GCP: Inventory Permissions
This page outlines the permissions required for the Google Cloud Platform (GCP) inventory connector. Enable these permissions to view the resource listing in the inventory tab.
As cloud environments evolve and providers introduce API changes, required permissions may change as well. These permissions are reviewed and updated with each product release to reflect the latest requirements. Stale API entries are periodically removed, and updates are included in subsequent releases.
| Resource | Permissions |
|---|---|
| Load Balancing | compute.forwardingRules.list |
| Cloud Run Services | run.locations.list run.services.list |
| Kubernetes clusters | container.clusters.list |
| Firewall Policy | compute.forwardingRules.list |
| Address Groups | networksecurity.addressGroups.list networksecurity.locations.list |
| Subnetwork | compute.subetworks.list compute.regions.list compute.zones.list |
| Firewall | compute.firewalls.list compute.regions.list compute.zones.list |
| Network | compute.networks.list compute.regions.list compute.zones.list |
| Virtual Machines | compute.instances.list compute.regions.list compute.zones.list resourcemanager.projects.list (mandatory permission) |
| Cloud Functions | cloudfunctions.functions.list compute.regions.list compute.zones.list |