Configuring a GCP service account for NetBackup Snapshot Manager

To protect the assets in Google Cloud Platform (GCP), NetBackup Snapshot Manager requires permissions to be able to access and perform operations on those cloud assets. You must create a custom role and assign it with the minimum permissions that NetBackup Snapshot Manager requires. You then associate that custom role with the service account that you created for NetBackup Snapshot Manager.

Perform the following steps:

Create a custom IAM role in GCP. While creating the role, add all the permissions that NetBackup Snapshot Manager requires.
See Google Cloud Platform permissions required by NetBackup Snapshot Manager.
For more information on creating and managing the custom roles, see Creating and managing custom roles section of Google documentation.
Create a service account in GCP.
Grant the following roles to the service account:
- The custom IAM role that you created in the earlier step. This is the role that has all the permissions that NetBackup Snapshot Manager requires to access GCP resources.
- The iam.serviceAccountUser role. This enables the service account to connect to the GCP using the service account context.
For more information on creating and managing service accounts, see Creating and managing service accounts section of Google documentation.

Configuring a GCP service account for NetBackup Snapshot Manager

Feedback

Feedback