Reputation: 42444
How can I add roles to service account in GCP?
I am using service account credential to deploy cloud function to GCP. I got a permission error:
Error: googleapi: Error 403: Missing necessary permission iam.serviceAccounts.actAs for $MEMBER on the service account
I open the service account permission in GCP but I can't find where I can add the role to the account.
Below is the screenshot of the service account. There is GRANT ACCESS button but it is used to grant member access to this account. How can I add roles on the role list?
Upvotes: 4
Views: 4227
Answers (2)
Reputation: 713
As of October 2023:
- Go to IAM & Admin -> IAM
- Under "View by principals" you will find all accounts, including service accounts
- Press the edit button on the right side of your service account
- Select "Add another roll" and add the role you want your service account to have
Upvotes: 1
Reputation: 1235
Recapping what John said:
You do not need to grant permissions to the Service Account.
You need to grant permission to user so that they can act as that Service Account.
TL;DR:
On the screen you provided, select Grant access, enter username and pick Service Account User role.
Upvotes: -1
Related Questions
- Adding roles to service accounts on Google Cloud Platform using REST API
- Service Account does not exists on GCP
- How to add a custom role to service account using gcloud
- How can I allow a user to become an actor of a service account in Google Cloud Platform (GCP)?
- How to add GCP role to the grantable list?
- How can I add a role to a GCP Service Account
- Google Cloud Platform (GCP): How to give additional roles to service account?
- How to add GCP IAM roles to Service Account
- How to use GCP Service Account User Role to create resource?
- Adding service account to Cloud Function on GCP