Setup roles for Google Cloud billing download

  • Release version: Washingtondc
  • Updated February 1, 2024
  • 1 minute to read

    • To perform billing download for Google Cloud, you need specific required roles.

    Before you begin

    Roles required:

    • On the Google Cloud Console: Google Cloud administrator.
    • Cloud Cost Management: insights_admin [sn_clin_core.insights_admin] or admin.

    About this task

    Procedure

    1. Add the following required roles for the Billing module in the Google Cloud provider console.
      • bigquery.jobs.create
      • bigquery.jobs.list
      • bigquery.tables.getData
      • cloudsql.databases.delete
      • cloudsql.databases.get
      • cloudsql.databases.list
      • cloudsql.databases.update
      • cloudsql.instances.delete
      • cloudsql.instances.get
      • cloudsql.instances.list
      • cloudsql.instances.restart
      • cloudsql.instances.update
      • compute.autoscalers.get
      • compute.autoscalers.list
      • compute.disks.delete
      • compute.disks.get
      • compute.disks.list
      • compute.disks.update
      • compute.instances.delete
      • compute.instances.get
      • compute.instances.getIamPolicy
      • compute.instances.list
      • compute.instances.setDiskAutoDelete
      • compute.instances.start
      • compute.instances.stop
      • compute.instances.update
      • compute.regions.list
      • recommender.cloudsqlIdleInstanceRecommendations.get
      • recommender.cloudsqlIdleInstanceRecommendations.list
      • recommender.cloudsqlIdleInstanceRecommendations.update
      • recommender.cloudsqlOverprovisionedInstanceRecommendations.get
      • recommender.cloudsqlOverprovisionedInstanceRecommendations.list
      • recommender.cloudsqlOverprovisionedInstanceRecommendations.update
      • recommender.computeInstanceIdleResourceRecommendations.get
      • recommender.computeInstanceIdleResourceRecommendations.list
      • recommender.computeInstanceIdleResourceRecommendations.update
      • recommender.computeInstanceMachineTypeRecommendations.get
      • recommender.computeInstanceMachineTypeRecommendations.list
      • recommender.computeInstanceMachineTypeRecommendations.update
      • recommender.locations.get
      • recommender.locations.list
      • resourcemanager.projects.get
      • resourcemanager.projects.list
    2. Set the roles at the Google Cloud organization level so that it is applicable for all the projects under that level.
      The following APIs should be enabled on the Google Cloud Console for each project.
      • Compute Engine API
      • Recommender API
      • BigQuery API
      • BigQuery Data Transfer API
      • Cloud Resource Manager API
      • Cloud SQL Admin API
      • Batch API
    3. For details on policy creation see Google Cloud docs.