English

Service Account

Credential information for each cloud providers.

Overall

Using service account page, Users can manage credentials easily for each cloud providers. Multi cloud resources are collected based on this credentials

Listed jobs are available

  • Adding Service Account

  • Deletion of Service Account /Changing project

  • Link to AWS Console

SpaceONE supports providers belows.

  • AWS

  • Google Cloud

  • Microsoft Azure

  • MEGAZONE

  • SpaceONE

Adding Service Account

Users can add Service Account by select cloud provider and clicking + Add button

In the user guide, we will focus on AWS`s IAM

Service Account will be easily added by fill out items marked with *.

Base Information

  • Name : Name of Service Account

  • Account ID : Root Account ID.(12-digits)

  • Tag : Additional Service Account`s tag

Credentials

Two types of Service Accounts are available. (aws_access_key, aws_assume_role)

Input parameters for each types.

aws_access_key

  • Region(Option) : Target regions to be collected. Empty will be considered all regions (Collectors will scan all regions resources).

  • AWS Access Key(Required) : Access Key from IAM. Read Only policy is strongly recommended.

  • AWS Secret Key(Required) : Secret key from IAM.

aws_assume_role

  • Region(Option) : Target regions to be collected. Empty will be considered all regions (Collectors will scan all regions resources).

  • AWS Access Key(Required) : Access key from IAM to be assumed.

  • AWS Secret Key(Required) : Secret key from IAM to be assumed.

  • Role ARN(Required) : Role ARN of assume role from IAM.

Selecting Project

Select the project to which the Service Account will be placed. Collected resources from that Service Account will be belongs to the projects automatically

  • To create Project. By clicking + Create Project , new tab will be opened to create project.

  • To check detailed process about creating project, refer to following link.

  • Select projects you need then click Save button.

Deletion of Service Account /Changing Project

User can delete Service Account or change project that was linked.

Select target Service Account, then click Action > Delete/Change Project

Deletion of Service Account

Enter name of Service Account, then click Confirm

Changing Project

Like picture below, Select project to be changed then click Confirm.

Link to AWS Console

Select target Service Account then, click Action > Console.

User can move to AWS Console. User need to login to AWS Console previously(AWS Console SSO is not available)

Detailed Status Tab

Using detailed status tab, Checking detailed parameter of Service Account or managing members are available.

Detail

Detailed parameter of Service Account.

Tag

By clicking Edit button, Tag for Service Accounts will be added or deleted.

Credentials

Credentials that contains key information can be added/removed

PreviousCloudServiceNext(AWS) Service Account Policy Management

Last updated