Resource Schedule Permissions

Last updated 29 January, 20261 min read

The CerteroX Resource Schedules feature provides the facility to remotely stop and start virtual machine instances according to a custom schedule. To perform these actions, CerteroX will use the security principal for the Data Source that each VM is in scope of; and therefore, the Data Source security principals will require the correct permissions configured in cloud provider portals to stop and start VMs.

The required permissions are:

Azure

Microsoft.Compute/virtualMachines/start/action
Microsoft.Compute/virtualMachines/deallocate/action

AWS

ec2:StartInstances
ec2:StopInstances

GCP

compute.instances.start
compute.instances.stop

The permissions will typically be bundled into a custom role in the cloud vendor portal, and the role assigned to the CerteroX security principal.

Resource Schedule Permissions

General Documents

Resources

General

Confluence Page & Blogpost

Request

Admin

Page Builder