Getting Started with Service Accounts | Scribe

    Getting Started with Service Accounts

    • Hafeez Baig |
    • 17 steps |
    • 2 minutes
    1
    Sign in into the **Google Cloud Platform**
    2
    Type "**Service Accounts**" in the search bar and click on the **Service Accounts** option
    information ordinal icon
    **What are Service Accounts?**\ \ In Google Cloud Platform (GCP), service accounts are used by applications or services to securely interact with GCP resources. They authenticate via credentials and are assigned specific roles and permissions to control access. By operating with defined permissions, service accounts help manage and secure interactions between services and resources, ensuring both authentication and authorization are handled effectively.
    3
    **Service accounts** wizard will open, here you can view all the Service accounts
    4
    Click on the **CREATE SERVICE ACCOUNT** button on the top left side
    5
    **Create service account** wizard will open, give the Name as - "**My-Service-Account-For-Compute**"
    6
    Click on the **CREATE AND CONTINUE** button
    7
    Scroll to the **Select a role** dropdown section, search and click on the **Compute Admin** option **Note:** You can select any role as per your requirements.
    information ordinal icon
    **What is Compute Admin?** \ \ In Google Cloud Platform (GCP), the "Compute Admin" role is an IAM role that grants full control over Compute Engine resources. It allows users or service accounts to create, modify, and delete virtual machine instances, manage disks and networks, and access VM serial ports for troubleshooting. This role is intended for administrators who need comprehensive access to manage and maintain compute resources within a project.
    8
    Click on the **ADD ANOTHER ROLE** button, if you want to add multiple roles for the Service account
    9
    Search and click on the **Storage Object Admin** option from the dropdown **Note:** You can select any role as per your requirements.
    information ordinal icon
    **What is Storage Object Admin?**\ \ In Google Cloud Platform (GCP), the "Storage Object Admin" role is an Identity and Access Management (IAM) role that provides full control over objects within Google Cloud Storage buckets. This role allows users or service accounts to create, read, update, and delete objects in any bucket in the project. However, it does not grant permissions to create or delete buckets themselves. This role is ideal for managing data stored in Cloud Storage at the object level while leaving bucket management to other roles.
    10
    Click on the **CONTINUE** button
    11
    Click on the **Done** button
    information ordinal icon
    Congratulations! you have successfully created a Service account
    12
    To assign a **Service account** to a VM, type "**VM instances**" in the search bar and click on the **VM instances** option
    information ordinal icon
    **What are VM instances?**\ \ In Google Cloud Platform (GCP), VM instances are virtual machines running on Compute Engine. These instances provide scalable and customizable computing resources, allowing you to run applications, deploy services, and manage workloads. VM instances can be configured with different CPU, memory, and storage options, and you can choose from various operating systems. They support automated scaling, load balancing, and integration with other GCP services, making them versatile for various use cases such as hosting websites, running databases, and performing data analysis.
    13
    **VM instances** wizard will open, click on the **CREATE INSTANCE** button
    14
    Give the Name as - "**instance-2**"
    15
    Scroll to the **Identity and API access** section