yujunjun/OpenMetadata
1
0
Fork 0
mirror of https://github.com/open-metadata/OpenMetadata.git synced 2025-07-19 07:17:38 +00:00
Code Issues Packages Projects Releases Wiki Activity
OpenMetadata/docs/install/enable-security/google-sso/create-ingestion-service-account.md
sureshms 8ce7c879e8 OpenMetadata snapshot release 0.3
2021-08-01 14:27:44 -07:00

3.0 KiB
Raw Blame History

description
This is a guide to create ingestion bot service account.

Create Service Account

Step 1: Create Service-Account

  • Go to your project dashboard

Alt text

  • Click on Credentails available on the left side panel

Alt text

  • Click on Manage service accounts availabe on the centre right side.

Alt text

  • Click on CREATE SERVICE ACCOUNT

Alt text

  • Provide the required service account details.

{% hint style="warning" %} Makesure the Service Account Id as ingestion-bot and click on CREATE AND CONTINUE . If you chose a different Service Account Id, add to the default bots list in Configure OpenMetadata Server {% endhint %}

  • Click on role and give the owner role. Then click CONTINUE

Alt text

  • Click DONE

Alt text

  • Now you should see you service account listed.

Alt text

Step 2: Enable Domain-Wide Delegation

  • Click on the service account in the list.

Alt text

  • On the details page, you should see SHOW DOMAIN-WIDE DELEGATION

Alt text

  • Click on it and enable google workspace domain wide delegation and then click on SAVE

Alt text

How to generate Private-Key/Service-Account Json file

  • Once done with above steps, click on KEYS available new to DETAILS

Alt text

  • Click on ADD KEY and then create new key

Alt text

  • Select the format. Json format is recommended. Then click on CREATE

Alt text

  • The private-key/service-account json file will be downloaded