.managedidentities.
resourcemanager.projects.get
resourcemanager.projects.list
Google Cloud Managed Identities Backup Admin
(roles/)
Full access to Google Cloud Managed Identities Backup and related resources. Intended to be granted on a project-level
managedidentities.backups.*
managedidentities.managedidentities.managedidentities.backups.getmanagedidentities.managedidentities.backups.listmanagedidentities.managedidentities.
managedidentities.domains.get
managedidentities.locations.*
managedidentities.managedidentities.
managedidentities.operations.*
managedidentities.managedidentities.managedidentities.managedidentities.
resourcemanager.projects.get
resourcemanager.projects.list
Google Cloud Managed Identities Backup Viewer
(roles/)
Read-only access to Google Cloud Managed Identities Backup and related resources.
managedidentities.backups.get
managedidentities.
managedidentities.backups.list
managedidentities.domains.get
managedidentities.locations.*
managedidentities.managedidentities.
managedidentities.
managedidentities.
resourcemanager.projects.get
resourcemanager.projects.list
Google Cloud Managed Identities Domain Admin
(roles/)
Read-Update-Delete to Google Cloud Managed Identities Domains and related resources. Intended to be granted on a resource (domain) level.
managedidentities.backups.*
managedidentities.managedidentities.managedidentities.backups.getmanagedidentities.managedidentities.backups.listmanagedidentities.managedidentities.
managedidentities.
managedidentities.
managedidentities.
managedidentities.
managedidentities.
managedidentities.
managedidentities.
managedidentities.
managedidentities.
managedidentities.
managedidentities.domains.get
managedidentities.
managedidentities.
managedidentities.
managedidentities.
managedidentities.
managedidentities.
managedidentities.
managedidentities.
managedidentities.
managedidentities.locations.*
managedidentities.managedidentities.
managedidentities.
managedidentities.
managedidentities.
managedidentities.managedidentities.
resourcemanager.projects.get
resourcemanager.projects.list
Google Cloud Managed Identities Domain Join
Beta
(roles/)
Access to domain join VMs with Cloud AD
managedidentities.
managedidentities.domains.get
Google Cloud Managed Identities Peering Admin
(roles/)
Full access to Google Cloud Managed Identities Domains and related resources. Intended to be granted on a project-level
managedidentities.locations.*
managedidentities.managedidentities.
managedidentities.operations.*
managedidentities.managedidentities.managedidentities.managedidentities.
managedidentities.peerings.*
managedidentities.managedidentities.managedidentities.peerings.getmanagedidentities.managedidentities.managedidentities.managedidentities.
resourcemanager.projects.get
resourcemanager.projects.list
Google Cloud Managed Identities Peering Viewer
(roles/)
Read-only access to Google Cloud Managed Identities Peering and related resources.
managedidentities.locations.*
managedidentities.managedidentities.
managedidentities.
managedidentities.
managedidentities.peerings.get
managedidentities.
managedidentities.
resourcemanager.projects.get
resourcemanager.projects.list
Google Cloud Managed Identities Viewer
(roles/)
Read-only access to Google Cloud Managed Identities Domains and related resources.
managedidentities.backups.get
managedidentities.
managedidentities.backups.list
managedidentities.domains.get
managedidentities.
managedidentities.domains.list
managedidentities.
managedidentities.
managedidentities.locations.*
managedidentities.managedidentities.
managedidentities.
managedidentities.
managedidentities.peerings.get
managedidentities.
managedidentities.
managedidentities.
managedidentities.managedidentities.
resourcemanager.projects.get
resourcemanager.projects.list
如需详细了解 IAM 角色,请参阅 了解角色 。
发送反馈
如未另行说明,那么本页面中的内容已根据知识共享署名 4.0 许可 获得了许可,并且代码示例已根据 Apache 2.0 许可 获得了许可。有关详情,请参阅 Google 开发者网站政策 。Java 是 Oracle 和/或其关联公司的注册商标。
最后更新时间 (UTC):2025-02-14。
需要向我们提供更多信息?
[[["易于理解","easyToUnderstand","thumb-up"],["解决了我的问题","solvedMyProblem","thumb-up"],["其他","otherUp","thumb-up"]],[["很难理解","hardToUnderstand","thumb-down"],["信息或示例代码不正确","incorrectInformationOrSampleCode","thumb-down"],["没有我需要的信息/示例","missingTheInformationSamplesINeed","thumb-down"],["翻译问题","translationIssue","thumb-down"],["其他","otherDown","thumb-down"]],["最后更新时间 (UTC):2025-02-14。"],[],[]]
