Regarding the Google Cloud resources and IAM custom role permissions created by opswitch during integration (v.1.0)
The resources created and IAM custom role permissions when opswitch integrates with Google Cloud are as follows:
Resources Created:
Section titled “Resources Created:”- Workload Identity Pool (starting with opswitch-wi)
- Workload Identity Provider (starting with opswitch-wi)
- Service Account (starting with opswitch-wi)
- IAM Custom Role
IAM Custom Role Permissions
Section titled “IAM Custom Role Permissions”Compute Engine
Section titled “Compute Engine”- compute.instances.get
- compute.instances.list
- compute.instances.stop
- compute.instances.start
- compute.instances.setMachineType
Cloud SQL
Section titled “Cloud SQL”- cloudsql.instances.list
- cloudsql.instances.get
- cloudsql.instances.update
- iam.roles.get