yujunjun/OpenMetadata
1
0
Fork 0
mirror of https://github.com/open-metadata/OpenMetadata.git synced 2025-07-13 12:08:47 +00:00
Code Issues Packages Projects Releases Wiki Activity
OpenMetadata/deploy/deploy-on-kubernetes/enable-security/google-sso/create-ingestion-service-account.md
pmbrull 2d12339705 GitBook: [#80] Format Connectors
2022-03-22 11:44:28 -07:00

3.0 KiB
Raw Blame History

description
This is a guide to create ingestion bot service account.

Copy of Create Service Account

Step 1: Create Service-Account

  • Go to your project dashboard

Alt text

  • Click on Credentials available on the left side panel

Alt text

  • Click on Manage service accounts available on the centre-right side.

Alt text

  • Click on CREATE SERVICE ACCOUNT

Alt text

  • Provide the required service account details.

{% hint style="warning" %} Make sure the Service Account Id is ingestion-bot and click on CREATE AND CONTINUE. If you chose a different Service Account Id, add it to the default bots list in Configure OpenMetadata Server {% endhint %}

  • Click on Select a role and give the Owner role. Then click Continue.

Alt text

  • Click DONE

Alt text

  • Now you should see your service account listed.

Alt text

Step 2: Enable Domain-Wide Delegation

  • Click on the service account in the list.

Alt text

  • On the details page, you should see SHOW DOMAIN-WIDE DELEGATION

Alt text

  • Click on it and enable google workspace domain-wide delegation and then click on SAVE

Alt text

How to generate Private-Key/Service-Account JSON file

  • Once done with the above steps, click on KEYS available new to DETAILS

Alt text

  • Click on ADD KEY and then Create a new key

Alt text

  • Select the format. The JSON format is recommended. Then click on CREATE

Alt text

  • The private-key/service-account JSON file will be downloaded