chore: updated the IAM permissions

BabithaPadiri · BabithaPadiri · commit 4d4dae486a7a · 2025-11-13T13:54:44.000+05:30
diff --git a/README.md b/README.md
@@ -41,16 +41,60 @@ Three solutions are offered:
 You need the following permissions to run this module.
 
 - Account Management
-    - **Resource Group** service
-        - `Viewer` platform access
+    - **All Account Management services** service
+        - `Administrator` platform access
     - IAM Services
-        - **Workspace for Power Virtual Server** service
-        - **Power Virtual Server** service
-            - `Editor` platform access
+        - **IAM Identity Service** service
+            - `Administrator` platform access
+        - **All Identity and Access enabled services** service
+            -`Manager` service access
+            -`Administrator` platform access
+    - Resource Management
+        - **Resource Management** service
+            -`Administrator` platform access
+    - Networking Services
         - **VPC Infrastructure Services** service
-            - `Editor` platform access
+            -`manager` service access
+            -`VPN Client` , `Administrator` ,`Share Broker` , `Share Remote Account Accessor` platform access
         - **Transit Gateway** service
-            - `Editor` platform access
+            -`manager` service access
+            -`Editor` platform access
+    - Compute Services
+        - **Power Virtual Server Workspace** service
+            -`Manager` service access
+            -`Editor` platform access
+    - Security Services
+        - **Key Protect** service
+            -`Manager` service access
+            -`Administrator` platform access
+        - **Secrets Manager** service
+            -`Manager` service access
+            -`Administrator` platform access
+        - **Hyper Protect Crypto Services** service
+            -`Manager` service access
+            -`Administrator` platform access
+        - **Security and Compliance Center Workload Protection** service
+            -`Manager` service access
+            -`Administrator` platform access
+    - Monitoring & Management
+        - **Cloud Monitoring** service
+            -`Manager` service access
+            -`Administrator` platform access
+        - **Monitoring** service
+            -`Administrator` platform access
+        - **Activity Tracker Event Routing** service
+            -`Editor` platform access
+    - Storage Services
+        - **Cloud Object Storage** service
+            -`Manager` service access
+            -`Administrator` platform access
+        - **Container Registry** service
+            -`Reader` service access
+            -`Viewer` platform access
+    - Application Services
+        - **App Configuration service** service
+            -`Manager` service access
+            -`Administrator` platform access
 
 <!-- BEGIN CONTRIBUTING HOOK -->
 ## Contributing
diff --git a/ibm_catalog.json b/ibm_catalog.json
@@ -396,59 +396,119 @@
           ],
           "iam_permissions": [
             {
+              "service_name": "cloud-monitoring",
               "role_crns": [
+                "crn:v1:bluemix:public:iam::::role:Administrator",
                 "crn:v1:bluemix:public:iam::::serviceRole:Manager"
-              ],
-              "service_name": "appid"
+              ]
             },
             {
+              "service_name": "account-management",
               "role_crns": [
-                "crn:v1:bluemix:public:iam::::serviceRole:Manager"
-              ],
-              "service_name": "cloud-object-storage"
+                "crn:v1:bluemix:public:iam::::role:Administrator"
+              ]
             },
             {
+              "service_name": "kms",
               "role_crns": [
+                "crn:v1:bluemix:public:iam::::role:Administrator",
                 "crn:v1:bluemix:public:iam::::serviceRole:Manager"
-              ],
-              "service_name": "hs-crypto"
+              ]
             },
             {
+              "service_name": "resource-controller",
               "role_crns": [
                 "crn:v1:bluemix:public:iam::::role:Administrator"
-              ],
-              "service_name": "iam-identity"
+              ]
             },
             {
+              "service_name": "iam-identity",
               "role_crns": [
-                "crn:v1:bluemix:public:iam::::serviceRole:Manager"
-              ],
-              "service_name": "kms"
+                "crn:v1:bluemix:public:iam::::role:Administrator"
+              ]
+            },
+            {
+              "service_name": "monitoring",
+              "role_crns": [
+                "crn:v1:bluemix:public:iam::::role:Administrator"
+              ]
+            },
+            {
+              "service_name": "activity-tracker",
+              "role_crns": [
+                "crn:v1:bluemix:public:iam::::role:Editor"
+              ]
             },
             {
+              "service_name": "app-configuration",
               "role_crns": [
                 "crn:v1:bluemix:public:iam::::serviceRole:Manager",
                 "crn:v1:bluemix:public:iam::::role:Administrator"
-              ],
-              "service_name": "is.vpc"
+              ]
             },
             {
+              "service_name": "secrets-manager",
               "role_crns": [
+                "crn:v1:bluemix:public:iam::::serviceRole:Manager",
+                "crn:v1:bluemix:public:iam::::role:Administrator"
+              ]
+            },
+            {
+              "service_name": "security-compliance",
+              "role_crns": [
+                "crn:v1:bluemix:public:iam::::serviceRole:Manager",
+                "crn:v1:bluemix:public:iam::::role:Administrator"
+              ]
+            },
+            {
+              "service_name": "power-iaas",
+              "role_crns": [
+                "crn:v1:bluemix:public:iam::::serviceRole:Manager",
                 "crn:v1:bluemix:public:iam::::role:Editor"
-              ],
-              "service_name": "is.vpc"
+              ]
             },
             {
+              "service_name": "is.vpc",
               "role_crns": [
+                "crn:v1:bluemix:public:iam::::serviceRole:Manager",
+                "crn:v1:bluemix:public:iam::::role:Administrator",
                 "crn:v1:bluemix:public:iam::::role:Editor"
-              ],
-              "service_name": "transit.gateway"
+              ]
             },
             {
+              "service_name": "hs-crypto",
               "role_crns": [
-                "crn:v1:bluemix:public:iam::::serviceRole:Manager"
-              ],
-              "service_name": "power-iaas"
+                "crn:v1:bluemix:public:iam::::serviceRole:Manager",
+                "crn:v1:bluemix:public:iam::::role:Administrator"
+              ]
+            },
+            {
+              "service_name": "iam",
+              "role_crns": [
+                "crn:v1:bluemix:public:iam::::serviceRole:Manager",
+                "crn:v1:bluemix:public:iam::::role:Administrator"
+              ]
+            },
+            {
+              "service_name": "transit.gateway",
+              "role_crns": [
+                "crn:v1:bluemix:public:iam::::serviceRole:Manager",
+                "crn:v1:bluemix:public:iam::::role:Editor"
+              ]
+            },
+            {
+              "service_name": "container-registry",
+              "role_crns": [
+                "crn:v1:bluemix:public:iam::::role:Reader",
+                "crn:v1:bluemix:public:iam::::role:Viewer"
+              ]
+            },
+            {
+              "service_name": "cloud-object-storage",
+              "role_crns": [
+                "crn:v1:bluemix:public:iam::::serviceRole:Manager",
+                "crn:v1:bluemix:public:iam::::role:Administrator"
+              ]
             }
           ],
           "architecture": {
