Service Account
Credential information for each cloud providers.
Overall
Using service account page, Users can manage credentials easily for each cloud providers. Multi cloud resources are collected based on this credentials
Listed jobs are available
Adding Service Account
Deletion of Service Account /Changing project
Link to AWS Console
SpaceONE supports providers belows.
AWS
Google Cloud
Microsoft Azure
MEGAZONE
SpaceONE
Adding Service Account
Users can add Service Account by select cloud provider and clicking + Add button
In the user guide, we will focus on AWS`s IAM
Service Account will be easily added by fill out items marked with *.
Base Information
Name : Name of Service Account
Account ID : Root Account ID.(12-digits)
Tag : Additional Service Account`s tag
Credentials
Two types of Service Accounts are available. (aws_access_key, aws_assume_role)
Input parameters for each types.
aws_access_key
Region(Option) : Target regions to be collected. Empty will be considered all regions (Collectors will scan all regions resources).
AWS Access Key(Required) : Access Key from IAM. Read Only policy is strongly recommended.
AWS Secret Key(Required) : Secret key from IAM.
aws_assume_role
Region(Option) : Target regions to be collected. Empty will be considered all regions (Collectors will scan all regions resources).
AWS Access Key(Required) : Access key from IAM to be assumed.
AWS Secret Key(Required) : Secret key from IAM to be assumed.
Role ARN(Required) : Role ARN of assume role from IAM.
Selecting Project
Select the project to which the Service Account will be placed. Collected resources from that Service Account will be belongs to the projects automatically
To create Project. By clicking + Create Project , new tab will be opened to create project.
To check detailed process about creating project, refer to following link.
Select projects you need then click Save button.
Deletion of Service Account /Changing Project
User can delete Service Account or change project that was linked.
Select target Service Account, then click Action > Delete/Change Project
Deletion of Service Account
Enter name of Service Account, then click Confirm
Changing Project
Like picture below, Select project to be changed then click Confirm.
Link to AWS Console
Select target Service Account then, click Action > Console.
User can move to AWS Console. User need to login to AWS Console previously(AWS Console SSO is not available)
Detailed Status Tab
Using detailed status tab, Checking detailed parameter of Service Account or managing members are available.
Detail
Detailed parameter of Service Account.
Tag
By clicking Edit button, Tag for Service Accounts will be added or deleted.
Credentials
Credentials that contains key information can be added/removed
Last updated