Google Cloud MCP servers roles and permissions
Stay organized with collections
Save and categorize content based on your preferences.
This page lists the IAM roles and permissions for Google Cloud MCP servers. To
search through all roles and permissions, see the role and
permission index.
Google Cloud MCP servers roles
Role
Permissions
MCP Admin
(roles/mcp.admin)
Full access for interacting with Google-managed MCP servers.
mcp.tools.call
resourcemanager.projects.get
resourcemanager.projects.list
MCP Tool User
(roles/mcp.toolUser)
Gives permission to call tools on any MCP server enabled by the parent project.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2026-04-08 UTC."],[],[]]
