Datastream roles and permissions

This page lists the IAM roles and permissions for Datastream. Tosearch through all roles and permissions, see therole andpermission index.

Datastream roles

RolePermissions

Datastream Admin

(roles/datastream.admin)

Full access to all Datastream resources.

datastream.*

  • datastream.connectionProfiles.create
  • datastream.connectionProfiles.createTagBinding
  • datastream.connectionProfiles.delete
  • datastream.connectionProfiles.deleteTagBinding
  • datastream.connectionProfiles.destinationTypes
  • datastream.connectionProfiles.discover
  • datastream.connectionProfiles.get
  • datastream.connectionProfiles.getIamPolicy
  • datastream.connectionProfiles.list
  • datastream.connectionProfiles.listEffectiveTags
  • datastream.connectionProfiles.listStaticServiceIps
  • datastream.connectionProfiles.listTagBindings
  • datastream.connectionProfiles.setIamPolicy
  • datastream.connectionProfiles.sourceTypes
  • datastream.connectionProfiles.update
  • datastream.locations.fetchStaticIps
  • datastream.locations.get
  • datastream.locations.list
  • datastream.objects.get
  • datastream.objects.list
  • datastream.objects.startBackfillJob
  • datastream.objects.stopBackfillJob
  • datastream.operations.cancel
  • datastream.operations.delete
  • datastream.operations.get
  • datastream.operations.list
  • datastream.privateConnections.create
  • datastream.privateConnections.createTagBinding
  • datastream.privateConnections.delete
  • datastream.privateConnections.deleteTagBinding
  • datastream.privateConnections.get
  • datastream.privateConnections.getIamPolicy
  • datastream.privateConnections.list
  • datastream.privateConnections.listEffectiveTags
  • datastream.privateConnections.listTagBindings
  • datastream.privateConnections.setIamPolicy
  • datastream.routes.create
  • datastream.routes.delete
  • datastream.routes.get
  • datastream.routes.getIamPolicy
  • datastream.routes.list
  • datastream.routes.setIamPolicy
  • datastream.streams.computeState
  • datastream.streams.create
  • datastream.streams.createTagBinding
  • datastream.streams.delete
  • datastream.streams.deleteTagBinding
  • datastream.streams.fetchErrors
  • datastream.streams.get
  • datastream.streams.getIamPolicy
  • datastream.streams.list
  • datastream.streams.listEffectiveTags
  • datastream.streams.listTagBindings
  • datastream.streams.pause
  • datastream.streams.resume
  • datastream.streams.setIamPolicy
  • datastream.streams.start
  • datastream.streams.update

resourcemanager.projects.get

resourcemanager.projects.list

Datastream Bigquery Writer

(roles/datastream.bigqueryWriter)

Permissions needed for datastream to write to BigQuery.

bigquery.connections.delegate

bigquery.connections.get

bigquery.datasets.create

bigquery.datasets.get

bigquery.jobs.create

bigquery.jobs.delete

bigquery.jobs.get

bigquery.jobs.list

bigquery.jobs.update

bigquery.tables.create

bigquery.tables.get

bigquery.tables.getData

bigquery.tables.list

bigquery.tables.update

bigquery.tables.updateData

datastream.connectionProfiles.create

datastream.connectionProfiles.delete

datastream.connectionProfiles.destinationTypes

datastream.connectionProfiles.discover

datastream.connectionProfiles.get

datastream.connectionProfiles.getIamPolicy

datastream.connectionProfiles.list

datastream.connectionProfiles.listEffectiveTags

datastream.connectionProfiles.listStaticServiceIps

datastream.connectionProfiles.listTagBindings

datastream.connectionProfiles.sourceTypes

datastream.connectionProfiles.update

datastream.locations.*

  • datastream.locations.fetchStaticIps
  • datastream.locations.get
  • datastream.locations.list

datastream.objects.*

  • datastream.objects.get
  • datastream.objects.list
  • datastream.objects.startBackfillJob
  • datastream.objects.stopBackfillJob

datastream.operations.*

  • datastream.operations.cancel
  • datastream.operations.delete
  • datastream.operations.get
  • datastream.operations.list

datastream.privateConnections.create

datastream.privateConnections.delete

datastream.privateConnections.get

datastream.privateConnections.getIamPolicy

datastream.privateConnections.list

datastream.privateConnections.listEffectiveTags

datastream.privateConnections.listTagBindings

datastream.routes.create

datastream.routes.delete

datastream.routes.get

datastream.routes.getIamPolicy

datastream.routes.list

datastream.streams.computeState

datastream.streams.create

datastream.streams.delete

datastream.streams.fetchErrors

datastream.streams.get

datastream.streams.getIamPolicy

datastream.streams.list

datastream.streams.listEffectiveTags

datastream.streams.listTagBindings

datastream.streams.pause

datastream.streams.resume

datastream.streams.start

datastream.streams.update

Datastream Service Agent

(roles/datastream.serviceAgent)

Grants Cloud Datastream permissions to write data in the user project.

Warning: Do not grant service agent roles to any principals exceptservice agents.

bigquery.connections.delegate

bigquery.connections.get

bigquery.datasets.create

bigquery.datasets.get

bigquery.jobs.create

bigquery.jobs.delete

bigquery.jobs.get

bigquery.jobs.list

bigquery.jobs.update

bigquery.routines.get

bigquery.routines.list

bigquery.tables.create

bigquery.tables.get

bigquery.tables.getData

bigquery.tables.list

bigquery.tables.update

bigquery.tables.updateData

compute.globalAddresses.create

compute.globalAddresses.createInternal

compute.globalAddresses.delete

compute.globalAddresses.deleteInternal

compute.globalAddresses.get

compute.globalOperations.get

compute.networkAttachments.get

compute.networkAttachments.list

compute.networks.addPeering

compute.networks.get

compute.networks.listPeeringRoutes

compute.networks.removePeering

compute.networks.use

compute.routes.get

compute.routes.list

compute.subnetworks.get

compute.subnetworks.list

monitoring.timeSeries.list

pubsub.topics.publish

spanner.databases.beginReadOnlyTransaction

spanner.databases.getDdl

spanner.databases.partitionQuery

spanner.databases.partitionRead

spanner.databases.read

spanner.databases.select

spanner.databases.useDataBoost

spanner.databases.useRoleBasedAccess

spanner.sessions.create

spanner.sessions.delete

spanner.sessions.get

storage.buckets.get

storage.objects.create

storage.objects.get

storage.objects.list

Datastream Viewer

(roles/datastream.viewer)

Read-only access to all Datastream resources.

datastream.connectionProfiles.destinationTypes

datastream.connectionProfiles.discover

datastream.connectionProfiles.get

datastream.connectionProfiles.getIamPolicy

datastream.connectionProfiles.list

datastream.connectionProfiles.listEffectiveTags

datastream.connectionProfiles.listStaticServiceIps

datastream.connectionProfiles.listTagBindings

datastream.connectionProfiles.sourceTypes

datastream.locations.*

  • datastream.locations.fetchStaticIps
  • datastream.locations.get
  • datastream.locations.list

datastream.objects.get

datastream.objects.list

datastream.operations.get

datastream.operations.list

datastream.privateConnections.get

datastream.privateConnections.getIamPolicy

datastream.privateConnections.list

datastream.privateConnections.listEffectiveTags

datastream.privateConnections.listTagBindings

datastream.routes.get

datastream.routes.getIamPolicy

datastream.routes.list

datastream.streams.fetchErrors

datastream.streams.get

datastream.streams.getIamPolicy

datastream.streams.list

datastream.streams.listEffectiveTags

datastream.streams.listTagBindings

resourcemanager.projects.get

resourcemanager.projects.list

Datastream permissions

PermissionIncluded in roles

datastream.connectionProfiles.create

Owner (roles/owner)

Editor (roles/editor)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Dataproc Metastore Managed Migration Admin (roles/metastore.migrationAdmin)

datastream.connectionProfiles.createTagBinding

Owner (roles/owner)

Datastream Admin (roles/datastream.admin)

DLP Organization Data Profiles Driver (roles/dlp.orgdriver)

DLP Project Data Profiles Driver (roles/dlp.projectdriver)

Tag User (roles/resourcemanager.tagUser)

datastream.connectionProfiles.delete

Owner (roles/owner)

Editor (roles/editor)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Dataproc Metastore Managed Migration Admin (roles/metastore.migrationAdmin)

datastream.connectionProfiles.deleteTagBinding

Owner (roles/owner)

Datastream Admin (roles/datastream.admin)

DLP Organization Data Profiles Driver (roles/dlp.orgdriver)

DLP Project Data Profiles Driver (roles/dlp.projectdriver)

Tag User (roles/resourcemanager.tagUser)

datastream.connectionProfiles.destinationTypes

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Datastream Viewer (roles/datastream.viewer)

Support User (roles/iam.supportUser)

datastream.connectionProfiles.discover

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Datastream Viewer (roles/datastream.viewer)

Support User (roles/iam.supportUser)

datastream.connectionProfiles.get

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Datastream Viewer (roles/datastream.viewer)

Support User (roles/iam.supportUser)

datastream.connectionProfiles.getIamPolicy

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Datastream Viewer (roles/datastream.viewer)

Security Admin (roles/iam.securityAdmin)

Security Auditor (roles/iam.securityAuditor)

Security Reviewer (roles/iam.securityReviewer)

Support User (roles/iam.supportUser)

datastream.connectionProfiles.list

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Datastream Viewer (roles/datastream.viewer)

Security Admin (roles/iam.securityAdmin)

Security Auditor (roles/iam.securityAuditor)

Security Reviewer (roles/iam.securityReviewer)

Support User (roles/iam.supportUser)

datastream.connectionProfiles.listEffectiveTags

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Datastream Viewer (roles/datastream.viewer)

DLP Organization Data Profiles Driver (roles/dlp.orgdriver)

DLP Project Data Profiles Driver (roles/dlp.projectdriver)

Security Auditor (roles/iam.securityAuditor)

Support User (roles/iam.supportUser)

Tag User (roles/resourcemanager.tagUser)

Tag Viewer (roles/resourcemanager.tagViewer)

datastream.connectionProfiles.listStaticServiceIps

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Datastream Viewer (roles/datastream.viewer)

Support User (roles/iam.supportUser)

datastream.connectionProfiles.listTagBindings

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Datastream Viewer (roles/datastream.viewer)

DLP Organization Data Profiles Driver (roles/dlp.orgdriver)

DLP Project Data Profiles Driver (roles/dlp.projectdriver)

Security Auditor (roles/iam.securityAuditor)

Support User (roles/iam.supportUser)

Tag User (roles/resourcemanager.tagUser)

Tag Viewer (roles/resourcemanager.tagViewer)

datastream.connectionProfiles.setIamPolicy

Owner (roles/owner)

Datastream Admin (roles/datastream.admin)

Security Admin (roles/iam.securityAdmin)

datastream.connectionProfiles.sourceTypes

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Datastream Viewer (roles/datastream.viewer)

Support User (roles/iam.supportUser)

datastream.connectionProfiles.update

Owner (roles/owner)

Editor (roles/editor)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

datastream.locations.fetchStaticIps

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Datastream Viewer (roles/datastream.viewer)

Support User (roles/iam.supportUser)

datastream.locations.get

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Datastream Viewer (roles/datastream.viewer)

Support User (roles/iam.supportUser)

datastream.locations.list

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Datastream Viewer (roles/datastream.viewer)

Security Admin (roles/iam.securityAdmin)

Security Auditor (roles/iam.securityAuditor)

Security Reviewer (roles/iam.securityReviewer)

Support User (roles/iam.supportUser)

datastream.objects.get

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Datastream Viewer (roles/datastream.viewer)

Support User (roles/iam.supportUser)

Dataproc Metastore Managed Migration Admin (roles/metastore.migrationAdmin)

datastream.objects.list

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Datastream Viewer (roles/datastream.viewer)

Security Admin (roles/iam.securityAdmin)

Security Auditor (roles/iam.securityAuditor)

Security Reviewer (roles/iam.securityReviewer)

Support User (roles/iam.supportUser)

Dataproc Metastore Managed Migration Admin (roles/metastore.migrationAdmin)

datastream.objects.startBackfillJob

Owner (roles/owner)

Editor (roles/editor)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Dataproc Metastore Managed Migration Admin (roles/metastore.migrationAdmin)

datastream.objects.stopBackfillJob

Owner (roles/owner)

Editor (roles/editor)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Dataproc Metastore Managed Migration Admin (roles/metastore.migrationAdmin)

datastream.operations.cancel

Owner (roles/owner)

Editor (roles/editor)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

datastream.operations.delete

Owner (roles/owner)

Editor (roles/editor)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

datastream.operations.get

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Datastream Viewer (roles/datastream.viewer)

Support User (roles/iam.supportUser)

Dataproc Metastore Managed Migration Admin (roles/metastore.migrationAdmin)

datastream.operations.list

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Datastream Viewer (roles/datastream.viewer)

Security Admin (roles/iam.securityAdmin)

Security Auditor (roles/iam.securityAuditor)

Security Reviewer (roles/iam.securityReviewer)

Support User (roles/iam.supportUser)

datastream.privateConnections.create

Owner (roles/owner)

Editor (roles/editor)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Dataproc Metastore Managed Migration Admin (roles/metastore.migrationAdmin)

datastream.privateConnections.createTagBinding

Owner (roles/owner)

Datastream Admin (roles/datastream.admin)

DLP Organization Data Profiles Driver (roles/dlp.orgdriver)

DLP Project Data Profiles Driver (roles/dlp.projectdriver)

Tag User (roles/resourcemanager.tagUser)

datastream.privateConnections.delete

Owner (roles/owner)

Editor (roles/editor)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Dataproc Metastore Managed Migration Admin (roles/metastore.migrationAdmin)

datastream.privateConnections.deleteTagBinding

Owner (roles/owner)

Datastream Admin (roles/datastream.admin)

DLP Organization Data Profiles Driver (roles/dlp.orgdriver)

DLP Project Data Profiles Driver (roles/dlp.projectdriver)

Tag User (roles/resourcemanager.tagUser)

datastream.privateConnections.get

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Datastream Viewer (roles/datastream.viewer)

Support User (roles/iam.supportUser)

datastream.privateConnections.getIamPolicy

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Datastream Viewer (roles/datastream.viewer)

Security Admin (roles/iam.securityAdmin)

Security Auditor (roles/iam.securityAuditor)

Security Reviewer (roles/iam.securityReviewer)

Support User (roles/iam.supportUser)

datastream.privateConnections.list

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Datastream Viewer (roles/datastream.viewer)

Security Admin (roles/iam.securityAdmin)

Security Auditor (roles/iam.securityAuditor)

Security Reviewer (roles/iam.securityReviewer)

Support User (roles/iam.supportUser)

datastream.privateConnections.listEffectiveTags

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Datastream Viewer (roles/datastream.viewer)

DLP Organization Data Profiles Driver (roles/dlp.orgdriver)

DLP Project Data Profiles Driver (roles/dlp.projectdriver)

Security Auditor (roles/iam.securityAuditor)

Support User (roles/iam.supportUser)

Tag User (roles/resourcemanager.tagUser)

Tag Viewer (roles/resourcemanager.tagViewer)

datastream.privateConnections.listTagBindings

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Datastream Viewer (roles/datastream.viewer)

DLP Organization Data Profiles Driver (roles/dlp.orgdriver)

DLP Project Data Profiles Driver (roles/dlp.projectdriver)

Security Auditor (roles/iam.securityAuditor)

Support User (roles/iam.supportUser)

Tag User (roles/resourcemanager.tagUser)

Tag Viewer (roles/resourcemanager.tagViewer)

datastream.privateConnections.setIamPolicy

Owner (roles/owner)

Datastream Admin (roles/datastream.admin)

Security Admin (roles/iam.securityAdmin)

datastream.routes.create

Owner (roles/owner)

Editor (roles/editor)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

datastream.routes.delete

Owner (roles/owner)

Editor (roles/editor)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

datastream.routes.get

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Datastream Viewer (roles/datastream.viewer)

Support User (roles/iam.supportUser)

datastream.routes.getIamPolicy

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Datastream Viewer (roles/datastream.viewer)

Security Admin (roles/iam.securityAdmin)

Security Auditor (roles/iam.securityAuditor)

Security Reviewer (roles/iam.securityReviewer)

Support User (roles/iam.supportUser)

datastream.routes.list

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Datastream Viewer (roles/datastream.viewer)

Security Admin (roles/iam.securityAdmin)

Security Auditor (roles/iam.securityAuditor)

Security Reviewer (roles/iam.securityReviewer)

Support User (roles/iam.supportUser)

datastream.routes.setIamPolicy

Owner (roles/owner)

Datastream Admin (roles/datastream.admin)

Security Admin (roles/iam.securityAdmin)

datastream.streams.computeState

Owner (roles/owner)

Editor (roles/editor)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

datastream.streams.create

Owner (roles/owner)

Editor (roles/editor)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Dataproc Metastore Managed Migration Admin (roles/metastore.migrationAdmin)

datastream.streams.createTagBinding

Owner (roles/owner)

Datastream Admin (roles/datastream.admin)

DLP Organization Data Profiles Driver (roles/dlp.orgdriver)

DLP Project Data Profiles Driver (roles/dlp.projectdriver)

Tag User (roles/resourcemanager.tagUser)

datastream.streams.delete

Owner (roles/owner)

Editor (roles/editor)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Dataproc Metastore Managed Migration Admin (roles/metastore.migrationAdmin)

datastream.streams.deleteTagBinding

Owner (roles/owner)

Datastream Admin (roles/datastream.admin)

DLP Organization Data Profiles Driver (roles/dlp.orgdriver)

DLP Project Data Profiles Driver (roles/dlp.projectdriver)

Tag User (roles/resourcemanager.tagUser)

datastream.streams.fetchErrors

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Datastream Viewer (roles/datastream.viewer)

Support User (roles/iam.supportUser)

datastream.streams.get

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Datastream Viewer (roles/datastream.viewer)

Support User (roles/iam.supportUser)

Dataproc Metastore Managed Migration Admin (roles/metastore.migrationAdmin)

datastream.streams.getIamPolicy

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Datastream Viewer (roles/datastream.viewer)

Security Admin (roles/iam.securityAdmin)

Security Auditor (roles/iam.securityAuditor)

Security Reviewer (roles/iam.securityReviewer)

Support User (roles/iam.supportUser)

datastream.streams.list

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Datastream Viewer (roles/datastream.viewer)

Security Admin (roles/iam.securityAdmin)

Security Auditor (roles/iam.securityAuditor)

Security Reviewer (roles/iam.securityReviewer)

Support User (roles/iam.supportUser)

datastream.streams.listEffectiveTags

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Datastream Viewer (roles/datastream.viewer)

DLP Organization Data Profiles Driver (roles/dlp.orgdriver)

DLP Project Data Profiles Driver (roles/dlp.projectdriver)

Security Auditor (roles/iam.securityAuditor)

Support User (roles/iam.supportUser)

Tag User (roles/resourcemanager.tagUser)

Tag Viewer (roles/resourcemanager.tagViewer)

datastream.streams.listTagBindings

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Datastream Viewer (roles/datastream.viewer)

DLP Organization Data Profiles Driver (roles/dlp.orgdriver)

DLP Project Data Profiles Driver (roles/dlp.projectdriver)

Security Auditor (roles/iam.securityAuditor)

Support User (roles/iam.supportUser)

Tag User (roles/resourcemanager.tagUser)

Tag Viewer (roles/resourcemanager.tagViewer)

datastream.streams.pause

Owner (roles/owner)

Editor (roles/editor)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

datastream.streams.resume

Owner (roles/owner)

Editor (roles/editor)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

datastream.streams.setIamPolicy

Owner (roles/owner)

Datastream Admin (roles/datastream.admin)

Security Admin (roles/iam.securityAdmin)

datastream.streams.start

Owner (roles/owner)

Editor (roles/editor)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

datastream.streams.update

Owner (roles/owner)

Editor (roles/editor)

Datastream Admin (roles/datastream.admin)

Datastream Bigquery Writer (roles/datastream.bigqueryWriter)

Dataproc Metastore Managed Migration Admin (roles/metastore.migrationAdmin)

Except as otherwise noted, the content of this page is licensed under theCreative Commons Attribution 4.0 License, and code samples are licensed under theApache 2.0 License. For details, see theGoogle Developers Site Policies. Java is a registered trademark of Oracle and/or its affiliates.

Last updated 2025-12-16 UTC.