1.0 GCP Connection Permissions
This article describes the read permissions required to onboard a Google Cloud Platform (GCP) connection in Fortanix Key Insight. It provides a detailed list of permissions that must be granted to enable secure and successful integration with GCP keys and services.
NOTE
Fortanix Key Insight does not have access to customer data. The permissions outlined in the article are exclusively for cryptographic operations and security enforcement.
1.1 GCP Permissions (Services)
This section describes the permissions required to integrate GCP services with Fortanix Key Insight.
GCP Service | Role | Description |
|---|---|---|
Cloud Key Management Service (KMS) | Cloud KMS Viewer | Provides read-only access to Cloud KMS keys and key metadata. For more information on the associated permissions for this role, refer to Cloud Key Management Service roles and permissions. |
Cloud SQL | Cloud SQL Viewer | Provides read-only access to Cloud SQL instances, configurations, and metadata. For more information on the associated permissions for this role, refer to Cloud SQL roles and permissions. |
Cloud Storage | Storage Bucket Viewer (beta) | Provides read-only access to Cloud Storage objects and bucket metadata. For more information on the associated permissions for this role, refer to Cloud Storage roles and permissions. |
Additionally, for more information on the complete GCP IAM roles and permissions, refer to IAM roles and permissions index.