How do I ensure that my service account keys are not compromised?

0 votes
What security measures should I follow to ensure that the private keys of my service accounts aren't compromised?
Oct 30 in GCP by anonymous
• 4,330 points
16 views

1 answer to this question.

0 votes

If you delete a key, your application will no longer be able to access Cloud Platform resources using that key.

A security best practice is to rotate your service account keys regularly. You can rotate a key by creating a new key, switching applications to use the new key and then deleting old key

Use the serviceAccount.keys.create()method and serviceAccount.keys.delete() method together to automate the rotation.

answered Oct 30 by Sirajul
• 40,990 points

Related Questions In GCP

0 votes
1 answer
+3 votes
11 answers

How do I delete my Google Cloud Platform Account?

How do I delete me cloud and ...READ MORE

answered Jan 18 in GCP by dodge123@yahoo.com
18,790 views
0 votes
1 answer
0 votes
1 answer
0 votes
1 answer
0 votes
1 answer
0 votes
1 answer

How do I ensure that all the VM instances created in my organisation are shielded VM's?

You can set the constraints/compute.requireShieldedVm organization policy constraint to True to require ...READ MORE

answered Oct 22 in GCP by Sirajul
• 40,990 points
30 views