yujunjun/OpenMetadata
1
0
Fork 0
mirror of https://github.com/open-metadata/OpenMetadata.git synced 2025-07-31 21:27:58 +00:00
Code Issues Packages Projects Releases Wiki Activity
OpenMetadata/deploy/deploy-on-kubernetes/enable-security/google-sso/create-ingestion-service-account.md
Sriharsha Chintalapani 876ac24e44
Docs (#3276) 
* GitBook: [#50] BigQuery, Glue, MSSQL, Postgres, Redshift, Snowflake - V2

* GitBook: [#62] No subject

* GitBook: [#63] No subject

* GitBook: [#64] Beta

* GitBook: [#65] Make Harsha's requested changes to connectors section organization

* GitBook: [#66] Kerberos authentication with Hive

* GitBook: [#67] Fix procedure overview links

* GitBook: [#68] Fix procedure overview links

* GitBook: [#69] correct step reference

* GitBook: [#70] Add Kerberos connection troubleshooting

* updated json schema and schema docs (#3219)

* updated json schema and schema docs

* added glossay to readme

* GitBook: [#72] Metrics & Tests

Co-authored-by: Parth Panchal <parth.panchal@deuexsolutions.com>
Co-authored-by: Shilpa V <vernekar.shilpa@gmail.com>
Co-authored-by: Shannon Bradshaw <shannon.bradshaw@arrikto.com>
Co-authored-by: parthp2107 <83201188+parthp2107@users.noreply.github.com>
Co-authored-by: pmbrull <peremiquelbrull@gmail.com>
2022-03-08 08:13:37 -08:00

3.0 KiB
Raw Blame History

description
This is a guide to create ingestion bot service account.

Copy of Create Service Account

Step 1: Create Service-Account

  • Go to your project dashboard

Alt text

  • Click on Credentials available on the left side panel

Alt text

  • Click on Manage service accounts available on the centre-right side.

Alt text

  • Click on CREATE SERVICE ACCOUNT

Alt text

  • Provide the required service account details.

{% hint style="warning" %} Make sure the Service Account Id is ingestion-bot and click on CREATE AND CONTINUE. If you chose a different Service Account Id, add it to the default bots list in Configure OpenMetadata Server {% endhint %}

  • Click on Select a role and give the Owner role. Then click Continue.

Alt text

  • Click DONE

Alt text

  • Now you should see your service account listed.

Alt text

Step 2: Enable Domain-Wide Delegation

  • Click on the service account in the list.

Alt text

  • On the details page, you should see SHOW DOMAIN-WIDE DELEGATION

Alt text

  • Click on it and enable google workspace domain-wide delegation and then click on SAVE

Alt text

How to generate Private-Key/Service-Account JSON file

  • Once done with the above steps, click on KEYS available new to DETAILS

Alt text

  • Click on ADD KEY and then Create a new key

Alt text

  • Select the format. The JSON format is recommended. Then click on CREATE

Alt text

  • The private-key/service-account JSON file will be downloaded