Google Cloud Managed Service for Apache Kafka roles and permissions

This page lists the IAM roles and permissions for Google Cloud Managed Service for Apache Kafka. To search through all roles and permissions, see the role and permission index.

Google Cloud Managed Service for Apache Kafka roles

Role Permissions

Role	Permissions
Managed Kafka Admin (`roles/managedkafka.admin`) Full access to Managed Kafka resources.	`cloudasset.assets.searchAllResources` `managedkafka.` `managedkafka.acls.create` `managedkafka.acls.delete` `managedkafka.acls.get` `managedkafka.acls.list` `managedkafka.acls.update` `managedkafka.acls.updateEntries` `managedkafka.clusters.attachConnectCluster` `managedkafka.clusters.connect` `managedkafka.clusters.create` `managedkafka.clusters.delete` `managedkafka.clusters.get` `managedkafka.clusters.list` `managedkafka.clusters.update` `managedkafka.config.delete` `managedkafka.config.get` `managedkafka.config.update` `managedkafka.connectClusters.create` `managedkafka.connectClusters.delete` `managedkafka.connectClusters.get` `managedkafka.connectClusters.list` `managedkafka.connectClusters.update` `managedkafka.connectors.create` `managedkafka.connectors.delete` `managedkafka.connectors.get` `managedkafka.connectors.list` `managedkafka.connectors.pause` `managedkafka.connectors.restart` `managedkafka.connectors.resume` `managedkafka.connectors.stop` `managedkafka.connectors.update` `managedkafka.consumerGroups.delete` `managedkafka.consumerGroups.get` `managedkafka.consumerGroups.list` `managedkafka.consumerGroups.update` `managedkafka.contexts.get` `managedkafka.contexts.list` `managedkafka.locations.get` `managedkafka.locations.list` `managedkafka.mode.delete` `managedkafka.mode.get` `managedkafka.mode.update` `managedkafka.operations.cancel` `managedkafka.operations.delete` `managedkafka.operations.get` `managedkafka.operations.list` `managedkafka.schemaRegistries.create` `managedkafka.schemaRegistries.delete` `managedkafka.schemaRegistries.get` `managedkafka.schemaRegistries.list` `managedkafka.schemas.get` `managedkafka.schemas.listSubjects` `managedkafka.schemas.listTypes` `managedkafka.schemas.listVersions` `managedkafka.subjects.delete` `managedkafka.subjects.list` `managedkafka.subjects.lookup` `managedkafka.topics.create` `managedkafka.topics.delete` `managedkafka.topics.get` `managedkafka.topics.list` `managedkafka.topics.update` `managedkafka.versions.checkCompatibility` `managedkafka.versions.create` `managedkafka.versions.delete` `managedkafka.versions.get` `managedkafka.versions.list` `managedkafka.versions.referencedby` `resourcemanager.projects.get` `resourcemanager.projects.list` `serviceusage.consumerpolicy.analyze` `serviceusage.consumerpolicy.get` `serviceusage.effectivepolicy.get` `serviceusage.groups.` `serviceusage.groups.list` `serviceusage.groups.listExpandedMembers` `serviceusage.groups.listMembers` `serviceusage.quotas.get` `serviceusage.services.get` `serviceusage.services.list` `serviceusage.values.test`
Managed Kafka Viewer (`roles/managedkafka.viewer`) Readonly access to Managed Kafka resources.	`cloudasset.assets.searchAllResources` `managedkafka.acls.get` `managedkafka.acls.list` `managedkafka.clusters.get` `managedkafka.clusters.list` `managedkafka.config.get` `managedkafka.connectClusters.get` `managedkafka.connectClusters.list` `managedkafka.connectors.get` `managedkafka.connectors.list` `managedkafka.consumerGroups.get` `managedkafka.consumerGroups.list` `managedkafka.contexts.` `managedkafka.contexts.get` `managedkafka.contexts.list` `managedkafka.locations.` `managedkafka.locations.get` `managedkafka.locations.list` `managedkafka.mode.get` `managedkafka.operations.get` `managedkafka.operations.list` `managedkafka.schemaRegistries.get` `managedkafka.schemaRegistries.list` `managedkafka.schemas.` `managedkafka.schemas.get` `managedkafka.schemas.listSubjects` `managedkafka.schemas.listTypes` `managedkafka.schemas.listVersions` `managedkafka.subjects.list` `managedkafka.subjects.lookup` `managedkafka.topics.get` `managedkafka.topics.list` `managedkafka.versions.checkCompatibility` `managedkafka.versions.get` `managedkafka.versions.list` `managedkafka.versions.referencedby` `resourcemanager.projects.get` `resourcemanager.projects.list` `serviceusage.consumerpolicy.analyze` `serviceusage.consumerpolicy.get` `serviceusage.effectivepolicy.get` `serviceusage.groups.` `serviceusage.groups.list` `serviceusage.groups.listExpandedMembers` `serviceusage.groups.listMembers` `serviceusage.quotas.get` `serviceusage.services.get` `serviceusage.services.list` `serviceusage.values.test`
Managed Kafka ACL Editor (`roles/managedkafka.aclEditor`) Read and write access to Managed Kafka ACL resources.	`managedkafka.acls.*` `managedkafka.acls.create` `managedkafka.acls.delete` `managedkafka.acls.get` `managedkafka.acls.list` `managedkafka.acls.update` `managedkafka.acls.updateEntries`
Managed Kafka ACL Viewer (`roles/managedkafka.aclViewer`) Readonly access to Managed Kafka ACL resources.	`managedkafka.acls.get` `managedkafka.acls.list`
Managed Kafka Client (`roles/managedkafka.client`) Provides access to connect to the Kafka servers in a cluster, i.e. provides Kafka data plane access. Intended for, e.g., producers and consumers.	`cloudasset.assets.searchAllResources` `managedkafka.acls.get` `managedkafka.acls.list` `managedkafka.clusters.attachConnectCluster` `managedkafka.clusters.connect` `managedkafka.clusters.get` `managedkafka.clusters.list` `managedkafka.config.get` `managedkafka.connectClusters.get` `managedkafka.connectClusters.list` `managedkafka.connectors.get` `managedkafka.connectors.list` `managedkafka.consumerGroups.` `managedkafka.consumerGroups.delete` `managedkafka.consumerGroups.get` `managedkafka.consumerGroups.list` `managedkafka.consumerGroups.update` `managedkafka.contexts.` `managedkafka.contexts.get` `managedkafka.contexts.list` `managedkafka.locations.` `managedkafka.locations.get` `managedkafka.locations.list` `managedkafka.mode.get` `managedkafka.operations.get` `managedkafka.operations.list` `managedkafka.schemaRegistries.get` `managedkafka.schemaRegistries.list` `managedkafka.schemas.` `managedkafka.schemas.get` `managedkafka.schemas.listSubjects` `managedkafka.schemas.listTypes` `managedkafka.schemas.listVersions` `managedkafka.subjects.list` `managedkafka.subjects.lookup` `managedkafka.topics.` `managedkafka.topics.create` `managedkafka.topics.delete` `managedkafka.topics.get` `managedkafka.topics.list` `managedkafka.topics.update` `managedkafka.versions.checkCompatibility` `managedkafka.versions.get` `managedkafka.versions.list` `managedkafka.versions.referencedby` `resourcemanager.projects.get` `resourcemanager.projects.list` `serviceusage.consumerpolicy.analyze` `serviceusage.consumerpolicy.get` `serviceusage.effectivepolicy.get` `serviceusage.groups.` `serviceusage.groups.list` `serviceusage.groups.listExpandedMembers` `serviceusage.groups.listMembers` `serviceusage.quotas.get` `serviceusage.services.get` `serviceusage.services.list` `serviceusage.values.test`
Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Provides read and write access to Kafka clusters. Intended for, e.g., IT Departments that provision Kafka clusters, but need not be able to read or modify topics or consumer groups.	`cloudasset.assets.searchAllResources` `managedkafka.acls.get` `managedkafka.acls.list` `managedkafka.clusters.create` `managedkafka.clusters.delete` `managedkafka.clusters.get` `managedkafka.clusters.list` `managedkafka.clusters.update` `managedkafka.config.get` `managedkafka.connectClusters.get` `managedkafka.connectClusters.list` `managedkafka.connectors.get` `managedkafka.connectors.list` `managedkafka.consumerGroups.get` `managedkafka.consumerGroups.list` `managedkafka.contexts.` `managedkafka.contexts.get` `managedkafka.contexts.list` `managedkafka.locations.` `managedkafka.locations.get` `managedkafka.locations.list` `managedkafka.mode.get` `managedkafka.operations.get` `managedkafka.operations.list` `managedkafka.schemaRegistries.get` `managedkafka.schemaRegistries.list` `managedkafka.schemas.` `managedkafka.schemas.get` `managedkafka.schemas.listSubjects` `managedkafka.schemas.listTypes` `managedkafka.schemas.listVersions` `managedkafka.subjects.list` `managedkafka.subjects.lookup` `managedkafka.topics.get` `managedkafka.topics.list` `managedkafka.versions.checkCompatibility` `managedkafka.versions.get` `managedkafka.versions.list` `managedkafka.versions.referencedby` `resourcemanager.projects.get` `resourcemanager.projects.list` `serviceusage.consumerpolicy.analyze` `serviceusage.consumerpolicy.get` `serviceusage.effectivepolicy.get` `serviceusage.groups.` `serviceusage.groups.list` `serviceusage.groups.listExpandedMembers` `serviceusage.groups.listMembers` `serviceusage.quotas.get` `serviceusage.services.get` `serviceusage.services.list` `serviceusage.values.test`
Managed Kafka Connect Cluster Editor ^Beta (`roles/managedkafka.connectClusterEditor`) Provides read and write access to Kafka Connect clusters. Intended for, e.g., IT Departments that provision Kafka Connect clusters, but need not be able to read or modify connectors.	`managedkafka.connectClusters.*` `managedkafka.connectClusters.create` `managedkafka.connectClusters.delete` `managedkafka.connectClusters.get` `managedkafka.connectClusters.list` `managedkafka.connectClusters.update` `managedkafka.connectors.get` `managedkafka.connectors.list`
Managed Kafka Connector Editor ^Beta (`roles/managedkafka.connectorEditor`) Provides read and write access to connectors. Intended for, e.g., developers who configure and operate connectors.	`cloudasset.assets.searchAllResources` `managedkafka.acls.get` `managedkafka.acls.list` `managedkafka.clusters.get` `managedkafka.clusters.list` `managedkafka.config.get` `managedkafka.connectClusters.get` `managedkafka.connectClusters.list` `managedkafka.connectors.` `managedkafka.connectors.create` `managedkafka.connectors.delete` `managedkafka.connectors.get` `managedkafka.connectors.list` `managedkafka.connectors.pause` `managedkafka.connectors.restart` `managedkafka.connectors.resume` `managedkafka.connectors.stop` `managedkafka.connectors.update` `managedkafka.consumerGroups.get` `managedkafka.consumerGroups.list` `managedkafka.contexts.` `managedkafka.contexts.get` `managedkafka.contexts.list` `managedkafka.locations.` `managedkafka.locations.get` `managedkafka.locations.list` `managedkafka.mode.get` `managedkafka.operations.get` `managedkafka.operations.list` `managedkafka.schemaRegistries.get` `managedkafka.schemaRegistries.list` `managedkafka.schemas.` `managedkafka.schemas.get` `managedkafka.schemas.listSubjects` `managedkafka.schemas.listTypes` `managedkafka.schemas.listVersions` `managedkafka.subjects.list` `managedkafka.subjects.lookup` `managedkafka.topics.get` `managedkafka.topics.list` `managedkafka.versions.checkCompatibility` `managedkafka.versions.get` `managedkafka.versions.list` `managedkafka.versions.referencedby` `resourcemanager.projects.get` `resourcemanager.projects.list` `serviceusage.consumerpolicy.analyze` `serviceusage.consumerpolicy.get` `serviceusage.effectivepolicy.get` `serviceusage.groups.*` `serviceusage.groups.list` `serviceusage.groups.listExpandedMembers` `serviceusage.groups.listMembers` `serviceusage.quotas.get` `serviceusage.services.get` `serviceusage.services.list` `serviceusage.values.test`
Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Provides read and write access to consumer group metadata. Intended for, e.g., developers who configure consumer groups.	`cloudasset.assets.searchAllResources` `managedkafka.acls.get` `managedkafka.acls.list` `managedkafka.clusters.get` `managedkafka.clusters.list` `managedkafka.config.get` `managedkafka.connectClusters.get` `managedkafka.connectClusters.list` `managedkafka.connectors.get` `managedkafka.connectors.list` `managedkafka.consumerGroups.` `managedkafka.consumerGroups.delete` `managedkafka.consumerGroups.get` `managedkafka.consumerGroups.list` `managedkafka.consumerGroups.update` `managedkafka.contexts.` `managedkafka.contexts.get` `managedkafka.contexts.list` `managedkafka.locations.` `managedkafka.locations.get` `managedkafka.locations.list` `managedkafka.mode.get` `managedkafka.operations.get` `managedkafka.operations.list` `managedkafka.schemaRegistries.get` `managedkafka.schemaRegistries.list` `managedkafka.schemas.` `managedkafka.schemas.get` `managedkafka.schemas.listSubjects` `managedkafka.schemas.listTypes` `managedkafka.schemas.listVersions` `managedkafka.subjects.list` `managedkafka.subjects.lookup` `managedkafka.topics.get` `managedkafka.topics.list` `managedkafka.versions.checkCompatibility` `managedkafka.versions.get` `managedkafka.versions.list` `managedkafka.versions.referencedby` `resourcemanager.projects.get` `resourcemanager.projects.list` `serviceusage.consumerpolicy.analyze` `serviceusage.consumerpolicy.get` `serviceusage.effectivepolicy.get` `serviceusage.groups.*` `serviceusage.groups.list` `serviceusage.groups.listExpandedMembers` `serviceusage.groups.listMembers` `serviceusage.quotas.get` `serviceusage.services.get` `serviceusage.services.list` `serviceusage.values.test`
Schema Registry Admin ^Beta (`roles/managedkafka.schemaRegistryAdmin`) Full access to schemas, schema versions and configs	`managedkafka.config.` `managedkafka.config.delete` `managedkafka.config.get` `managedkafka.config.update` `managedkafka.contexts.` `managedkafka.contexts.get` `managedkafka.contexts.list` `managedkafka.mode.` `managedkafka.mode.delete` `managedkafka.mode.get` `managedkafka.mode.update` `managedkafka.schemaRegistries.` `managedkafka.schemaRegistries.create` `managedkafka.schemaRegistries.delete` `managedkafka.schemaRegistries.get` `managedkafka.schemaRegistries.list` `managedkafka.schemas.` `managedkafka.schemas.get` `managedkafka.schemas.listSubjects` `managedkafka.schemas.listTypes` `managedkafka.schemas.listVersions` `managedkafka.subjects.` `managedkafka.subjects.delete` `managedkafka.subjects.list` `managedkafka.subjects.lookup` `managedkafka.versions.*` `managedkafka.versions.checkCompatibility` `managedkafka.versions.create` `managedkafka.versions.delete` `managedkafka.versions.get` `managedkafka.versions.list` `managedkafka.versions.referencedby`
Schema Registry Editor ^Beta (`roles/managedkafka.schemaRegistryEditor`) View and edit schemas and schema versions	`managedkafka.config.get` `managedkafka.contexts.` `managedkafka.contexts.get` `managedkafka.contexts.list` `managedkafka.mode.get` `managedkafka.schemaRegistries.` `managedkafka.schemaRegistries.create` `managedkafka.schemaRegistries.delete` `managedkafka.schemaRegistries.get` `managedkafka.schemaRegistries.list` `managedkafka.schemas.` `managedkafka.schemas.get` `managedkafka.schemas.listSubjects` `managedkafka.schemas.listTypes` `managedkafka.schemas.listVersions` `managedkafka.subjects.` `managedkafka.subjects.delete` `managedkafka.subjects.list` `managedkafka.subjects.lookup` `managedkafka.versions.*` `managedkafka.versions.checkCompatibility` `managedkafka.versions.create` `managedkafka.versions.delete` `managedkafka.versions.get` `managedkafka.versions.list` `managedkafka.versions.referencedby`
Schema Registry Viewer ^Beta (`roles/managedkafka.schemaRegistryViewer`) View schemas and schema versions	`managedkafka.config.get` `managedkafka.contexts.` `managedkafka.contexts.get` `managedkafka.contexts.list` `managedkafka.mode.get` `managedkafka.schemaRegistries.get` `managedkafka.schemaRegistries.list` `managedkafka.schemas.` `managedkafka.schemas.get` `managedkafka.schemas.listSubjects` `managedkafka.schemas.listTypes` `managedkafka.schemas.listVersions` `managedkafka.subjects.list` `managedkafka.subjects.lookup` `managedkafka.versions.checkCompatibility` `managedkafka.versions.get` `managedkafka.versions.list` `managedkafka.versions.referencedby`
Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`) Provides read and write access to topic metadata. Intended for, e.g., developers who configure topics.	`cloudasset.assets.searchAllResources` `managedkafka.acls.get` `managedkafka.acls.list` `managedkafka.clusters.get` `managedkafka.clusters.list` `managedkafka.config.get` `managedkafka.connectClusters.get` `managedkafka.connectClusters.list` `managedkafka.connectors.get` `managedkafka.connectors.list` `managedkafka.consumerGroups.get` `managedkafka.consumerGroups.list` `managedkafka.contexts.` `managedkafka.contexts.get` `managedkafka.contexts.list` `managedkafka.locations.` `managedkafka.locations.get` `managedkafka.locations.list` `managedkafka.mode.get` `managedkafka.operations.get` `managedkafka.operations.list` `managedkafka.schemaRegistries.get` `managedkafka.schemaRegistries.list` `managedkafka.schemas.` `managedkafka.schemas.get` `managedkafka.schemas.listSubjects` `managedkafka.schemas.listTypes` `managedkafka.schemas.listVersions` `managedkafka.subjects.list` `managedkafka.subjects.lookup` `managedkafka.topics.` `managedkafka.topics.create` `managedkafka.topics.delete` `managedkafka.topics.get` `managedkafka.topics.list` `managedkafka.topics.update` `managedkafka.versions.checkCompatibility` `managedkafka.versions.get` `managedkafka.versions.list` `managedkafka.versions.referencedby` `resourcemanager.projects.get` `resourcemanager.projects.list` `serviceusage.consumerpolicy.analyze` `serviceusage.consumerpolicy.get` `serviceusage.effectivepolicy.get` `serviceusage.groups.*` `serviceusage.groups.list` `serviceusage.groups.listExpandedMembers` `serviceusage.groups.listMembers` `serviceusage.quotas.get` `serviceusage.services.get` `serviceusage.services.list` `serviceusage.values.test`

Managed Kafka Admin

(roles/managedkafka.admin)

Full access to Managed Kafka resources.

cloudasset.assets.searchAllResources

managedkafka.*

managedkafka.acls.create
managedkafka.acls.delete
managedkafka.acls.get
managedkafka.acls.list
managedkafka.acls.update
managedkafka.acls.updateEntries
managedkafka.clusters.attachConnectCluster
managedkafka.clusters.connect
managedkafka.clusters.create
managedkafka.clusters.delete
managedkafka.clusters.get
managedkafka.clusters.list
managedkafka.clusters.update
managedkafka.config.delete
managedkafka.config.get
managedkafka.config.update
managedkafka.connectClusters.create
managedkafka.connectClusters.delete
managedkafka.connectClusters.get
managedkafka.connectClusters.list
managedkafka.connectClusters.update
managedkafka.connectors.create
managedkafka.connectors.delete
managedkafka.connectors.get
managedkafka.connectors.list
managedkafka.connectors.pause
managedkafka.connectors.restart
managedkafka.connectors.resume
managedkafka.connectors.stop
managedkafka.connectors.update
managedkafka.consumerGroups.delete
managedkafka.consumerGroups.get
managedkafka.consumerGroups.list
managedkafka.consumerGroups.update
managedkafka.contexts.get
managedkafka.contexts.list
managedkafka.locations.get
managedkafka.locations.list
managedkafka.mode.delete
managedkafka.mode.get
managedkafka.mode.update
managedkafka.operations.cancel
managedkafka.operations.delete
managedkafka.operations.get
managedkafka.operations.list
managedkafka.schemaRegistries.create
managedkafka.schemaRegistries.delete
managedkafka.schemaRegistries.get
managedkafka.schemaRegistries.list
managedkafka.schemas.get
managedkafka.schemas.listSubjects
managedkafka.schemas.listTypes
managedkafka.schemas.listVersions
managedkafka.subjects.delete
managedkafka.subjects.list
managedkafka.subjects.lookup
managedkafka.topics.create
managedkafka.topics.delete
managedkafka.topics.get
managedkafka.topics.list
managedkafka.topics.update
managedkafka.versions.checkCompatibility
managedkafka.versions.create
managedkafka.versions.delete
managedkafka.versions.get
managedkafka.versions.list
managedkafka.versions.referencedby

resourcemanager.projects.get

resourcemanager.projects.list

serviceusage.consumerpolicy.analyze

serviceusage.consumerpolicy.get

serviceusage.effectivepolicy.get

serviceusage.groups.*

serviceusage.groups.list
serviceusage.groups.listExpandedMembers
serviceusage.groups.listMembers

serviceusage.quotas.get

serviceusage.services.get

serviceusage.services.list

serviceusage.values.test

Managed Kafka Viewer

(roles/managedkafka.viewer)

Readonly access to Managed Kafka resources.

cloudasset.assets.searchAllResources

managedkafka.acls.get

managedkafka.acls.list

managedkafka.clusters.get

managedkafka.clusters.list

managedkafka.config.get

managedkafka.connectClusters.get

managedkafka.connectClusters.list

managedkafka.connectors.get

managedkafka.connectors.list

managedkafka.consumerGroups.get

managedkafka.consumerGroups.list

managedkafka.contexts.*

managedkafka.contexts.get
managedkafka.contexts.list

managedkafka.locations.*

managedkafka.locations.get
managedkafka.locations.list

managedkafka.mode.get

managedkafka.operations.get

managedkafka.operations.list

managedkafka.schemaRegistries.get

managedkafka.schemaRegistries.list

managedkafka.schemas.*

managedkafka.schemas.get
managedkafka.schemas.listSubjects
managedkafka.schemas.listTypes
managedkafka.schemas.listVersions

managedkafka.subjects.list

managedkafka.subjects.lookup

managedkafka.topics.get

managedkafka.topics.list

managedkafka.versions.checkCompatibility

managedkafka.versions.get

managedkafka.versions.list

managedkafka.versions.referencedby

resourcemanager.projects.get

resourcemanager.projects.list

serviceusage.consumerpolicy.analyze

serviceusage.consumerpolicy.get

serviceusage.effectivepolicy.get

serviceusage.groups.*

serviceusage.groups.list
serviceusage.groups.listExpandedMembers
serviceusage.groups.listMembers

serviceusage.quotas.get

serviceusage.services.get

serviceusage.services.list

serviceusage.values.test

Managed Kafka ACL Editor

(roles/managedkafka.aclEditor)

Read and write access to Managed Kafka ACL resources.

managedkafka.acls.*

managedkafka.acls.create
managedkafka.acls.delete
managedkafka.acls.get
managedkafka.acls.list
managedkafka.acls.update
managedkafka.acls.updateEntries

Managed Kafka ACL Viewer

(roles/managedkafka.aclViewer)

Readonly access to Managed Kafka ACL resources.

managedkafka.acls.get

managedkafka.acls.list

Managed Kafka Client

(roles/managedkafka.client)

Provides access to connect to the Kafka servers in a cluster, i.e. provides Kafka data plane access. Intended for, e.g., producers and consumers.

cloudasset.assets.searchAllResources

managedkafka.acls.get

managedkafka.acls.list

managedkafka.clusters.attachConnectCluster

managedkafka.clusters.connect

managedkafka.clusters.get

managedkafka.clusters.list

managedkafka.config.get

managedkafka.connectClusters.get

managedkafka.connectClusters.list

managedkafka.connectors.get

managedkafka.connectors.list

managedkafka.consumerGroups.*

managedkafka.consumerGroups.delete
managedkafka.consumerGroups.get
managedkafka.consumerGroups.list
managedkafka.consumerGroups.update

managedkafka.contexts.*

managedkafka.contexts.get
managedkafka.contexts.list

managedkafka.locations.*

managedkafka.locations.get
managedkafka.locations.list

managedkafka.mode.get

managedkafka.operations.get

managedkafka.operations.list

managedkafka.schemaRegistries.get

managedkafka.schemaRegistries.list

managedkafka.schemas.*

managedkafka.schemas.get
managedkafka.schemas.listSubjects
managedkafka.schemas.listTypes
managedkafka.schemas.listVersions

managedkafka.subjects.list

managedkafka.subjects.lookup

managedkafka.topics.*

managedkafka.topics.create
managedkafka.topics.delete
managedkafka.topics.get
managedkafka.topics.list
managedkafka.topics.update

managedkafka.versions.checkCompatibility

managedkafka.versions.get

managedkafka.versions.list

managedkafka.versions.referencedby

resourcemanager.projects.get

resourcemanager.projects.list

serviceusage.consumerpolicy.analyze

serviceusage.consumerpolicy.get

serviceusage.effectivepolicy.get

serviceusage.groups.*

serviceusage.groups.list
serviceusage.groups.listExpandedMembers
serviceusage.groups.listMembers

serviceusage.quotas.get

serviceusage.services.get

serviceusage.services.list

serviceusage.values.test

Managed Kafka Cluster Editor

(roles/managedkafka.clusterEditor)

Provides read and write access to Kafka clusters. Intended for, e.g., IT Departments that provision Kafka clusters, but need not be able to read or modify topics or consumer groups.

cloudasset.assets.searchAllResources

managedkafka.acls.get

managedkafka.acls.list

managedkafka.clusters.create

managedkafka.clusters.delete

managedkafka.clusters.get

managedkafka.clusters.list

managedkafka.clusters.update

managedkafka.config.get

managedkafka.connectClusters.get

managedkafka.connectClusters.list

managedkafka.connectors.get

managedkafka.connectors.list

managedkafka.consumerGroups.get

managedkafka.consumerGroups.list

managedkafka.contexts.*

managedkafka.contexts.get
managedkafka.contexts.list

managedkafka.locations.*

managedkafka.locations.get
managedkafka.locations.list

managedkafka.mode.get

managedkafka.operations.get

managedkafka.operations.list

managedkafka.schemaRegistries.get

managedkafka.schemaRegistries.list

managedkafka.schemas.*

managedkafka.schemas.get
managedkafka.schemas.listSubjects
managedkafka.schemas.listTypes
managedkafka.schemas.listVersions

managedkafka.subjects.list

managedkafka.subjects.lookup

managedkafka.topics.get

managedkafka.topics.list

managedkafka.versions.checkCompatibility

managedkafka.versions.get

managedkafka.versions.list

managedkafka.versions.referencedby

resourcemanager.projects.get

resourcemanager.projects.list

serviceusage.consumerpolicy.analyze

serviceusage.consumerpolicy.get

serviceusage.effectivepolicy.get

serviceusage.groups.*

serviceusage.groups.list
serviceusage.groups.listExpandedMembers
serviceusage.groups.listMembers

serviceusage.quotas.get

serviceusage.services.get

serviceusage.services.list

serviceusage.values.test

Managed Kafka Connect Cluster Editor ^Beta

(roles/managedkafka.connectClusterEditor)

Provides read and write access to Kafka Connect clusters. Intended for, e.g., IT Departments that provision Kafka Connect clusters, but need not be able to read or modify connectors.

managedkafka.connectClusters.*

managedkafka.connectClusters.create
managedkafka.connectClusters.delete
managedkafka.connectClusters.get
managedkafka.connectClusters.list
managedkafka.connectClusters.update

managedkafka.connectors.get

managedkafka.connectors.list

Managed Kafka Connector Editor ^Beta

(roles/managedkafka.connectorEditor)

Provides read and write access to connectors. Intended for, e.g., developers who configure and operate connectors.

cloudasset.assets.searchAllResources

managedkafka.acls.get

managedkafka.acls.list

managedkafka.clusters.get

managedkafka.clusters.list

managedkafka.config.get

managedkafka.connectClusters.get

managedkafka.connectClusters.list

managedkafka.connectors.*

managedkafka.connectors.create
managedkafka.connectors.delete
managedkafka.connectors.get
managedkafka.connectors.list
managedkafka.connectors.pause
managedkafka.connectors.restart
managedkafka.connectors.resume
managedkafka.connectors.stop
managedkafka.connectors.update

managedkafka.consumerGroups.get

managedkafka.consumerGroups.list

managedkafka.contexts.*

managedkafka.contexts.get
managedkafka.contexts.list

managedkafka.locations.*

managedkafka.locations.get
managedkafka.locations.list

managedkafka.mode.get

managedkafka.operations.get

managedkafka.operations.list

managedkafka.schemaRegistries.get

managedkafka.schemaRegistries.list

managedkafka.schemas.*

managedkafka.schemas.get
managedkafka.schemas.listSubjects
managedkafka.schemas.listTypes
managedkafka.schemas.listVersions

managedkafka.subjects.list

managedkafka.subjects.lookup

managedkafka.topics.get

managedkafka.topics.list

managedkafka.versions.checkCompatibility

managedkafka.versions.get

managedkafka.versions.list

managedkafka.versions.referencedby

resourcemanager.projects.get

resourcemanager.projects.list

serviceusage.consumerpolicy.analyze

serviceusage.consumerpolicy.get

serviceusage.effectivepolicy.get

serviceusage.groups.*

serviceusage.groups.list
serviceusage.groups.listExpandedMembers
serviceusage.groups.listMembers

serviceusage.quotas.get

serviceusage.services.get

serviceusage.services.list

serviceusage.values.test

Managed Kafka Consumer Group Editor

(roles/managedkafka.consumerGroupEditor)

Provides read and write access to consumer group metadata. Intended for, e.g., developers who configure consumer groups.

cloudasset.assets.searchAllResources

managedkafka.acls.get

managedkafka.acls.list

managedkafka.clusters.get

managedkafka.clusters.list

managedkafka.config.get

managedkafka.connectClusters.get

managedkafka.connectClusters.list

managedkafka.connectors.get

managedkafka.connectors.list

managedkafka.consumerGroups.*

managedkafka.consumerGroups.delete
managedkafka.consumerGroups.get
managedkafka.consumerGroups.list
managedkafka.consumerGroups.update

managedkafka.contexts.*

managedkafka.contexts.get
managedkafka.contexts.list

managedkafka.locations.*

managedkafka.locations.get
managedkafka.locations.list

managedkafka.mode.get

managedkafka.operations.get

managedkafka.operations.list

managedkafka.schemaRegistries.get

managedkafka.schemaRegistries.list

managedkafka.schemas.*

managedkafka.schemas.get
managedkafka.schemas.listSubjects
managedkafka.schemas.listTypes
managedkafka.schemas.listVersions

managedkafka.subjects.list

managedkafka.subjects.lookup

managedkafka.topics.get

managedkafka.topics.list

managedkafka.versions.checkCompatibility

managedkafka.versions.get

managedkafka.versions.list

managedkafka.versions.referencedby

resourcemanager.projects.get

resourcemanager.projects.list

serviceusage.consumerpolicy.analyze

serviceusage.consumerpolicy.get

serviceusage.effectivepolicy.get

serviceusage.groups.*

serviceusage.groups.list
serviceusage.groups.listExpandedMembers
serviceusage.groups.listMembers

serviceusage.quotas.get

serviceusage.services.get

serviceusage.services.list

serviceusage.values.test

Schema Registry Admin ^Beta

(roles/managedkafka.schemaRegistryAdmin)

Full access to schemas, schema versions and configs

managedkafka.config.*

managedkafka.config.delete
managedkafka.config.get
managedkafka.config.update

managedkafka.contexts.*

managedkafka.contexts.get
managedkafka.contexts.list

managedkafka.mode.*

managedkafka.mode.delete
managedkafka.mode.get
managedkafka.mode.update

managedkafka.schemaRegistries.*

managedkafka.schemaRegistries.create
managedkafka.schemaRegistries.delete
managedkafka.schemaRegistries.get
managedkafka.schemaRegistries.list

managedkafka.schemas.*

managedkafka.schemas.get
managedkafka.schemas.listSubjects
managedkafka.schemas.listTypes
managedkafka.schemas.listVersions

managedkafka.subjects.*

managedkafka.subjects.delete
managedkafka.subjects.list
managedkafka.subjects.lookup

managedkafka.versions.*

managedkafka.versions.checkCompatibility
managedkafka.versions.create
managedkafka.versions.delete
managedkafka.versions.get
managedkafka.versions.list
managedkafka.versions.referencedby

Schema Registry Editor ^Beta

(roles/managedkafka.schemaRegistryEditor)

View and edit schemas and schema versions

managedkafka.config.get

managedkafka.contexts.*

managedkafka.contexts.get
managedkafka.contexts.list

managedkafka.mode.get

managedkafka.schemaRegistries.*

managedkafka.schemaRegistries.create
managedkafka.schemaRegistries.delete
managedkafka.schemaRegistries.get
managedkafka.schemaRegistries.list

managedkafka.schemas.*

managedkafka.schemas.get
managedkafka.schemas.listSubjects
managedkafka.schemas.listTypes
managedkafka.schemas.listVersions

managedkafka.subjects.*

managedkafka.subjects.delete
managedkafka.subjects.list
managedkafka.subjects.lookup

managedkafka.versions.*

managedkafka.versions.checkCompatibility
managedkafka.versions.create
managedkafka.versions.delete
managedkafka.versions.get
managedkafka.versions.list
managedkafka.versions.referencedby

Schema Registry Viewer ^Beta

(roles/managedkafka.schemaRegistryViewer)

View schemas and schema versions

managedkafka.config.get

managedkafka.contexts.*

managedkafka.contexts.get
managedkafka.contexts.list

managedkafka.mode.get

managedkafka.schemaRegistries.get

managedkafka.schemaRegistries.list

managedkafka.schemas.*

managedkafka.schemas.get
managedkafka.schemas.listSubjects
managedkafka.schemas.listTypes
managedkafka.schemas.listVersions

managedkafka.subjects.list

managedkafka.subjects.lookup

managedkafka.versions.checkCompatibility

managedkafka.versions.get

managedkafka.versions.list

managedkafka.versions.referencedby

Managed Kafka Topic Editor

(roles/managedkafka.topicEditor)

Provides read and write access to topic metadata. Intended for, e.g., developers who configure topics.

cloudasset.assets.searchAllResources

managedkafka.acls.get

managedkafka.acls.list

managedkafka.clusters.get

managedkafka.clusters.list

managedkafka.config.get

managedkafka.connectClusters.get

managedkafka.connectClusters.list

managedkafka.connectors.get

managedkafka.connectors.list

managedkafka.consumerGroups.get

managedkafka.consumerGroups.list

managedkafka.contexts.*

managedkafka.contexts.get
managedkafka.contexts.list

managedkafka.locations.*

managedkafka.locations.get
managedkafka.locations.list

managedkafka.mode.get

managedkafka.operations.get

managedkafka.operations.list

managedkafka.schemaRegistries.get

managedkafka.schemaRegistries.list

managedkafka.schemas.*

managedkafka.schemas.get
managedkafka.schemas.listSubjects
managedkafka.schemas.listTypes
managedkafka.schemas.listVersions

managedkafka.subjects.list

managedkafka.subjects.lookup

managedkafka.topics.*

managedkafka.topics.create
managedkafka.topics.delete
managedkafka.topics.get
managedkafka.topics.list
managedkafka.topics.update

managedkafka.versions.checkCompatibility

managedkafka.versions.get

managedkafka.versions.list

managedkafka.versions.referencedby

resourcemanager.projects.get

resourcemanager.projects.list

serviceusage.consumerpolicy.analyze

serviceusage.consumerpolicy.get

serviceusage.effectivepolicy.get

serviceusage.groups.*

serviceusage.groups.list
serviceusage.groups.listExpandedMembers
serviceusage.groups.listMembers

serviceusage.quotas.get

serviceusage.services.get

serviceusage.services.list

serviceusage.values.test

Service agent roles

Service agent roles should only be granted to service agents.

Role Permissions

Role	Permissions
Managed Kafka Service Agent (`roles/managedkafka.serviceAgent`) Gives Managed Kafka Service Agent access to Cloud Platform resources. Warning: Do not grant service agent roles to any principals except service agents.	`compute.addresses.create` `compute.addresses.createInternal` `compute.addresses.delete` `compute.addresses.deleteInternal` `compute.addresses.list` `compute.addresses.use` `compute.addresses.useInternal` `compute.forwardingRules.create` `compute.forwardingRules.delete` `compute.forwardingRules.list` `compute.forwardingRules.pscCreate` `compute.forwardingRules.pscDelete` `compute.networkAttachments.create` `compute.networkAttachments.delete` `compute.networkAttachments.get` `compute.networkAttachments.list` `compute.networks.get` `compute.networks.use` `compute.regionOperations.get` `compute.subnetworks.get` `compute.subnetworks.use` `dns.changes.create` `dns.managedZones.create` `dns.managedZones.delete` `dns.managedZones.list` `dns.networks.bindPrivateDNSZone` `dns.networks.targetWithPeeringZone` `dns.resourceRecordSets.create` `dns.resourceRecordSets.delete` `dns.resourceRecordSets.list` `dns.resourceRecordSets.update` `managedkafka.clusters.connect` `privateca.caPools.get` `servicedirectory.namespaces.create` `servicedirectory.services.create` `servicedirectory.services.delete`

Managed Kafka Service Agent

(roles/managedkafka.serviceAgent)

Gives Managed Kafka Service Agent access to Cloud Platform resources.

compute.addresses.create

compute.addresses.createInternal

compute.addresses.delete

compute.addresses.deleteInternal

compute.addresses.list

compute.addresses.use

compute.addresses.useInternal

compute.forwardingRules.create

compute.forwardingRules.delete

compute.forwardingRules.list

compute.forwardingRules.pscCreate

compute.forwardingRules.pscDelete

compute.networkAttachments.create

compute.networkAttachments.delete

compute.networkAttachments.get

compute.networkAttachments.list

compute.networks.get

compute.networks.use

compute.regionOperations.get

compute.subnetworks.get

compute.subnetworks.use

dns.changes.create

dns.managedZones.create

dns.managedZones.delete

dns.managedZones.list

dns.networks.bindPrivateDNSZone

dns.networks.targetWithPeeringZone

dns.resourceRecordSets.create

dns.resourceRecordSets.delete

dns.resourceRecordSets.list

dns.resourceRecordSets.update

managedkafka.clusters.connect

privateca.caPools.get

servicedirectory.namespaces.create

servicedirectory.services.create

servicedirectory.services.delete

Google Cloud Managed Service for Apache Kafka permissions

Permission	Included in roles
`managedkafka.acls.create`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka ACL Editor (`roles/managedkafka.aclEditor`)
`managedkafka.acls.delete`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka ACL Editor (`roles/managedkafka.aclEditor`)
`managedkafka.acls.get`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Viewer (`roles/managedkafka.viewer`) Support User (`roles/iam.supportUser`) Managed Kafka ACL Editor (`roles/managedkafka.aclEditor`) Managed Kafka ACL Viewer (`roles/managedkafka.aclViewer`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)
`managedkafka.acls.list`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Security Admin (`roles/iam.securityAdmin`) Security Reviewer (`roles/iam.securityReviewer`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Viewer (`roles/managedkafka.viewer`) Security Auditor (`roles/iam.securityAuditor`) Support User (`roles/iam.supportUser`) Managed Kafka ACL Editor (`roles/managedkafka.aclEditor`) Managed Kafka ACL Viewer (`roles/managedkafka.aclViewer`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)
`managedkafka.acls.update`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka ACL Editor (`roles/managedkafka.aclEditor`)
`managedkafka.acls.updateEntries`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka ACL Editor (`roles/managedkafka.aclEditor`)
`managedkafka.clusters.attachConnectCluster`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Client (`roles/managedkafka.client`)
`managedkafka.clusters.connect`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Client (`roles/managedkafka.client`) Service agent roles Warning: Don't grant service agent roles to any principals except service agents. Managed Kafka Service Agent (`roles/managedkafka.serviceAgent`)
`managedkafka.clusters.create`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`)
`managedkafka.clusters.delete`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`)
`managedkafka.clusters.get`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Viewer (`roles/managedkafka.viewer`) Support User (`roles/iam.supportUser`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`) Service agent roles Warning: Don't grant service agent roles to any principals except service agents. Managed Flink Service Agent (`roles/managedflink.serviceAgent`)
`managedkafka.clusters.list`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Security Admin (`roles/iam.securityAdmin`) Security Reviewer (`roles/iam.securityReviewer`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Viewer (`roles/managedkafka.viewer`) Security Auditor (`roles/iam.securityAuditor`) Support User (`roles/iam.supportUser`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`) Service agent roles Warning: Don't grant service agent roles to any principals except service agents. Managed Flink Service Agent (`roles/managedflink.serviceAgent`)
`managedkafka.clusters.update`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Service agent roles Warning: Don't grant service agent roles to any principals except service agents. Managed Flink Service Agent (`roles/managedflink.serviceAgent`)
`managedkafka.config.delete`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Schema Registry Admin (`roles/managedkafka.schemaRegistryAdmin`)
`managedkafka.config.get`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Viewer (`roles/managedkafka.viewer`) Support User (`roles/iam.supportUser`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Schema Registry Admin (`roles/managedkafka.schemaRegistryAdmin`) Schema Registry Editor (`roles/managedkafka.schemaRegistryEditor`) Schema Registry Viewer (`roles/managedkafka.schemaRegistryViewer`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)
`managedkafka.config.update`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Schema Registry Admin (`roles/managedkafka.schemaRegistryAdmin`)
`managedkafka.connectClusters.create`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Connect Cluster Editor (`roles/managedkafka.connectClusterEditor`)
`managedkafka.connectClusters.delete`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Connect Cluster Editor (`roles/managedkafka.connectClusterEditor`)
`managedkafka.connectClusters.get`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Viewer (`roles/managedkafka.viewer`) Support User (`roles/iam.supportUser`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Managed Kafka Connect Cluster Editor (`roles/managedkafka.connectClusterEditor`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)
`managedkafka.connectClusters.list`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Security Admin (`roles/iam.securityAdmin`) Security Reviewer (`roles/iam.securityReviewer`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Viewer (`roles/managedkafka.viewer`) Security Auditor (`roles/iam.securityAuditor`) Support User (`roles/iam.supportUser`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Managed Kafka Connect Cluster Editor (`roles/managedkafka.connectClusterEditor`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)
`managedkafka.connectClusters.update`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Connect Cluster Editor (`roles/managedkafka.connectClusterEditor`)
`managedkafka.connectors.create`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`)
`managedkafka.connectors.delete`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`)
`managedkafka.connectors.get`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Viewer (`roles/managedkafka.viewer`) Support User (`roles/iam.supportUser`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Managed Kafka Connect Cluster Editor (`roles/managedkafka.connectClusterEditor`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)
`managedkafka.connectors.list`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Security Admin (`roles/iam.securityAdmin`) Security Reviewer (`roles/iam.securityReviewer`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Viewer (`roles/managedkafka.viewer`) Security Auditor (`roles/iam.securityAuditor`) Support User (`roles/iam.supportUser`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Managed Kafka Connect Cluster Editor (`roles/managedkafka.connectClusterEditor`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)
`managedkafka.connectors.pause`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`)
`managedkafka.connectors.restart`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`)
`managedkafka.connectors.resume`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`)
`managedkafka.connectors.stop`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`)
`managedkafka.connectors.update`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`)
`managedkafka.consumerGroups.delete`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`)
`managedkafka.consumerGroups.get`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Viewer (`roles/managedkafka.viewer`) Support User (`roles/iam.supportUser`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)
`managedkafka.consumerGroups.list`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Security Admin (`roles/iam.securityAdmin`) Security Reviewer (`roles/iam.securityReviewer`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Viewer (`roles/managedkafka.viewer`) Security Auditor (`roles/iam.securityAuditor`) Support User (`roles/iam.supportUser`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)
`managedkafka.consumerGroups.update`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`)
`managedkafka.contexts.get`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Viewer (`roles/managedkafka.viewer`) Support User (`roles/iam.supportUser`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Schema Registry Admin (`roles/managedkafka.schemaRegistryAdmin`) Schema Registry Editor (`roles/managedkafka.schemaRegistryEditor`) Schema Registry Viewer (`roles/managedkafka.schemaRegistryViewer`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)
`managedkafka.contexts.list`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Security Admin (`roles/iam.securityAdmin`) Security Reviewer (`roles/iam.securityReviewer`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Viewer (`roles/managedkafka.viewer`) Security Auditor (`roles/iam.securityAuditor`) Support User (`roles/iam.supportUser`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Schema Registry Admin (`roles/managedkafka.schemaRegistryAdmin`) Schema Registry Editor (`roles/managedkafka.schemaRegistryEditor`) Schema Registry Viewer (`roles/managedkafka.schemaRegistryViewer`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)
`managedkafka.locations.get`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Viewer (`roles/managedkafka.viewer`) Support User (`roles/iam.supportUser`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)
`managedkafka.locations.list`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Security Admin (`roles/iam.securityAdmin`) Security Reviewer (`roles/iam.securityReviewer`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Viewer (`roles/managedkafka.viewer`) Security Auditor (`roles/iam.securityAuditor`) Support User (`roles/iam.supportUser`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)
`managedkafka.mode.delete`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Schema Registry Admin (`roles/managedkafka.schemaRegistryAdmin`)
`managedkafka.mode.get`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Viewer (`roles/managedkafka.viewer`) Support User (`roles/iam.supportUser`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Schema Registry Admin (`roles/managedkafka.schemaRegistryAdmin`) Schema Registry Editor (`roles/managedkafka.schemaRegistryEditor`) Schema Registry Viewer (`roles/managedkafka.schemaRegistryViewer`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)
`managedkafka.mode.update`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Schema Registry Admin (`roles/managedkafka.schemaRegistryAdmin`)
`managedkafka.operations.cancel`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`)
`managedkafka.operations.delete`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`)
`managedkafka.operations.get`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Viewer (`roles/managedkafka.viewer`) Support User (`roles/iam.supportUser`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)
`managedkafka.operations.list`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Security Admin (`roles/iam.securityAdmin`) Security Reviewer (`roles/iam.securityReviewer`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Viewer (`roles/managedkafka.viewer`) Security Auditor (`roles/iam.securityAuditor`) Support User (`roles/iam.supportUser`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)
`managedkafka.schemaRegistries.create`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Schema Registry Admin (`roles/managedkafka.schemaRegistryAdmin`) Schema Registry Editor (`roles/managedkafka.schemaRegistryEditor`)
`managedkafka.schemaRegistries.delete`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Schema Registry Admin (`roles/managedkafka.schemaRegistryAdmin`) Schema Registry Editor (`roles/managedkafka.schemaRegistryEditor`)
`managedkafka.schemaRegistries.get`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Viewer (`roles/managedkafka.viewer`) Support User (`roles/iam.supportUser`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Schema Registry Admin (`roles/managedkafka.schemaRegistryAdmin`) Schema Registry Editor (`roles/managedkafka.schemaRegistryEditor`) Schema Registry Viewer (`roles/managedkafka.schemaRegistryViewer`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)
`managedkafka.schemaRegistries.list`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Security Admin (`roles/iam.securityAdmin`) Security Reviewer (`roles/iam.securityReviewer`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Viewer (`roles/managedkafka.viewer`) Security Auditor (`roles/iam.securityAuditor`) Support User (`roles/iam.supportUser`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Schema Registry Admin (`roles/managedkafka.schemaRegistryAdmin`) Schema Registry Editor (`roles/managedkafka.schemaRegistryEditor`) Schema Registry Viewer (`roles/managedkafka.schemaRegistryViewer`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)
`managedkafka.schemas.get`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Viewer (`roles/managedkafka.viewer`) Support User (`roles/iam.supportUser`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Schema Registry Admin (`roles/managedkafka.schemaRegistryAdmin`) Schema Registry Editor (`roles/managedkafka.schemaRegistryEditor`) Schema Registry Viewer (`roles/managedkafka.schemaRegistryViewer`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)
`managedkafka.schemas.listSubjects`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Viewer (`roles/managedkafka.viewer`) Support User (`roles/iam.supportUser`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Schema Registry Admin (`roles/managedkafka.schemaRegistryAdmin`) Schema Registry Editor (`roles/managedkafka.schemaRegistryEditor`) Schema Registry Viewer (`roles/managedkafka.schemaRegistryViewer`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)
`managedkafka.schemas.listTypes`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Viewer (`roles/managedkafka.viewer`) Support User (`roles/iam.supportUser`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Schema Registry Admin (`roles/managedkafka.schemaRegistryAdmin`) Schema Registry Editor (`roles/managedkafka.schemaRegistryEditor`) Schema Registry Viewer (`roles/managedkafka.schemaRegistryViewer`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)
`managedkafka.schemas.listVersions`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Viewer (`roles/managedkafka.viewer`) Support User (`roles/iam.supportUser`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Schema Registry Admin (`roles/managedkafka.schemaRegistryAdmin`) Schema Registry Editor (`roles/managedkafka.schemaRegistryEditor`) Schema Registry Viewer (`roles/managedkafka.schemaRegistryViewer`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)
`managedkafka.subjects.delete`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Schema Registry Admin (`roles/managedkafka.schemaRegistryAdmin`) Schema Registry Editor (`roles/managedkafka.schemaRegistryEditor`)
`managedkafka.subjects.list`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Security Admin (`roles/iam.securityAdmin`) Security Reviewer (`roles/iam.securityReviewer`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Viewer (`roles/managedkafka.viewer`) Security Auditor (`roles/iam.securityAuditor`) Support User (`roles/iam.supportUser`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Schema Registry Admin (`roles/managedkafka.schemaRegistryAdmin`) Schema Registry Editor (`roles/managedkafka.schemaRegistryEditor`) Schema Registry Viewer (`roles/managedkafka.schemaRegistryViewer`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)
`managedkafka.subjects.lookup`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Viewer (`roles/managedkafka.viewer`) Support User (`roles/iam.supportUser`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Schema Registry Admin (`roles/managedkafka.schemaRegistryAdmin`) Schema Registry Editor (`roles/managedkafka.schemaRegistryEditor`) Schema Registry Viewer (`roles/managedkafka.schemaRegistryViewer`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)
`managedkafka.topics.create`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)
`managedkafka.topics.delete`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)
`managedkafka.topics.get`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Viewer (`roles/managedkafka.viewer`) Support User (`roles/iam.supportUser`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)
`managedkafka.topics.list`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Security Admin (`roles/iam.securityAdmin`) Security Reviewer (`roles/iam.securityReviewer`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Viewer (`roles/managedkafka.viewer`) Security Auditor (`roles/iam.securityAuditor`) Support User (`roles/iam.supportUser`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)
`managedkafka.topics.update`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)
`managedkafka.versions.checkCompatibility`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Viewer (`roles/managedkafka.viewer`) Support User (`roles/iam.supportUser`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Schema Registry Admin (`roles/managedkafka.schemaRegistryAdmin`) Schema Registry Editor (`roles/managedkafka.schemaRegistryEditor`) Schema Registry Viewer (`roles/managedkafka.schemaRegistryViewer`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)
`managedkafka.versions.create`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Schema Registry Admin (`roles/managedkafka.schemaRegistryAdmin`) Schema Registry Editor (`roles/managedkafka.schemaRegistryEditor`)
`managedkafka.versions.delete`	Owner (`roles/owner`) Editor (`roles/editor`) Managed Kafka Admin (`roles/managedkafka.admin`) Schema Registry Admin (`roles/managedkafka.schemaRegistryAdmin`) Schema Registry Editor (`roles/managedkafka.schemaRegistryEditor`)
`managedkafka.versions.get`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Viewer (`roles/managedkafka.viewer`) Support User (`roles/iam.supportUser`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Schema Registry Admin (`roles/managedkafka.schemaRegistryAdmin`) Schema Registry Editor (`roles/managedkafka.schemaRegistryEditor`) Schema Registry Viewer (`roles/managedkafka.schemaRegistryViewer`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)
`managedkafka.versions.list`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Security Admin (`roles/iam.securityAdmin`) Security Reviewer (`roles/iam.securityReviewer`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Viewer (`roles/managedkafka.viewer`) Security Auditor (`roles/iam.securityAuditor`) Support User (`roles/iam.supportUser`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Schema Registry Admin (`roles/managedkafka.schemaRegistryAdmin`) Schema Registry Editor (`roles/managedkafka.schemaRegistryEditor`) Schema Registry Viewer (`roles/managedkafka.schemaRegistryViewer`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)
`managedkafka.versions.referencedby`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Managed Kafka Admin (`roles/managedkafka.admin`) Managed Kafka Viewer (`roles/managedkafka.viewer`) Support User (`roles/iam.supportUser`) Managed Kafka Client (`roles/managedkafka.client`) Managed Kafka Cluster Editor (`roles/managedkafka.clusterEditor`) Managed Kafka Connector Editor (`roles/managedkafka.connectorEditor`) Managed Kafka Consumer Group Editor (`roles/managedkafka.consumerGroupEditor`) Schema Registry Admin (`roles/managedkafka.schemaRegistryAdmin`) Schema Registry Editor (`roles/managedkafka.schemaRegistryEditor`) Schema Registry Viewer (`roles/managedkafka.schemaRegistryViewer`) Managed Kafka Topic Editor (`roles/managedkafka.topicEditor`)

Google Cloud Managed Service for Apache Kafka roles and permissions Stay organized with collections Save and categorize content based on your preferences.