Setting up permissions in GCP

To use Policy Management in a GCP account, additional permissions are required within the GCP Account. Please follow these steps: 1. Download the Terraform code for creating a service account key file from the link below:

5KB

OpsNow_Policy_Management.tf

Open

2. Access the Cloud Shell of the account you want to register using the link below. Make sure to log in with an account that has Owner permissions. Access Cloud Shell

Select [Upload] from the menu in the upper right corner.

Click [Choose file] and select the Terraform file you downloaded in Step 1.

Click the [Upload] button.

A file upload notification will appear in the bottom right corner.

Run the following command in Cloud Shell to create the necessary resources and generate a service account key file.

terraform init
terraform apply -var="service_account_email=<SERVICE_ACCOUNT_EMAIL>"

The service account email must match the email associated with the service account linked to OpsNow.

'SERVICE_ACCOUNT_EMAIL' can be found by navigating to "IAM & Admin" > "IAM" in the left menu, then selecting the project. The email address of the corresponding service account will be visible there.

When you run the terraform apply command, click the [Authorize] button in the Cloud Shell authorization pop-up message.

PreviousSettings NextFinOps KPIs

Last updated 1 year ago