GCP IAM Permissions
Identity and Access Management (IAM) allows you to regulate access to your GCP resources, thus ensuring that only users with the respective permissions have access to your GCP data.
To work with Google Cloud Batch jobs, the following IAM permissions must be granted:
-
roles/batch.agentReporter
-
roles/logging.logWriter
-
roles/storage.admin
(If jobs interact with Cloud Storage)
-
roles/batch.jobsEditor
-
roles/iam.serviceAccountUser
See also:
-
Establishing the Connection to Google Cloud Dataproc
-
Defining Google Cloud Dataproc Job Properties
-
Automic Automation / Google Cloud Dataproc Agent Integration