How do I ensure that my service account keys are not compromised?

0 votes
What security measures should I follow to ensure that the private keys of my service accounts aren't compromised?
Oct 30, 2019 in GCP by anonymous
• 5,050 points
27 views

1 answer to this question.

0 votes

If you delete a key, your application will no longer be able to access Cloud Platform resources using that key.

A security best practice is to rotate your service account keys regularly. You can rotate a key by creating a new key, switching applications to use the new key and then deleting old key

Use the serviceAccount.keys.create()method and serviceAccount.keys.delete() method together to automate the rotation.

answered Oct 30, 2019 by Sirajul
• 46,080 points

Related Questions In GCP

0 votes
1 answer

How do I ensure that my cloud storage data has max availability?

Consider storing your data in a multi-regional ...READ MORE

answered Nov 18, 2019 in GCP by Sirajul
• 46,080 points
31 views
+3 votes
11 answers

How do I delete my Google Cloud Platform Account?

How do I delete me cloud and ...READ MORE

answered Jan 18, 2019 in GCP by dodge123@yahoo.com
22,977 views
0 votes
1 answer
0 votes
1 answer
0 votes
1 answer
0 votes
1 answer

create a service account on Gcloud.

To create a service account, at minimum ...READ MORE

answered Oct 30, 2019 in GCP by Sirajul
• 46,080 points
31 views
0 votes
1 answer

How do I ensure that all the VM instances created in my organisation are shielded VM's?

You can set the constraints/compute.requireShieldedVm organization policy constraint to True to require ...READ MORE

answered Oct 22, 2019 in GCP by Sirajul
• 46,080 points
43 views