Cloud IAM Role Comparator
Compare IAM roles and permissions across AWS, GCP, and Azure. Mapping table of key roles like admin, viewer, and editor to streamline permission design in multi-cloud environments
Related Categories:Security
32 role mappings
| Category | AWS | GCP | Azure | |
|---|---|---|---|---|
Administrator | AdministratorAccess | roles/owner | Owner | |
Viewer | ReadOnlyAccess | roles/viewer | Reader | |
Editor | PowerUserAccess | roles/editor | Contributor | |
Security Auditor | SecurityAudit | roles/iam.securityReviewer | Security Reader | |
Network Admin | NetworkAdministrator | roles/compute.networkAdmin | Network Contributor | |
Database Admin | AmazonRDSFullAccess | roles/cloudsql.admin | SQL DB Contributor | |
Storage Admin | AmazonS3FullAccess | roles/storage.admin | Storage Account Contributor | |
Compute Admin | AmazonEC2FullAccess | roles/compute.admin | Virtual Machine Contributor | |
IAM Admin | IAMFullAccess | roles/iam.admin | User Access Administrator | |
Log Viewer | CloudWatchReadOnlyAccess | roles/logging.viewer | Log Analytics Reader | |
Monitoring Admin | CloudWatchFullAccess | roles/monitoring.admin | Monitoring Contributor | |
Serverless / Functions | AWSLambdaFullAccess | roles/cloudfunctions.admin | Web Plan Contributor | |
Container Admin | AmazonECSFullAccess | roles/container.admin | AKS Cluster Admin | |
DNS Admin | AmazonRoute53FullAccess | roles/dns.admin | DNS Zone Contributor | |
Billing | Billing | roles/billing.admin | Billing Reader | |
Secrets Manager | SecretsManagerReadWrite | roles/secretmanager.admin | Key Vault Administrator | |
KMS Admin | AWSKeyManagementServicePowerUser | roles/cloudkms.admin | Key Vault Crypto Officer | |
Load Balancer Admin | ElasticLoadBalancingFullAccess | roles/compute.loadBalancerAdmin | Load Balancer Contributor | |
CDN Admin | CloudFrontFullAccess | roles/compute.loadBalancerAdmin | CDN Profile Contributor | |
Message Queue | AmazonSQSFullAccess | roles/pubsub.admin | Azure Service Bus Data Owner | |
Pub/Sub / Event | AmazonSNSFullAccess | roles/pubsub.admin | EventGrid Contributor | |
Cache Admin | AmazonElastiCacheFullAccess | roles/redis.admin | Redis Cache Contributor | |
VPN Admin | AmazonVPCFullAccess | roles/compute.networkAdmin | VPN Gateway Contributor | |
Search Service | AmazonOpenSearchServiceFullAccess | roles/discoveryengine.admin | Search Service Contributor | |
Data Pipeline | AWSGlueServiceRole | roles/dataflow.admin | Data Factory Contributor | |
ML / AI | AmazonSageMakerFullAccess | roles/ml.admin | Azure ML Workspace Contributor | |
API Gateway | AmazonAPIGatewayAdministrator | roles/apigateway.admin | API Management Service Contributor | |
Logging Admin | CloudWatchLogsFullAccess | roles/logging.admin | Log Analytics Contributor | |
Tag Admin | ResourceGroupsandTagEditorFullAccess | roles/resourcemanager.tagAdmin | Tag Contributor | |
Cost Explorer | AWSBillingReadOnlyAccess | roles/billing.viewer | Cost Management Reader | |
Support | AWSSupportAccess | roles/cloudsupport.admin | Support Request Contributor | |
Organization Admin | AWSOrganizationsFullAccess | roles/resourcemanager.organizationAdmin | Management Group Contributor |