TPU VM access Cloud Storage forbidden when writing files and training model

[Daisy Wang]

I would like to save my result to storage bucket when running python code on the tpu-vm, but I always failed. I guess maybe the permission is wrong. But I try to modify the IAM and ACL, it didn't work. Here is the error link. https://stackoverflow.com/questions/71603984/tpu-vm-access-cloud-storage-403-forbidden-when-writing-files

I might be stuck in an error loop, I even tried switching to run the python code under the account I created the project, instead of the default service account on tpu-vm, but it still failed. I also tried setting allUsers and granting storage admin permissions, but it still fails.

Here are some settings I make.

1. project iam access

2. bucket iam access

3. default acl access

Cloud Storage provides two types of IAM unified access and ACL fine-grained access. Which access permission should I enable, and what role should I set for which account so that my tpu-vm can access Cloud Storage?
Do I need to configure any environment variables before executing the python code to train the model?
What command should I use or what should I do in the console? I just want to be able to write the results to Storage.

Looking for your reply. Thanks!

[George (Cloud Platform Support)]

Hello, 

You'll need to grant your service account the permissions listed on the "IAM permissions for Cloud Storage" page.