Scheduling Backup of an Application using DMaaS requires provider credentials.To get these you need to have a service account. Follow the below-mentioned steps to set up a Service Account and generate a private key for account verification.
Choose your K8s project either by creating a new project or select an existing one.
Next, click on the Navigation Menu on the top left corner of your screen, from the list choose IAM & admin, then select Service Accounts.
Create a service account using CREATE SERVICE ACCOUNT button present on top of the screen. Create a service account page, providing the following details:
- Service account name
- Service account description
NOTE: Service account ID is auto-generated based on Service account name that you filled in.
Clicking on CREATE button generates a Service Account.
Next, you need to grant access to your service account
- For Role, select Owner listed under Project (as shown in the figure).
NOTE:Setting up role as Owner ensures that you get full access to all resources of the project.
You can also grant access to users or groups that need to perform actions using this Service Account. You can specify whether you want to give them general permissions such as deploy jobs, VMs or administrative permissions.
To grant permission you can enter any one of the following:
- Google Account email: email@example.com
- Google Group: firstname.lastname@example.org
- Service account: email@example.com
- G Suite domain: example.com
Next, Click on CREATE KEY button. You will be given two options asking you to select the format of key that ould be downloaded. Select JSON and then click on CREATE.
A JSON file is downloaded in your system and upload this key while scheduling backup operation. Click on DONE to complete the procedure.
The generated key can be used during scheduling of Backup using Director.