Roles and Permissions Reference
Click each role to view the role permissions.
Customer Resource Hierarchy
Company Admin
Admin role allowing the user to perform any action available in the system.
Role Permission Value(s) | Permission Description |
---|---|
billing.billingaccount.assign | Assign and Manage Billing Account associations in the resource hierarchy |
billing.billingaccount.assign | Assign and Manage Billing Account associations in the resource hierarchy |
billing.billingaccount.create | Create Billing Accounts and associations in the resource hierarchy |
billing.billingaccount.delete | Delete billing account ownership from an organization in the resource hierarchy |
billing.billingaccount.move | Move billing accounts between organizations in the resource hierarchy |
billing.billingaccount.read | View Billing Accounts in the resource hierarchy |
billing.billingaccount.unlink | Unlink Billing Account associations in the resource hierarchy |
fabric.fabriccloudrouter.create | Create Fabric Cloud Router |
fabric.fabriccloudrouter.delete | Delete Fabric Cloud Router |
fabric.fabriccloudrouter.read | Get Fabric Cloud Router |
fabric.fabriccloudrouter.update | Update Fabric Cloud Router |
fabric.ipblock.create | Create IP Block in the resource hierarchy |
fabric.ipblock.delete | Delete IP Block from resource hierarchy |
fabric.ipblock.read | Read IP Block from resource hierarchy |
fabric.ipblock.update | Update IP Block in the resource hierarchy |
fabric.l2connection.approve | Approve or Reject Connection |
fabric.l2connection.create | Create Connection |
fabric.l2connection.delete | Delete Connection |
fabric.l2connection.read | Get Connection |
fabric.l2connection.update | Update Connection |
fabric.l3connection.approve | Approve or Reject L3 Connection |
fabric.l3connection.create | Create L3 Connection |
fabric.l3connection.delete | Delete L3 Connection |
fabric.l3connection.read | Get L3 Connection |
fabric.l3connection.update | Update L3 Connection |
fabric.l3serviceprofile.create | Create L3 Service profile |
fabric.l3serviceprofile.delete | Delete L3 Service profile |
fabric.l3serviceprofile.read | Get L3 Service profile |
fabric.l3serviceprofile.update | Update L3 Service profile |
fabric.network.create | Create Network |
fabric.network.delete | Delete Network |
fabric.network.read | Get Network |
fabric.network.update | Update Network |
fabric.port.assign | Assign a Port |
fabric.port.delete | Delete a Port |
fabric.port.placeorder | Place VC Order on Port |
fabric.port.read | Read Port |
fabric.port.unassign | Unassign a Port |
fabric.routefilter.create | Create Route Filter |
fabric.routefilter.delete | Delete Route Filter |
fabric.routefilter.read | Get Route Filter |
fabric.routefilter.update | Update Route Filter |
fabric.serviceprofile.create | Create Service profile |
fabric.serviceprofile.delete | Delete Service profile |
fabric.serviceprofile.read | Get Service profile |
fabric.serviceprofile.update | Update Service profile |
fabric.servicetoken.create | Create Service Token |
fabric.servicetoken.delete | Delete Service Token |
fabric.servicetoken.read | Get Service Token |
fabric.servicetoken.update | Update Service Token |
iam.customrole.assign | Assign custom roles in the resource hierarchy |
iam.customrole.create | Create custom roles in the resource hierarchy |
iam.customrole.delete | Delete custom roles in the resource hierarchy |
iam.customrole.read | View the custom roles in the resource hierarchy |
iam.customrole.unassign | Unassign custom roles in the resource hierarchy |
iam.customrole.update | Update custom roles in the resource hierarchy |
iam.role.administrate | Permission meant strictly for Primary Admin so that he can perform special operations related with roles. |
iam.role.assign | Assign roles in the resource hierarchy |
iam.role.create | Create custom roles in the resource hierarchy |
iam.role.delete | Delete custom roles in the resource hierarchy |
iam.role.read | Read roles in the resource hierarchy |
iam.role.unassign | Unassign roles in the resource hierarchy |
iam.role.update | Update custom roles in the resource hierarchy |
iam.systemrole.assign | Assign Roles in the resource hierarchy |
iam.systemrole.unassign | Reassign and Unassign Roles in the resource hierarchy |
iam.user.create | Create a new user in an organization |
internetAccess.service.create | Create EIA Service |
internetAccess.service.delete | Delete EIA Service |
internetAccess.service.modify | Modify EIA Service |
internetAccess.service.read | Read EIA Service |
networkedge.acl.create | Create Network Edge ACL Templates |
networkedge.acl.modify | Modify Network Edge ACL Templates |
networkedge.acl.view | View Network Edge ACL Templates |
networkedge.acltemplate.create | Create Network Edge ACL Templates |
networkedge.acltemplate.delete | Delete Network Edge ACL Templates |
networkedge.acltemplate.modify | Modify Network Edge ACL Templates |
networkedge.acltemplate.view | View Network Edge ACL Templates |
networkedge.bgp.create | Create BGP Sessions |
networkedge.bgp.delete | Delete BGP Sessions |
networkedge.bgp.modify | Modify BGP Sessions |
networkedge.bgp.view | View BGP Sessions |
networkedge.devicelinking.create | Permission to create a Device Linking Group. |
networkedge.devicelinking.delete | Permission to delete a Device Linking Group. |
networkedge.devicelinking.modify | Permission to modify a Device Linking Group. |
networkedge.devicelinking.view | Permission to view a Device Linking Group. |
networkedge.internetbandwidth.modify | Modify Internet Bandwidth ACL Templates |
networkedge.internetbandwidth.view | View Internet Bandwidth ACL Templates |
networkedge.l2connection.create | Create Level 2 (L2) connections |
networkedge.l2connection.delete | Delete Level 2 (L2) connections |
networkedge.l2connection.modify | Modify Level 2 (L2) connections |
networkedge.l2connection.view | View Level 2 (L2) connections |
networkedge.publickey.create | Create Network Edge Public Key |
networkedge.publickey.delete | Delete Network Edge Public Key |
networkedge.publickey.modify | Modify Network Edge Public Key |
networkedge.publickey.view | View Network Edge Public Key |
networkedge.solutionbuilder.create | Permission to create a Solution Builder. |
networkedge.solutionbuilder.delete | Permission to delete a Solution Builder. |
networkedge.solutionbuilder.modify | Permission to modify a Solution Builder. |
networkedge.solutionbuilder.view | Permission to view a Solution Builder. |
networkedge.sshuser.create | Create Network Edge SSH Services |
networkedge.sshuser.modify | Modify Network Edge SSH services |
networkedge.sshuser.view | View Network Edge SSH Services |
networkedge.virtualdevice.create | Create Network Edge Virtual Devices |
networkedge.virtualdevice.delete | Delete Network Edge Virtual Devices |
networkedge.virtualdevice.modify | Modify Network Edge Virtual Devices |
networkedge.virtualdevice.view | View Network Edge Virtual Devices |
networkedge.vpn.create | Create Network Edge VPN Connections |
networkedge.vpn.delete | Delete Network Edge VPN Connections |
networkedge.vpn.modify | Modify Network Edge VPN Connections |
networkedge.vpn.view | View Network Edge VPN Connections |
resourcemanager.org.associate | Associate Orgs with entities like Billing Accounts in the resource hierarchy |
resourcemanager.org.create | Create Orgs in the resource hierarchy |
resourcemanager.org.delete | Delete Orgs in the resource hierarchy |
resourcemanager.org.disassociate | Disassociate Orgs with entities like Billing Accounts in the resource hierarchy |
resourcemanager.org.endcust.create | Create End-customer organizations |
resourcemanager.org.endcust.delete | Delete End-customer organizations |
resourcemanager.org.endcust.list | List End-customer organizations |
resourcemanager.org.endcust.move | Move End-customer organizations |
resourcemanager.org.endcust.read | View End-customer organizations |
resourcemanager.org.endcust.update | Update End-customer organizations |
resourcemanager.org.merge | Merge organizations in the resource hierarchy |
resourcemanager.org.org.add | Add existing org to an organization |
resourcemanager.org.org.remove | Remove existing org from an organization |
resourcemanager.org.partner.create | Create Partner Orgs |
resourcemanager.org.partner.delete | Delete Partner Orgs |
resourcemanager.org.partner.read | View Partner Orgs |
resourcemanager.org.partner.update | Update Partner Orgs |
resourcemanager.org.project.add | Add existing project to an organization |
resourcemanager.org.project.remove | Remove existing project from an organization |
resourcemanager.org.read | View Orgs in the resource hierarchy |
resourcemanager.org.update | Update Orgs in the resource hierarchy |
resourcemanager.project.associate | Associate Projects with Billing Accounts in the resource hierarchy |
resourcemanager.project.create | Create Projects in the resource hierarchy |
resourcemanager.project.delete | Delete Projects in the resource hierarchy |
resourcemanager.project.disassociate | Disassociate Projects from Billing Accounts in the resource hierarchy |
resourcemanager.project.read | View Projects in the resource hierarchy |
resourcemanager.project.resource.add | Add existing resource to a project |
IAM Admin
Manages users, custom roles and assignment of roles to users in the resource hierarchy
Role Permission Value(s) | Permission Description |
---|---|
fabric.port.read | View Fabric port sessions |
iam.role.assign | Assign Roles in the resource hierarchy |
iam.role.unassign | Reassign and Unassign Roles in the resource hierarchy |
iam.role.assign | Assign Roles in the resource hierarchy |
iam.role.create | Create Roles in the resource hierarchy |
iam.role.delete | Delete Roles in the resource hierarchy |
iam.role.update | Update Roles in the resource hierarchy |
iam.customrole.assign | Assign Custom Roles in the resource hierarchy |
iam.customrole.unassign | Reassign and Unassign Custom Roles in the resource hierarchy |
iam.customrole.assign | Assign Custom Roles in the resource hierarchy |
iam.customrole.create | Create Custom Roles in the resource hierarchy |
iam.customrole.delete | Delete Custom Roles in the resource hierarchy |
iam.customrole.update | Update Custom Roles in the resource hierarchy |
iam.systemrole.assign | Assign system roles in the resource hierarchy |
iam.systemrole.unassign | Reassign and unassign system roles in the resource hierarchy |
iam.user.create | Create a new user in an organization |
Org Admin
Creates and manages Organizations in the Resource Hierarchy.
Role Permission Value(s) | Permission Description |
---|---|
resourcemanager.org.create | Create Organizations in the resource hierarchy |
resourcemanager.org.read | View Organizations in the resource hierarchy |
resourcemanager.org.update | Update Organizations in the resource hierarchy |
resourcemanager.org.delete | Delete Organizations in the resource hierarchy |
resourcemanager.org.associate | Associate Organizations with Billing Account entities in the resource hierarchy |
resourcemanager.org.disassociate | Disassociate Organizations with Billing Account entities in the resource hierarchy |
billing.billingaccount.read | View Billing Accounts in the resource hierarchy |
resourcemanager.org.project.remove | Remove existing project from an organization |
resourcemanager.org.org.remove | Remove existing org from an organization |
resourcemanager.org.org.add | Add existing org to an organization |
resourcemanager.org.project.add | Add existing project to an organization |
Org Viewer
Views Organizations and Org Resources.
Role Permission Value(s) | Permission Description |
---|---|
resourcemanager.org.read | View Organizations in the resource hierarchy |
Project Admin
Creates and manages Inventory and Projects.
Role Permission Value(s) | Permission Description |
---|---|
resourcemanager.project.create | Create Projects in the resource hierarchy |
resourcemanager.project.read | View Projects in the resource hierarchy |
resourcemanager.project.delete | Delete Projects in the resource hierarchy |
resourcemanager.project.update | Update Projects in the resource hierarchy |
billing.billingaccount.read | View Billing Accounts in the resource hierarchy |
resourcemanager.project.associate | Associate Projects with Billing Accounts in the resource hierarchy |
resourcemanager.project.disassociate | Disassociate Projects from Billing Accounts in the resource hierarchy |
resourcemanager.project.resource.remove | Remove existing resource from a project |
resourcemanager.project.resource.add | Add existing resource to a project |
Project Viewer
Views Projects and Project Resources.
Role Permission Value(s) | Permission Description |
---|---|
resourcemanager.project.read | View Projects in the resource hierarchy |
Finance Admin
Manages Billing Account associations in the Resource Hierarchy.
Role Permission Value(s) | Permission Description |
---|---|
resourcemanager.project.read | View Projects in the resource hierarchy |
billing.billingaccount.read | View Billing Accounts in the resource hierarchy |
billing.billingaccount.create | Create Billing Accounts and associations in the resource hierarchy |
billing.billingaccount.assign | Assign and Manage Billing Account associations in the resource hierarchy |
billing.billingaccount.unassign | Unassign Billing Account associations in the resource hierarchy |
billing.billingaccount.unlink | Unlink Billing Account associations in the resource hierarchy |
billing.billingaccount.view | View Billing Account associations in the resource hierarchy |
organizations.orgaccount.view | View Organization Account associations in the resource hierarchy |
projects.projectaccount.view | View Project Account associations in the resource hierarchy |
resourcemanager.org.read | View Organizations in the resource hierarchy |
Partner Admin
Manages Partner Organizations.
Role Permission Value(s) | Permission Description |
---|---|
resourcemanager.org.subcust.delete | Delete Sub-account level Organizations |
resourcemanager.org.subcust.read | View Sub-account level Organizations |
resourcemanager.org.partner.create | Create Partner Organizations |
resourcemanager.org.partner.update | Update Partner Organizations |
resourcemanager.org.partner.delete | Delete Partner Organizations |
resourcemanager.org.subcust.update | Update Sub-account level Organizations |
resourcemanager.org.subcust.create | Create Sub-account level Organizations |
resourcemanager.org.partner.read | View Partner Organizations |
resourcemanager.org.subcust.list | List and View Sub-account level Organizations |
resourcemanager.org.subcust.move | Manage Sub-account level Organizations |
Partner Viewer
View Partner Organizations.
Role Permission Value(s) | Permission Description |
---|---|
resourcemanager.org.subcust.read | View Sub-account level Organizations |
resourcemanager.org.partner.read | View Partner Organizations |
End Customer Admin
Manages Sub-customer Organizations.
Role Permission Value(s) | Permission Description |
---|---|
resourcemanager.org.endcust.move | Move End customer organizations |
resourcemanager.org.endcust.delete | Delete End customer organizations |
resourcemanager.org.endcust.list | List and View End customer organizations |
resourcemanager.org.endcust.create | Create End customer organizations |
resourcemanager.org.endcust.update | Update End customer organizations |
resourcemanager.org.endcust.read | View End customer organizations |
End Customer Viewer
View Sub-customer Organizations.
Role Permission Value(s) | Permission Description |
---|---|
resourcemanager.org.endcust.read | View End customer organizations |
Company Profile Admin
Updates the Company Profile.
Role Permission Value(s) | Permission Description |
---|---|
discovery.companyprofile.read | Get Company Profile |
discovery.companyprofile.update | Update Company Profile |
resourcemanager.project.read | View Projects in the Resource Hierarchy |
Network Edge
Network Edge Device Manager
Manages Network Edge Devices.
Role Permission Value(s) | Permission Description |
---|---|
resourcemanager.project.read | View Projects in the Resource Hierarchy |
networkedge.virtualdevice.create | Create Network Edge Virtual Devices |
networkedge.virtualdevice.view | View Network Edge Virtual Devices |
networkedge.virtualdevice.modify | Modify Network Edge Virtual Devices |
networkedge.virtualdevice.delete | Delete Network Edge Virtual Devices |
networkedge.acl.create | Create Network Edge ACL Templates |
networkedge.acl.view | View Network Edge Access Control List (ACL) |
networkedge.acl.modify | Modify Network Edge ACL Templates |
networkedge.sshuser.create | Create Network Edge SSH Services |
networkedge.sshuser.modify | Modify Network Edge SSH Services |
networkedge.sshuser.view | View Network Edge SSH Services |
networkedge.vpn.create | Create Network Edge VPN Connections |
networkedge.vpn.view | View Network Edge VPN Connections |
networkedge.vpn.modify | Modify Network Edge VPN Connections |
networkedge.vpn.delete | Delete Network Edge VPN Connections |
networkedge.internetbandwidth.view | View Internet Bandwidth ACL Templates |
networkedge.internetbandwidth.modify | Modify Internet Bandwidth ACL Templates |
networkedge.acltemplate.view | View Network Edge ACL Templates |
networkedge.acltemplate.create | Create Network Edge ACL Templates |
networkedge.acltemplate.modify | Modify Network Edge ACL Templates |
networkedge.acltemplate.delete | Delete Network Edge ACL Templates |
networkedge.publickey.create | Create Network Edge Public Key |
networkedge.publickey.view | View Network Edge Public Key |
networkedge.publickey.delete | Delete Network Edge Public Key |
networkedge.publickey.modify | Modify Network Edge Public Key |
networkedge.l2connection.view | View Layer 2 (L2) Connections |
networkedge.bgp.view | View BGP Sessions |
networkedge.devicelinking.create | Create a Device Linking Group |
networkedge.devicelinking.delete | Delete a Device Linking Group |
networkedge.devicelinking.modify | Edit a Device Linking Group |
networkedge.devicelinking.view | View a Device Linking Group |
networkedge.solutionbuilder.create | Create a Solution Builder |
networkedge.solutionbuilder.delete | Delete a Solution Builder |
networkedge.solutionbuilder.modify | Edit a Solution Builder |
networkedge.solutionbuilder.view | View a Solution Builder |
Network Edge Connections Manager
Manages Network Edge Connections.
Role Permission Value(s) | Permission Description |
---|---|
resourcemanager.project.read | View Projects in the resource hierarchy |
networkedge.l2connection.create | Create Layer 2 (L2) Connections |
networkedge.l2connection.view | View Layer 2 (L2) Connections |
networkedge.l2connection.modify | Modify Layer 2 (L2) Connections |
networkedge.l2connection.delete | Delete Layer 2 (L2) Connections |
networkedge.bgp.create | Create BGP Sessions |
networkedge.bgp.view | View BGP Sessions |
networkedge.bgp.modify | Modify BGP Sessions |
networkedge.bgp.delete | Delete BGP Sessions |
networkedge.virtualdevice.view | View Network Edge Virtual Devices |
networkedge.vpn.view | View Network Edge VPN Connections |
networkedge.sshuser.view | View Network Edge SSH Services |
networkedge.acl.view | View Network Edge ACL Templates |
networkedge.acltemplate.view | View Network Edge ACL Templates |
networkedge.publickey.view | View Network Edge Public Key |
networkedge.internetbandwidth.view | View Network Edge Internet Bandwidth ACL Templates |
fabric.serviceprofile.read | Read Fabric Layer 2 (L2) Service Profiles |
internetAccess.service.create | Create Equinix Internet Access service instances |
internetAccess.service.read | View Equinix Internet Access service instances |
internetAccess.service.modify | Edit Equinix Internet Access service instances |
internetAccess.service.delete | Delete Equinix Internet Access service instances |
Network Edge Viewer
Views Network Edge Projects and Resources.
Role Permission Value(s) | Permission Description |
---|---|
resourcemanager.project.read | View Projects in the resource hierarchy |
networkedge.l2connection.view | View Layer 2 (L2) Connections |
networkedge.bgp.view | View BGP Sessions |
networkedge.devicelinking.view | View a Device Linking Group |
networkedge.virtualdevice.view | View Network Edge Virtual Devices |
networkedge.vpn.view | View Network Edge VPN Connections |
networkedge.sshuser.view | View Network Edge SSH Services |
networkedge.acl.view | View Network Edge ACL Templates |
networkedge.acltemplate.view | View Network Edge ACL Templates |
networkedge.publickey.view | View Network Edge Public Key |
networkedge.internetbandwidth.view | View Internet Bandwidth ACL Templates |
internetAccess.service.read | View Equinix Internet Access service instances |
networkedge.solutionbuilder.create | Create a Solution Builder |
networkedge.solutionbuilder.delete | Delete a Solution Builder |
networkedge.solutionbuilder.modify | Edit a Solution Builder |
networkedge.solutionbuilder.view | View a Solution Builder |
Fabric
Fabric Manager
Manages Ports, Connections, Service tokens and EIA for their organization.
Role Permission Value(s) | Permission Description |
---|---|
fabric.l2connection.create | Create Fabric Layer 2 (L2) Connections |
fabric.l2connection.read | View Fabric Layer 2 (L2) Connections |
fabric.l2connection.delete | Delete Fabric Layer 2 (L2) Connections |
fabric.l2connection.update | Update Fabric Layer 2 (L2) Connections |
fabric.l3connection.create | Create Fabric Layer 3 (L3) Connections |
fabric.l3connection.read | View Fabric Layer 3 (L3) Connections |
fabric.l3connection.delete | Delete Fabric Layer 3 (L3) Connections |
fabric.l3connection.update | Update Fabric Layer 3 (L3) Connections |
fabric.ipblock.create | Create Fabric IP Blocks |
fabric.ipblock.read | View Fabric IP Blocks |
fabric.ipblock.delete | Delete Fabric IP Blocks |
fabric.ipblock.update | Update Fabric IP Blocks |
fabric.port.placeorder | Create Fabric Port Orders |
fabric.port.read | View Port Sessions |
fabric.port.placeorder | Place orders for Fabric Port |
fabric.servicetoken.create | Create Fabric Service Tokens |
fabric.servicetoken.read | View Fabric Service Tokens |
fabric.servicetoken.delete | Delete Fabric Service Tokens |
fabric.servicetoken.update | Update Fabric Service Tokens |
fabric.network.create | Create Fabric Network |
fabric.network.read | Get Fabric Network |
fabric.network.update | Update Fabric Network |
fabric.network.delete | Delete Fabric Network |
resourcemanager.project.read | View Projects in the resource hierarchy |
billing.billingaccount.read | View Billing Account |
internetAccess.service.create | Create Equinix Internet Access service instances |
internetAccess.service.read | View Equinix Internet Access service instances |
internetAccess.service.modify | Edit Equinix Internet Access service instances |
internetAccess.service.delete | Delete Equinix Internet Access service instances |
Fabric Viewer
V iew Service profiles, Ports, Connections, Service tokens and EIA.
Role Permission Value(s) | Permission Description |
---|---|
fabric.l2connection.read | View Fabric Layer 2 (L2) Connections |
resourcemanager.project.read | View Projects in the resource hierarchy |
fabric.l3connection.read | View Fabric Layer 3 (L3) Connections |
fabric.serviceprofile.read | View Fabric Layer 2 (L2) Service Profiles |
fabric.l3serviceprofile.read | View Fabric Layer 3 (L3) Service Profiles |
fabric.network.read | View Fabric Network |
fabric.servicetoken.read | View Fabric Service Tokens |
fabric.port.read | View Fabric Ports |
fabric.ipblock.read | View Fabric IP Blocks |
internetAccess.service.read | View Equinix Internet Access service instances |
Fabric Service Provider
Manages Service profiles, Ports, Connections, Service tokens and EIA.
Role Permission Value(s) | Permission Description |
---|---|
fabric.l2connection.approve | Approve Fabric Layer 2 (L2) Connections |
fabric.l2connection.create | Create Fabric Layer 2 (L2) Connections |
fabric.l2connection.delete | Delete Fabric Layer 2 (L2) Connections |
fabric.l2connection.read | View Fabric Layer 2 (L2) Connections |
fabric.l2connection.update | Update Fabric Layer 2 (L2) Connections |
fabric.l3connection.approve | Approve Fabric Layer 3 (L3) Connections |
fabric.l3connection.create | Create Fabric Layer 3 (L3) Connections |
fabric.l3connection.delete | Delete Fabric Layer 3 (L3) Connections |
fabric.l3connection.read | View Fabric Layer 3 (L3) Connections |
fabric.l3connection.update | Update Fabric Layer 3 (L3) Connections |
fabric.l3serviceprofile.create | Create Fabric Layer 3 (L3) Service Profiles |
fabric.l3serviceprofile.read | View Fabric Layer 3 (L3) Service Profiles |
fabric.l3serviceprofile.update | Update Fabric Layer 3 (L3) Service Profiles |
fabric.l3serviceprofile.delete | Delete Fabric Layer 3 (L3) Service Profiles |
fabric.servicetoken.create | Create Fabric Service Tokens |
fabric.servicetoken.read | View Fabric Service Tokens |
fabric.servicetoken.delete | Delete Fabric Service Tokens |
fabric.servicetoken.update | Update Fabric Service Tokens |
fabric.port.placeorder | Create Fabric Port Orders |
fabric.port.read | View Fabric Ports |
fabric.serviceprofile.create | Create Fabric Layer 2 (L2) and Network Edge Service Profiles |
fabric.serviceprofile.delete | Delete Fabric Layer 2 (L2) and Network Edge Service Profiles |
fabric.serviceprofile.read | Read Fabric Layer 2 (L2) and Network Edge Service Profiles |
fabric.serviceprofile.update | Update Fabric Layer 2 (L2) and Network Edge Service Profiles |
resourcemanager.project.read | View Projects in the resource hierarchy |
billing.billingaccount.read | View Billing Account |
fabric.network.create | Create Fabric Network |
fabric.network.read | Get Fabric Network |
fabric.network.update | Update Fabric Network |
fabric.network.delete | Delete Fabric Network |
fabric.ipblock.create | Create Fabric IP Blocks |
fabric.ipblock.read | View Fabric IP Blocks |
fabric.ipblock.delete | Delete Fabric IP Blocks |
fabric.ipblock.update | Update Fabric IP Blocks |
fabric.fabriccloudrouter.delete | Delete Fabric Cloud Router |
fabric.fabriccloudrouter.update | Update Fabric Cloud Router |
fabric.fabriccloudrouter.read | Get Fabric Cloud Router |
fabric.fabriccloudrouter.create | Create Fabric Cloud Router |
fabric.routefilter.create | Create Route Filter |
fabric.routefilter.read | Get Route Filter |
fabric.routefilter.update | Update Route Filter |
fabric.routefilter.delete | Delete Route Filter |
internetAccess.service.create | Create Equinix Internet Access service instances |
internetAccess.service.read | View Equinix Internet Access service instances |
internetAccess.service.modify | Edit Equinix Internet Access service instances |
internetAccess.service.delete | Delete Equinix Internet Access service instances |
Fabric Partner Resource Manager
Manages Fabric Partner Projects and Resources.
Role Permission Value(s) | Permission Description |
---|---|
fabric.port.read | View Port Sessions |
fabric.port.placeorder | Create Fabric Port Orders |
fabric.port.assign | Assign Fabric Port |
fabric.port.unassign | Unassign Fabric Port |
resourcemanager.project.read | View Projects in the resource hierarchy |
End Customer Fabric Manager
End Customer - Manages Connections, Service tokens and EIA.
Role Permission Value(s) | Permission Description |
---|---|
fabric.port.read | View Port Sessions |
fabric.l2connection.create | Create Fabric Layer 2 (L2) Connections |
fabric.l2connection.read | View Fabric Layer 2 (L2) Connections |
fabric.l2connection.update | Update Fabric Layer 2 (L2) Connections |
fabric.l2connection.delete | Delete Fabric Layer 2 (L2) Connections |
fabric.l3connection.create | Create Fabric Layer 3 (L3) Connections |
fabric.l3connection.read | View Fabric Layer 3 (L3) Connections |
fabric.l3connection.update | Update Fabric Layer 3 (L3) Connections |
fabric.l3connection.delete | Delete Fabric Layer 3 (L3) Connections |
fabric.servicetoken.create | Create Fabric Service Tokens |
fabric.servicetoken.read | View Fabric Service Tokens |
fabric.servicetoken.update | Update Fabric Service Tokens |
fabric.servicetoken.delete | Delete Fabric Service Tokens |
resourcemanager.project.read | View Projects in the resource hierarchy |
fabric.network.create | Create Fabric Network |
fabric.network.read | Get Fabric Network |
fabric.network.update | Update Fabric Network |
fabric.network.delete | Delete Fabric Network |
internetAccess.service.create | Create Equinix Internet Access service instances |
internetAccess.service.read | View Equinix Internet Access service instances |
internetAccess.service.modify | Edit Equinix Internet Access service instances |
internetAccess.service.delete | Delete Equinix Internet Access service instances |
End Customer Fabric Viewer
End Customer - View Ports, Connections, Service tokens and EIA.
Role Permission Value(s) | Permission Description |
---|---|
fabric.port.read | View Port Sessions |
fabric.l2connection.read | View Fabric Layer 2 (L2) Connections |
fabric.l3connection.read | View Fabric Layer 3 (L3) Connections |
fabric.serviceprofile.read | Read Fabric Layer 2 (L2) and Network Edge Service Profiles |
fabric.l3serviceprofile.read | View Fabric Layer 3 (L3) Service Profiles |
fabric.servicetoken.read | View Fabric Service Tokens |
resourcemanager.project.read | View Projects in the resource hierarchy |
fabric.network.read | Get Fabric Network |
internetAccess.service.read | View Equinix Internet Access service instances |
Fabric Connection Manager
Manages Connections, Service tokens and EIA.
Role Permission Value(s) | Permission Description |
---|---|
fabric.l2connection.create | Create Fabric Layer 2 (L2) Connections |
fabric.l2connection.read | View Fabric Layer 2 (L2) Connections |
fabric.l2connection.update | Update Fabric Layer 2 (L2) Connections |
fabric.l2connection.delete | Delete Fabric Layer 2 (L2) Connections |
fabric.servicetoken.create | Create Fabric Service Tokens |
fabric.servicetoken.read | View Fabric Service Tokens |
fabric.servicetoken.delete | Delete Fabric Service Tokens |
fabric.servicetoken.update | Update Fabric Service Tokens |
resourcemanager.project.read | View Projects in the resource hierarchy |
billing.billingaccount.read | View Billing Account |
internetAccess.service.create | Create Equinix Internet Access service instances |
internetAccess.service.read | View Equinix Internet Access service instances |
internetAccess.service.modify | Edit Equinix Internet Access service instances |
internetAccess.service.delete | Delete Equinix Internet Access service instances |
Fabric Service Profile Manager
Manages Service profiles, Connections and EIA.
Role Permission Value(s) | Permission Description |
---|---|
fabric.l2connection.create | Create Fabric Layer 2 (L2) Connections |
fabric.l2connection.read | View Fabric Layer 2 (L2) Connections |
fabric.l2connection.update | Update Fabric Layer 2 (L2) Connections |
fabric.l2connection.delete | Delete Fabric Layer 2 (L2) Connections |
fabric.l2connection.approve | Approve Fabric Layer 2 (L2) Connections |
fabric.serviceprofile.create | Create Fabric Layer 2 (L2) and Network Edge Service Profiles |
fabric.serviceprofile.delete | Delete Fabric Layer 2 (L2) and Network Edge Service Profiles |
fabric.serviceprofile.read | Read Fabric Layer 2 (L2) and Network Edge Service Profiles |
fabric.serviceprofile.update | Update Fabric Layer 2 (L2) and Network Edge Service Profiles |
resourcemanager.project.read | View Projects in the resource hierarchy |
billing.billingaccount.read | View Billing Account |
internetAccess.service.create | Create Equinix Internet Access service instances |
internetAccess.service.read | View Equinix Internet Access service instances |
internetAccess.service.modify | Edit Equinix Internet Access service instances |
internetAccess.service.delete | Delete Equinix Internet Access service instances |
Fabric Port Viewer
View Fabric Ports.
Role Permission Value(s) | Permission Description |
---|---|
fabric.port.read | View Port Sessions |
resourcemanager.project.read | View Projects in the resource hierarchy |
Fabric Port Manager
Manages Fabric Ports
Role Permission Value(s) | Permission Description |
---|---|
fabric.port.read | View Port Sessions |
fabric.port.placeorder | Create Fabric Port Orders |
resourcemanager.project.read | View Projects in the resource hierarchy |
Subscription Key Viewer
Views Subscription Keys
Role Permission Value(s) | Permission Description |
---|---|
fabric.subscriptionkey.view | Permission to view a subscription key |
Fabric Cloud Router
Fabric Cloud Router Viewer
Views Fabric Cloud Router instances.
Role Permission Value(s) | Permission Description |
---|---|
fabric.fabriccloudrouter.read | Get Fabric Cloud Router |
fabric.routefilter.read | Get Route Filter |
Fabric Cloud Router Manager
Creates and manages Fabric Cloud Router instances.
Role Permission Value(s) | Permission Description |
---|---|
fabric.fabriccloudrouter.delete | Delete Fabric Cloud Router |
fabric.fabriccloudrouter.update | Update Fabric Cloud Router |
fabric.fabriccloudrouter.read | Get Fabric Cloud Router |
fabric.fabriccloudrouter.create | Create Fabric Cloud Router |
fabric.routefilter.create | Create Route Filter |
fabric.routefilter.read | Get Route Filter |
fabric.routefilter.update | Update Route Filter |
fabric.routefilter.delete | Delete Route Filter |
resourcemanager.project.read | View Projects in the resource hierarchy |
billing.billingaccount.read | View Billing Account |
Equinix Precision Time (EPT)
EPT Service Admin
Manages EPT service.
Role Permission Value(s) | Permission Description |
---|---|
resourcemanager.org.read | View Orgs in the resource hierarchy |
billing.billingaccount.read | View Billing Accounts in the resource hierarchy |
resourcemanager.project.read | View Projects in the Resource Hierarchy |
ept.service.admin | EPT service admin |
Colocation Dashboard Permissions
These permission types are specifcally found for the Colocation-related products, assets, and services: Administration and IBX Access Services Request, Ordering, Install Base, Billing and Payments, IBX Services Notifications, Smart Hands Support Plan, Colocation Ordering, Virtual Asset Notification Permissions, Power Consumption Report permission, Sustainability Report permission.
Category | Description |
---|---|
Administration and IBX Access Services Request | Allows the user to schedule IBX access requests (Work Visits, Conference Rooms, and Data Center Tours). Allows administrators to manage other Customer Portal user accounts. |
Ordering | Allows the user to place orders in the portal (for Shipments, Cross Connect and Intra-Facility Cables, Network Ports, Smart Hands, Accessories, Power, Trouble Tickets), to view orders by other users, and to view purchase orders for their organization. |
IBX Data Center Access | Allows the user to access IBX data centers and cages/cabinets, to bring guests, and to remove equipment. |
Install Base | Allows the user to view details about their organization's products/assets and purchase orders. Controls access to the Install Base screen, Install Base report, Colocation Assets screen, and Purchase Order Management screen. |
Billing and Payments | Allows the user to view financial records, payment history, and purchase orders for their organization. |
IBX Services Notifications | Allows the user to subscribe to notifications about IBX incidents, network incidents, unannounced shipments, managed services, and IBX policy violations. Also allows the user to view incidents on the Service Insight Dashboard. Important: At least two administrators in each organization must be configured to receive IBX policy violations (i.e., the Can view and subscribe to IBX Policy Violation Notifications permission). |
Internet Exchange Portal | Allows the user to access the Internet Exchange (IX) portal. |
Equinix Internet Access and Equinix Connect | Allows the user to view their Equinix Internet Access and Equinix Connect traffic and network behavior. |
Equinix Fabric and Network Edge | Allows the user to access the Fabric and Network Edge products. |
Smart View | Allows the user to order Equinix Smart View for IBXs, and view Smart View data. |
Remote Network Products | Allows the user to order remote network products for IBXs in a specific region. |
Smart Hands Support Plan | Allows the user to order a Smart Hands support plan and subscribe to notifications for their support plan. |
Colocation Ordering | Allows the user to order Secure Cabinet and Private Cage products online. |
Virtual Asset Notification Permission | Allows the user to view and subscribe to Fabric and Network Edge virtual asset notifications. |
Managed Services Portal | Allows the user to access the Managed Services portal. |
Power Consumption Report | Allows the user to run the Power Consumption Report. |