What are the steps involved in adding a Viewer Role in GCP?

Last updated: December 12, 2025

| To grant a user a Viewer role in Google Cloud Platform (GCP), you can either use the Google Cloud Console or the gcloud command-line tool. Here's how you can achieve this through the Google Cloud Console:

  1. Access the Google Cloud Console via this link.

  2. Select the project you want to work with from the project dropdown located in the top bar.

  3. Navigate to the IAM & Admin page by clicking on IAM from the left navigation bar.

  4. At the top of the page, click the GRANT ACCESS button.

    Before proceeding, please grant access to our security team lead for Pentest or manual cloud review cases. This step is not required for automated cloud scan plans.

Please grant access to:

  1. In the New principals field, enter the email address of the user you want to grant the Viewer role to.

This can be a Google Account email, a Google Group, a Service Account, or a G Suite domain.

  1. Click on the Assign roles dropdown menu. You can either scroll or type Viewer to find the Viewer role (roles/viewer), then select it.

  2. Finally, click Save to apply the changes and grant the user the Viewer role.