This article explains how to set up a service account in Google Cloud Platform. Ensure you have the necessary permissions in Google Cloud.
Configure Google Billing Account permissions
For Cloudaware to be able to collect the list of Google Billing Accounts, assign the role 'Billing Account Viewer' to the service account* that has access to billing accounts in question.
1. Go to Billing.
2. Go to the tab 'My Billing Accounts'. Check the box near the billing account. Click Add Principal on the right to manage permissions.
3. Select the service account* and assign the role Billing Account Viewer → Save.
*Note that the service account should be added to Cloudaware.
Create a custom role
A custom role is necessary if you are going to use backups and labels.
Go to IAM & admin, select "Roles" and click +Create Role.
Add the name and the description of the custom role. Set 'Role launch stage' as General Availability and click + Add Permissions.
Select the following permissions:
For backups | For labels |
---|---|
|
|
Assign the custom role to the service account you have just created (IAM & admin → IAM → select the service account).