stackoom
  简体   繁体   中英

How to add GCP IAM roles to Service Account

 原文  2020-08-28 13:39:41       docker/ google-cloud-platform/ docker-swarm/ docker-machine/ google-iam

Question

I am trying to create a docker swarm node on a VM instance on GCP using docker-machine .

docker-machine create swarm-node -d google --google-machine-type e2-standard-2 --google-zone europe-north1-a --google-project myproject-name

I use a GCP Service Account in localhost docker-machine CLI.

export GOOGLE_APPLICATION_CREDENTIALS="/home/my-name-here/.gcp/path-to-my-service-account-keyfile.json"

But I got this error:

Error with pre-create check: "Project with ID \"myproject-name\" not found. googleapi: Error 403: Required 'compute.projects.get' permission for 'projects/myproject-name', forbidden"

How can I add compute.projects.get GCP IAM access to the GCP Service Account?

1 answers

solution1
 2  2020-08-28 13:39:41

Finally I figured out, as explained at: https://cloud.google.com/iam/docs/granting-changing-revoking-access

  1. In the Cloud Console, go to the IAM page
  2. Click Add.
  3. Enter the service-account email address (displayed in service-account dashboard).
  4. Select a role, in this case Compute Admin
  5. Click Save.

Et voilà

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to use GCP service account json files in Docker Is there a way to run each service in Docker swarm to run with different IAM roles How Can I Deploy A GCP Function from The Command Line WITH Multiple Secrets AND Only Runable Through 1 Service Account Use an IAM service account with official google/cloud-sdk image Error when assigning the Storage Admin IAM role to my service account GCP Kubernetes not using service account for pulling docker images Deploying to Cloud Run with a custom service account failed with iam.serviceaccounts.actAs error Docker - Error: Cannot perform an interactive login from a non TTY device (GCP Service Account) Jenkins - gcp instance - cant find gcloud-service-account-secret-key.json Permission error in GCP when creating a new compute instance but service account does have permissions
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM