RBAC Scopes: Insights accounts
This document defines all the available scopes in Pulumi Cloud assignable to specific insights accounts or sets of insights accounts.
Note that creating, listing, or restoring insights accounts are organization-level operations, and these scopes can be found in the organization settings scopes.
Insights Accounts
| Value | Description |
|---|---|
insights_account_access:read | View what users and roles can access an insights account. Granted by default permission: Account Read |
insights_account_access:update | Manage what users and roles can access an insights account. Granted by default permission: Account Admin |
insights_account:delete | Remove an existing insights account. This permanently deletes the account and its associated data. Granted by default permission: Account Admin |
insights_account:read | View insights account configurations and data. This includes access to monitoring settings and analysis results. Granted by default permission: Account Read |
insights_account:update | Modify insights account settings and configurations. This allows updating monitoring parameters and analysis rules. Granted by default permission: Account Write |
insights_account:update_policy_results | Update policy evaluation results for an insights account. This allows refreshing compliance data and analysis. Granted by default permission: Account Write |
Insights Scan
| Value | Description |
|---|---|
insights_account:scan | Initiate a new scan of an insights account. This triggers analysis of infrastructure configurations and compliance. Granted by default permission: Account Write |
insights_account_scan:cancel | Stop an ongoing insights account scan. This halts the current analysis process. Granted by default permission: Account Write |
insights_account_scan:pause | Temporarily suspend an insights account scan. This pauses the analysis process without losing progress. Granted by default permission: Account Write |
insights_account_scan:read | View insights account scan results and status. This includes access to analysis findings and progress. Granted by default permission: Account Read |
insights_account_scan:resume | Resume a paused insights account scan. This continues the analysis process from where it was paused. Granted by default permission: Account Write |
insights_account_scan:update | Modify insights account scan settings. This allows updating scan parameters and analysis configurations. Granted by default permission: Account Write |
Thank you for your feedback!
If you have a question about how to use Pulumi, reach out in Community Slack.
Open an issue on GitHub to report a problem or suggest an improvement.