This article explains how to set up a service account in Google Cloud Platform. Ensure you have the necessary permissions in Google Cloud.
Create Service Account
1. In the Google console, go to IAM & admin.
2. Go to Service accounts. Click Create Service Account*.
If you already have a service account dedicated to Cloudaware, proceed to step 4.
3. Enter the name for the service account, in this guide cloudaware-service-account. Click Create and continue.
4. Assign the role Project Viewer to the service account. Click Done.
NOTE: If you use Google Organizations, assign the role 'Viewer' to the service account for Cloudaware to consume your Organization data. Assign the following roles to the service account created earlier:
Organization Role Viewer
Folder Viewer
Organization Viewer
Organization Policy Viewer
Project Viewer
Click Save.
Assign the 'Project Viewer' role on the organization level for Cloudaware to automatically add and collect Google Projects within a Google Organization:
Create Service Account Key
Select the service account.
Click +Create key. Select 'JSON' → Create.
A .json file will be automatically downloaded by the browser.
Enable Google APIs for Google Project
Go back to the Organization level.
1. Select the project in question → APIs & Services.
2. Click +ENABLE APIS AND SERVICES.
3. Using the search bar, locate and enable:
Compute Engine API
Identity and Access Management (IAM) API
Cloud Resource Manager API
Kubernetes Engine API (learn more)
Cloud Billing API (learn more)
The service account key is required for setup in Cloudaware.