Re: GCE Deployment Manager - default service account not found
924 views
Skip to first unread message
Message has been deleted
Carlos (Cloud Platform Support)
Jun 14, 2017, 3:19:26 PM6/14/17
to gce-discussion
Hi Thomas,
As explained in this document, when your project is created some Google managed accounts are automatically added.
They should be listed by going to Cloud Console -> IAM & Admin-> IAM. There you can verify that they have the “Editor Role”. The accounts are created using the following format:
[PROJECT_NUMBER]-com...@developer.gserviceaccount.com
[PROJECT_NUMBER]@cloudservices.gserviceaccount.com
Additionally by going to Cloud Console -> IAM & Admin -> Service accounts, it should list [PROJECT_NUMBER]-com...@developer.gserviceaccount.com
as “default service account”.
If the accounts do not appears there, you can try the following:
1) If you do not have GCE resources running in the project, the easiest path is to disable and re-enable the Compute Engine API.
2) If you have GCE resources, you can add the accounts to your project in the IAM console. They must be assigned the “Editor” Role.
[PROJECT_NUMBER]-com...@developer.gserviceaccount.com
[PROJECT_NUMBER]@cloudservices.gserviceaccount.com
As explained in this document, when your project is created some Google managed accounts are automatically added.
They should be listed by going to Cloud Console -> IAM & Admin-> IAM. There you can verify that they have the “Editor Role”. The accounts are created using the following format:
[PROJECT_NUMBER]-com...@developer.gserviceaccount.com
[PROJECT_NUMBER]@cloudservices.gserviceaccount.com
Additionally by going to Cloud Console -> IAM & Admin -> Service accounts, it should list [PROJECT_NUMBER]-com...@developer.gserviceaccount.com
as “default service account”.
If the accounts do not appears there, you can try the following:
1) If you do not have GCE resources running in the project, the easiest path is to disable and re-enable the Compute Engine API.
2) If you have GCE resources, you can add the accounts to your project in the IAM console. They must be assigned the “Editor” Role.
[PROJECT_NUMBER]-com...@developer.gserviceaccount.com
[PROJECT_NUMBER]@cloudservices.gserviceaccount.com
Then you must make sure that the Console (Cloud Console-> IAM & Admin-> Service Accounts) lists [PROJECT_NUMBER]-com...@developer.gserviceaccount.com as default service account. You can always set the compute engine default account using Cloud SDK. The name the account uses should not matter, as long as it is set as default service account.
Message has been deleted
Carlos (Cloud Platform Support)
Jun 15, 2017, 1:33:25 PM6/15/17
to gce-discussion
Hi Thomas,
Thank you for your reply. I am doing further investigation on my side.
In the meantime, I suggest deleting from your last post your Project ID. Please also sent me via a private message the output obtained while running " gcloud iam service-accounts list"
tim shores
Sep 21, 2017, 10:13:44 PM9/21/17
to gce-discussion
Thomas, I also had this problem. I found that when I generated a json key for the default service account (Cloud Console > IAM & Admin > Service accounts: [PROJECT_NUMBER]-com...@developer.gserviceaccount.com as mentioned by Carlos) the error message was resolved, and I was able to deploy.
as “default service account”
On Wednesday, June 14, 2017 at 11:51:27 AM UTC-4, Thomas Buida wrote:
as “default service account”
On Wednesday, June 14, 2017 at 11:51:27 AM UTC-4, Thomas Buida wrote:
Trying to use the cloud launcher but getting this error:You must have a valid default service account in order to create a deployment. Contact support for help restoring the account.Please let me know how I can restore the account.
Rishabh Kesarwani
Nov 30, 2017, 9:06:15 AM11/30/17
to gce-discussion
Hey Carlos! I'm also encountering the same error. I already have an instance running on this project. I created the previous instance using Cloud Launcher. And this instance is using a custom service account. And I don't have a default service account. Also, I'm unable to create a default service account with the name format as written in your aforementioned post. Please help me. Reply as soon as possible.
Reply all
Reply to author
Forward
0 new messages