Support keyless Google Cloud service account integration

hbakamatsu · January 22, 2025, 1:42am

To set up Grafana Cloud for Google Cloud, we need to create a service account and generate a service account key
However, managing keys can lead to security risks, as they might get exposed and leaked. Nowadays, many SaaS providers support keyless service account integration. In this case, the SaaS provider prepares their own service account and provides its email to the customer, who then adds the necessary permissions.

Google now recommends not using service account keys by several security reasons. Could you please assist with keyless service account integration for Google Cloud using this method?

Thank you!

subtitleedit · January 22, 2025, 4:41am

Integrating keyless Google Cloud service accounts enhances security by eliminating the need for service account keys. This method uses workload identity federation, allowing applications to authenticate seamlessly using Google-managed identities. It reduces the risk of key exposure and simplifies credential management. For related solutions, check SubtitleEdit.

Topic		Replies	Views
How can i integrate google oauth with my grafana cloud instance?	1	406	June 22, 2020
Integrating Grafana with Cloud Computing Services Grafana grafana-cloud	1	869	September 14, 2023
Integration with GCS bucket Configuration	1	2025	July 16, 2021
Grafana OAuth setup for a webapp for users Authentication alerting	2	50	August 23, 2024
Google oauth clarification Authentication	13	629	April 3, 2024

Support keyless Google Cloud service account integration

Related topics