Overview of Creating a GCP Controller Service Account

The Multicloud Defense Controller uses the controller service account to access and manage resources in your GCP project. You must create the account and generate a key. The key is added to the controller as part of Account onboarding to the controller.

Procedure


Step 1

In the Security Cloud Control platform menu, choose Products > Multicloud Defense .

Step 2

In your GCP dashboard, open IAM in your GCP project.

Step 3

Click Service Accounts.

Step 4

Create Service Account.

Step 5

Provide a name and ID, such as multicloud-firewall, and click Create.

Step 6

Add Compute Admin and Service Account User roles.

Step 7

Click Continue.

Step 8

Click Done.

Step 9

Click on the newly created account, scroll down to Keys and in the dropdown for Add Key and select Create New Key.

Step 10

Choose JSON (default option) and click Create.

Step 11

A file is downloaded to your computer. Save this file to your local drive.