Console
    Contact Us Start free

    Google Cloud Observability roles and permissions

    This page lists the IAM roles and permissions for Google Cloud Observability. To search through all roles and permissions, see the role and permission index .

    Google Cloud Observability roles

    Role
    Permissions

    ( roles/ observability.admin )

    Full access to Observability resources.

    observability.*

    • observability. analyticsViews. create
    • observability. analyticsViews. delete
    • observability. analyticsViews. get
    • observability. analyticsViews. list
    • observability. analyticsViews. update
    • observability.buckets.create
    • observability.buckets.delete
    • observability.buckets.get
    • observability.buckets.list
    • observability.buckets.undelete
    • observability.buckets.update
    • observability.datasets.create
    • observability.datasets.delete
    • observability.datasets.get
    • observability.datasets.list
    • observability. datasets. undelete
    • observability.datasets.update
    • observability.links.create
    • observability.links.delete
    • observability.links.get
    • observability.links.list
    • observability.links.update
    • observability. operations. cancel
    • observability. operations. delete
    • observability.operations.get
    • observability.operations.list
    • observability.scopes.get
    • observability.scopes.update
    • observability. traceScopes. create
    • observability. traceScopes. delete
    • observability.traceScopes.get
    • observability.traceScopes.list
    • observability. traceScopes. update
    • observability.views.access
    • observability.views.create
    • observability.views.delete
    • observability.views.get
    • observability.views.list
    • observability.views.update

    ( roles/ observability.analyticsUser )

    Grants permissions to use Cloud Observability Analytics.

    logging.queries.getShared

    logging.queries.listShared

    logging.queries.usePrivate

    observability.analyticsViews.*

    • observability. analyticsViews. create
    • observability. analyticsViews. delete
    • observability. analyticsViews. get
    • observability. analyticsViews. list
    • observability. analyticsViews. update

    observability.buckets.get

    observability.buckets.list

    observability.datasets.get

    observability.datasets.list

    observability.links.get

    observability.links.list

    observability.operations.get

    observability.operations.list

    observability.scopes.get

    observability.traceScopes.get

    observability.traceScopes.list

    observability.views.get

    observability.views.list

    ( roles/ observability.editor )

    Edit access to Observability resources.

    observability.analyticsViews.*

    • observability. analyticsViews. create
    • observability. analyticsViews. delete
    • observability. analyticsViews. get
    • observability. analyticsViews. list
    • observability. analyticsViews. update

    observability.buckets.create

    observability.buckets.get

    observability.buckets.list

    observability.buckets.update

    observability.datasets.create

    observability.datasets.get

    observability.datasets.list

    observability.datasets.update

    observability.links.*

    • observability.links.create
    • observability.links.delete
    • observability.links.get
    • observability.links.list
    • observability.links.update

    observability.operations.*

    • observability. operations. cancel
    • observability. operations. delete
    • observability.operations.get
    • observability.operations.list

    observability.scopes.*

    • observability.scopes.get
    • observability.scopes.update

    observability.traceScopes.*

    • observability. traceScopes. create
    • observability. traceScopes. delete
    • observability.traceScopes.get
    • observability.traceScopes.list
    • observability. traceScopes. update

    observability.views.create

    observability.views.delete

    observability.views.get

    observability.views.list

    observability.views.update

    ( roles/ observability.scopesEditor )

    Grants permission to view and edit Observability, Logging, Trace, and Monitoring scopes

    logging.logScopes.*

    • logging.logScopes.create
    • logging.logScopes.delete
    • logging.logScopes.get
    • logging.logScopes.list
    • logging.logScopes.update

    monitoring.metricsScopes.link

    observability.scopes.*

    • observability.scopes.get
    • observability.scopes.update

    observability.traceScopes.*

    • observability. traceScopes. create
    • observability. traceScopes. delete
    • observability.traceScopes.get
    • observability.traceScopes.list
    • observability. traceScopes. update

    ( roles/ observability.serviceAgent )

    Grants Observability service account the ability to list, create and link datasets in the consumer project.

    bigquery.datasets.create

    bigquery.datasets.get

    bigquery.datasets.link

    ( roles/ observability.viewAccessor )

    Read only access to data defined by an Observability View.

    observability.views.access

    ( roles/ observability.viewer )

    Read only access to Observability resources.

    observability. analyticsViews. get

    observability. analyticsViews. list

    observability.buckets.get

    observability.buckets.list

    observability.datasets.get

    observability.datasets.list

    observability.links.get

    observability.links.list

    observability.operations.get

    observability.operations.list

    observability.scopes.get

    observability.traceScopes.get

    observability.traceScopes.list

    observability.views.get

    observability.views.list

    Google Cloud Observability permissions

    Permission
    Included in roles

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Observability Admin ( roles/ observability.admin )

    Observability Analytics User ( roles/ observability.analyticsUser )

    Observability Editor ( roles/ observability.editor )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Observability Admin ( roles/ observability.admin )

    Observability Analytics User ( roles/ observability.analyticsUser )

    Observability Editor ( roles/ observability.editor )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Viewer ( roles/ viewer )

    Support User ( roles/ iam.supportUser )

    Observability Admin ( roles/ observability.admin )

    Observability Analytics User ( roles/ observability.analyticsUser )

    Observability Editor ( roles/ observability.editor )

    Observability Viewer ( roles/ observability.viewer )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Viewer ( roles/ viewer )

    Security Admin ( roles/ iam.securityAdmin )

    Security Auditor ( roles/ iam.securityAuditor )

    Security Reviewer ( roles/ iam.securityReviewer )

    Support User ( roles/ iam.supportUser )

    Observability Admin ( roles/ observability.admin )

    Observability Analytics User ( roles/ observability.analyticsUser )

    Observability Editor ( roles/ observability.editor )

    Observability Viewer ( roles/ observability.viewer )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Observability Admin ( roles/ observability.admin )

    Observability Analytics User ( roles/ observability.analyticsUser )

    Observability Editor ( roles/ observability.editor )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Observability Admin ( roles/ observability.admin )

    Observability Editor ( roles/ observability.editor )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Observability Admin ( roles/ observability.admin )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Viewer ( roles/ viewer )

    Support User ( roles/ iam.supportUser )

    Observability Admin ( roles/ observability.admin )

    Observability Analytics User ( roles/ observability.analyticsUser )

    Observability Editor ( roles/ observability.editor )

    Observability Viewer ( roles/ observability.viewer )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Viewer ( roles/ viewer )

    Security Admin ( roles/ iam.securityAdmin )

    Security Auditor ( roles/ iam.securityAuditor )

    Security Reviewer ( roles/ iam.securityReviewer )

    Support User ( roles/ iam.supportUser )

    Observability Admin ( roles/ observability.admin )

    Observability Analytics User ( roles/ observability.analyticsUser )

    Observability Editor ( roles/ observability.editor )

    Observability Viewer ( roles/ observability.viewer )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Observability Admin ( roles/ observability.admin )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Observability Admin ( roles/ observability.admin )

    Observability Editor ( roles/ observability.editor )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Observability Admin ( roles/ observability.admin )

    Observability Editor ( roles/ observability.editor )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Observability Admin ( roles/ observability.admin )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Viewer ( roles/ viewer )

    Support User ( roles/ iam.supportUser )

    Observability Admin ( roles/ observability.admin )

    Observability Analytics User ( roles/ observability.analyticsUser )

    Observability Editor ( roles/ observability.editor )

    Observability Viewer ( roles/ observability.viewer )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Viewer ( roles/ viewer )

    Security Admin ( roles/ iam.securityAdmin )

    Security Auditor ( roles/ iam.securityAuditor )

    Security Reviewer ( roles/ iam.securityReviewer )

    Support User ( roles/ iam.supportUser )

    Observability Admin ( roles/ observability.admin )

    Observability Analytics User ( roles/ observability.analyticsUser )

    Observability Editor ( roles/ observability.editor )

    Observability Viewer ( roles/ observability.viewer )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Observability Admin ( roles/ observability.admin )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Observability Admin ( roles/ observability.admin )

    Observability Editor ( roles/ observability.editor )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Observability Admin ( roles/ observability.admin )

    Observability Editor ( roles/ observability.editor )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Observability Admin ( roles/ observability.admin )

    Observability Editor ( roles/ observability.editor )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Viewer ( roles/ viewer )

    Support User ( roles/ iam.supportUser )

    Observability Admin ( roles/ observability.admin )

    Observability Analytics User ( roles/ observability.analyticsUser )

    Observability Editor ( roles/ observability.editor )

    Observability Viewer ( roles/ observability.viewer )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Viewer ( roles/ viewer )

    Security Admin ( roles/ iam.securityAdmin )

    Security Auditor ( roles/ iam.securityAuditor )

    Security Reviewer ( roles/ iam.securityReviewer )

    Support User ( roles/ iam.supportUser )

    Observability Admin ( roles/ observability.admin )

    Observability Analytics User ( roles/ observability.analyticsUser )

    Observability Editor ( roles/ observability.editor )

    Observability Viewer ( roles/ observability.viewer )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Observability Admin ( roles/ observability.admin )

    Observability Editor ( roles/ observability.editor )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Observability Admin ( roles/ observability.admin )

    Observability Editor ( roles/ observability.editor )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Observability Admin ( roles/ observability.admin )

    Observability Editor ( roles/ observability.editor )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Viewer ( roles/ viewer )

    Support User ( roles/ iam.supportUser )

    Observability Admin ( roles/ observability.admin )

    Observability Analytics User ( roles/ observability.analyticsUser )

    Observability Editor ( roles/ observability.editor )

    Observability Viewer ( roles/ observability.viewer )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Viewer ( roles/ viewer )

    Security Admin ( roles/ iam.securityAdmin )

    Security Auditor ( roles/ iam.securityAuditor )

    Security Reviewer ( roles/ iam.securityReviewer )

    Support User ( roles/ iam.supportUser )

    Observability Admin ( roles/ observability.admin )

    Observability Analytics User ( roles/ observability.analyticsUser )

    Observability Editor ( roles/ observability.editor )

    Observability Viewer ( roles/ observability.viewer )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Viewer ( roles/ viewer )

    Cloud Hub Operator ( roles/ cloudhub.operator )

    Cloud Trace Admin ( roles/ cloudtrace.admin )

    Cloud Trace User ( roles/ cloudtrace.user )

    Dataproc Hub Agent ( roles/ dataproc.hubAgent )

    Data Scientist ( roles/ iam.dataScientist )

    Databases Admin ( roles/ iam.databasesAdmin )

    Dev Ops ( roles/ iam.devOps )

    Infrastructure Administrator ( roles/ iam.infrastructureAdmin )

    ML Engineer ( roles/ iam.mlEngineer )

    Network Administrator ( roles/ iam.networkAdmin )

    Security Auditor ( roles/ iam.securityAuditor )

    Site Reliability Engineer ( roles/ iam.siteReliabilityEngineer )

    Support User ( roles/ iam.supportUser )

    Logging Admin ( roles/ logging.admin )

    Logs Configuration Writer ( roles/ logging.configWriter )

    Private Logs Viewer ( roles/ logging.privateLogViewer )

    Logs Viewer ( roles/ logging.viewer )

    Observability Admin ( roles/ observability.admin )

    Observability Analytics User ( roles/ observability.analyticsUser )

    Observability Editor ( roles/ observability.editor )

    Observability Scopes Editor ( roles/ observability.scopesEditor )

    Observability Viewer ( roles/ observability.viewer )

    Telco Automation Admin ( roles/ telcoautomation.admin )

    Telco Automation Tier 1 Operations Admin ( roles/ telcoautomation.opsAdminTier1 )

    Telco Automation Tier 4 Operations Admin ( roles/ telcoautomation.opsAdminTier4 )

    Service agent roles

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Observability Admin ( roles/ observability.admin )

    Observability Editor ( roles/ observability.editor )

    Observability Scopes Editor ( roles/ observability.scopesEditor )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Cloud Trace Admin ( roles/ cloudtrace.admin )

    Cloud Trace User ( roles/ cloudtrace.user )

    Site Reliability Engineer ( roles/ iam.siteReliabilityEngineer )

    Observability Admin ( roles/ observability.admin )

    Observability Editor ( roles/ observability.editor )

    Observability Scopes Editor ( roles/ observability.scopesEditor )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Cloud Trace Admin ( roles/ cloudtrace.admin )

    Cloud Trace User ( roles/ cloudtrace.user )

    Site Reliability Engineer ( roles/ iam.siteReliabilityEngineer )

    Observability Admin ( roles/ observability.admin )

    Observability Editor ( roles/ observability.editor )

    Observability Scopes Editor ( roles/ observability.scopesEditor )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Viewer ( roles/ viewer )

    Cloud Trace Admin ( roles/ cloudtrace.admin )

    Cloud Trace User ( roles/ cloudtrace.user )

    Site Reliability Engineer ( roles/ iam.siteReliabilityEngineer )

    Support User ( roles/ iam.supportUser )

    Observability Admin ( roles/ observability.admin )

    Observability Analytics User ( roles/ observability.analyticsUser )

    Observability Editor ( roles/ observability.editor )

    Observability Scopes Editor ( roles/ observability.scopesEditor )

    Observability Viewer ( roles/ observability.viewer )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Viewer ( roles/ viewer )

    Cloud Trace Admin ( roles/ cloudtrace.admin )

    Cloud Trace User ( roles/ cloudtrace.user )

    Security Admin ( roles/ iam.securityAdmin )

    Security Auditor ( roles/ iam.securityAuditor )

    Security Reviewer ( roles/ iam.securityReviewer )

    Site Reliability Engineer ( roles/ iam.siteReliabilityEngineer )

    Support User ( roles/ iam.supportUser )

    Observability Admin ( roles/ observability.admin )

    Observability Analytics User ( roles/ observability.analyticsUser )

    Observability Editor ( roles/ observability.editor )

    Observability Scopes Editor ( roles/ observability.scopesEditor )

    Observability Viewer ( roles/ observability.viewer )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Cloud Trace Admin ( roles/ cloudtrace.admin )

    Cloud Trace User ( roles/ cloudtrace.user )

    Site Reliability Engineer ( roles/ iam.siteReliabilityEngineer )

    Observability Admin ( roles/ observability.admin )

    Observability Editor ( roles/ observability.editor )

    Observability Scopes Editor ( roles/ observability.scopesEditor )

    Owner ( roles/ owner )

    Observability Admin ( roles/ observability.admin )

    Observability View Accessor ( roles/ observability.viewAccessor )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Observability Admin ( roles/ observability.admin )

    Observability Editor ( roles/ observability.editor )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Observability Admin ( roles/ observability.admin )

    Observability Editor ( roles/ observability.editor )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Viewer ( roles/ viewer )

    Support User ( roles/ iam.supportUser )

    Observability Admin ( roles/ observability.admin )

    Observability Analytics User ( roles/ observability.analyticsUser )

    Observability Editor ( roles/ observability.editor )

    Observability Viewer ( roles/ observability.viewer )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Viewer ( roles/ viewer )

    Security Admin ( roles/ iam.securityAdmin )

    Security Auditor ( roles/ iam.securityAuditor )

    Security Reviewer ( roles/ iam.securityReviewer )

    Support User ( roles/ iam.supportUser )

    Observability Admin ( roles/ observability.admin )

    Observability Analytics User ( roles/ observability.analyticsUser )

    Observability Editor ( roles/ observability.editor )

    Observability Viewer ( roles/ observability.viewer )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Observability Admin ( roles/ observability.admin )

    Observability Editor ( roles/ observability.editor )
    Design a Mobile Site
    View Site in Mobile | Classic
    Share by: