Manage access to cloud load balancers
Access to cloud load balancers is governed by:
- projects — define access within an isolated group of resources;
- a role model — defines access for different users within an account and project.
Access within the role model
Learn more about role-based access in the Access management in Servercore products guide.
member
A user with full access to all services.Access management is unavailable for: users, service accounts, user groups, and federations.
iam.admin
A user with access to user management and no access to services or billing.Cannot manage their own account: change permissions, manage notifications, or delete the user.The first user with the iam.admin role is created by the Account Owner.
iam.viewer
User with access to view everything that iam.admin manages.
reader
User with access to view everything that member manages in the same access scope.
vpc.admin
User with access to manage cloud platform networks (private networks and subnets, public subnets and public IP addresses, cloud routers), cloud firewalls, security groups, and cloud load balancers.
Assigning ports to a cloud server is not available.
vpc.viewer
User with access to view everything that vpc.admin manages in the same access scope.
vpc.load_balancer.admin
vpc.load_balancer.viewer
User with access to view everything that vpc.load_balancer.admin manages in the same access scope.