GCP Service Account¶
This guide demonstrates a basic GCP driver setup: a single inventory namespace is populated with servers having been authorised via a GCP service account.
For further configuration details, please refer to the documentation.
. ├── .gauth │ └── service-account.json └── bcome └── networks.yml
The networks.yml file contains your network configuration, whilst ‘service-account.json’ contains your GCP service account credentials.
For further information on linking GCP accounts, see GCP Authorization.
The networks.yml configuration is simple:
--- wbz: type: inventory description: All my servers in a single namespace network: type: gcp project: wbznet zone: europe-west1-b authentication_scheme: service_account service_account_credentials: service-account.json service_scopes: - https://www.googleapis.com/auth/compute.readonly - https://www.googleapis.com/auth/cloud-platform filters: status:running ssh_settings: proxy: - host_lookup: by_bcome_namespace namespace: bastion
For a full list of namespace attributes see namespace attributes.