---
title: BigQuery
slug: /metadata-ui/connectors/database/bigquery
---
Connection Options
- **Host and Port**: This is the BigQuery APIs URL.
- **Username (Optional)**: Specify the User to connect to BigQuery. It should have enough privileges to read all the metadata.
- **Project ID (Optional)**: The BigQuery Project ID is required only if the credentials path is being used instead of values.
- **GCS Credentials**: We support two ways of authenticating to BigQuery:
1. Passing the raw credential values provided by BigQuery. This requires us to provide the following information, all provided by BigQuery:
- Credentials type, e.g., `service_account`
- Project ID
- Private Key ID
- Private Key
- Client Email
- Client ID
- Auth URI, https://accounts.google.com/o/oauth2/auth by defaul
- Token URI, https://oauth2.googleapis.com/token by default
- Authentication Provider X509 Certificate URL, https://www.googleapis.com/oauth2/v1/certs by default
- Client X509 Certificate U
2. Passing a local file path that contains the credentials:
- GCS Credentials Path
- **Enable Policy Tag Import (Optional)**: Mark as 'True' to enable importing policy tags from BigQuery to OpenMetadata.
- **Tag Category Name (Optional)**: If the Tag import is enabled, the name of the Tag Category will be created at OpenMetadata.
- **Database (Optional)**: The database of the data source is an optional parameter, if you would like to restrict the metadata reading to a single database. If left blank, OpenMetadata ingestion attempts to scan all the databases.
- **Connection Options (Optional)**: Enter the details for any additional connection options that can be sent to BigQuery during the connection. These details must be added as Key-Value pairs.
- **Connection Arguments (Optional)**: Enter the details for any additional connection arguments such as security or protocol configs that can be sent to BigQuery during the connection. These details must be added as Key-Value pairs.
- In case you are using Single-Sign-On (SSO) for authentication, add the `authenticator` details in the Connection Arguments as a Key-Value pair as follows: `"authenticator" : "sso_login_url"`
- In case you authenticate with SSO using an external browser popup, then add the `authenticator` details in the Connection Arguments as a Key-Value pair as follows: `"authenticator" : "externalbrowser"`