Halaman ini membahas dua tingkat kontrol akses untuk instance
Cloud SQL. Anda harus mengonfigurasi kedua tingkat kontrol akses sebelum Anda dapat
mengelola instance Anda.
Tingkat kontrol akses
Mengonfigurasi kontrol akses melibatkan pengontrolan siapa atau
apa yang dapat mengakses instance tersebut. Kontrol akses terjadi di dua tingkat:
Akses tingkat instance
Akses tingkat instance mengizinkan akses ke instance Cloud SQL Anda
dari aplikasi atau klien (yang berjalan di lingkungan standar App Engine atau secara eksternal)
atau dari layanan Google Cloud lainnya, seperti Compute Engine.
Akses database
Akses database menggunakan
peran PostgreSQL agar pengguna PostgreSQL dapat mengakses data
di instance Anda.
Akses tingkat instance
Cara Anda mengonfigurasi akses tingkat instance bergantung pada dari mana Anda
terhubung:
Setelah pengguna atau aplikasi terhubung ke instance database, pengguna atau
aplikasi tersebut harus login dengan akun pengguna atau layanan.
Sebagai bagian dari pembuatan instance Cloud SQL, Anda menyiapkan akun pengguna
(root) default. Anda juga dapat meperbanyak pengguna untuk memberi Anda kontrol yang lebih terperinci atas akses ke instance Anda.
[[["Mudah dipahami","easyToUnderstand","thumb-up"],["Memecahkan masalah saya","solvedMyProblem","thumb-up"],["Lainnya","otherUp","thumb-up"]],[["Sulit dipahami","hardToUnderstand","thumb-down"],["Informasi atau kode contoh salah","incorrectInformationOrSampleCode","thumb-down"],["Informasi/contoh yang saya butuhkan tidak ada","missingTheInformationSamplesINeed","thumb-down"],["Masalah terjemahan","translationIssue","thumb-down"],["Lainnya","otherDown","thumb-down"]],["Terakhir diperbarui pada 2025-09-04 UTC."],[],[],null,["# About access control\n\n\u003cbr /\u003e\n\n[MySQL](/sql/docs/mysql/instance-access-control \"View this page for the MySQL database engine\") \\| PostgreSQL \\| [SQL Server](/sql/docs/sqlserver/instance-access-control \"View this page for the SQL Server database engine\")\n\n\u003cbr /\u003e\n\n\u003cbr /\u003e\n\nThis page discusses the two levels of access control for Cloud SQL\ninstances. You must configure both levels of access control before you can\nmanage your instance.\n\nLevels of access control\n------------------------\n\nConfiguring access control involves controlling who or\nwhat can access the instance. Access control occurs on two levels:\n\nInstance-level access\n:\n Instance-level access authorizes access to your Cloud SQL instance\n from an application or client (running on an App Engine standard environment or externally)\n or from another Google Cloud service, such as Compute Engine.\n\nDatabase access\n:\n Database access uses\n [PostgreSQL roles](https://www.postgresql.org/docs/current/static/user-manag.html) to allow PostgreSQL users to have access to the data\n in your instance.\n| **Note:** For information about controlling\n| who can *manage* your instance, see\n| [Project access control](/sql/docs/project-access-control).\n\n\u003cbr /\u003e\n\n### Instance-level access\n\nHow you configure instance-level access depends on where you are connecting from:\n\n### Database access\n\nAfter a user or application connects to a database instance, the user or\napplication must log in with a user or service account.\n\nAs part of creating a Cloud SQL instance, you set up the default user\n(root) account. You can also create more users to give you finer-grained control\nover access to your instance.\n\nFor more information,\nsee [PostgreSQL users](/sql/docs/postgres/users) and\n[Creating and managing PostgreSQL users](/sql/docs/postgres/create-manage-users).\n\nWhat's next\n-----------\n\n- Learn more about [how Cloud SQL works with PostgreSQL users](/sql/docs/postgres/users).\n- Learn more about [PostgreSQL roles](https://www.postgresql.org/docs/current/static/user-manag.html).\n- Learn more about your [options for connecting from an external application](/sql/docs/postgres/connect-overview).\n- Learn about [controlling who can manage your Google Cloud Platform project](/sql/docs/postgres/roles-and-permissions)."]]
