Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  2. IT Analytics Help
  3. Section XII. Cloud
  4. Configuration for Google Cloud Platform
  5. Creating an IAM role

Creating an IAM role

This role is intended to be used at the organization level so that it can be easily shared between projects.

If the collector is intended to only monitor a single project then the role can be added at the project level.

Create a new role.

To create an IAM role
  1. Choose the organization from the project selector.

  2. Navigate to IAM & Admin > Roles.

  3. Choose CREATE ROLE.

  4. Specify title and description.

Adding permissions to the role
  1. After completing the above steps, continue with the following.

  2. Select General Availability.

  3. Click Add Permissions.

  4. In the Filter permission by role field to find and add the following permissions.

    • compute.instances.list

    • compute.machineTypes.get

    • compute.snapshots.list

    • compute.zones.list

    • resourcemanager.projects

    • .get resourcemanager.projects.list

    • storage.buckets.list

    • storage.objects.list

Assigning permission to the role

Note:

IAM administrative access required to assign the permissions.

Feedback

Was this page helpful?
Previous

Testing the collection

Next

Billing Data Access Role

Feedback

Was this page helpful?