Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Google Cloud Service Account with 'roles/container.admin'

Tags:

google-cloud-platform

kubernetes

gcloud

google-cloud-iam

I am trying to create a Service Account with 'roles/container.admin' and i get an error saying that the role is not supported for this resource.

$ gcloud iam service-accounts add-iam-policy-binding [email protected] --member='serviceAccount:[email protected]' --role='roles/container.admin'

ERROR: (gcloud.iam.service-accounts.add-iam-policy-binding) INVALID_ARGUMENT: Role roles/container.admin is not supported for this resource.

If I create a Service Account from the CONSOLE UI I can add this role without a problem.

like image 208
Victor Rosales Avatar asked Dec 06 '17 16:12

Victor Rosales

2 Answers

You have to use gcloud projects to add roles for a service account at a project level as shown here.

This works for me:

gcloud projects add-iam-policy-binding PROJECT_ID \ 
--member serviceAccount:[email protected] \
--role roles/container.admin
like image 87
Guillem Xercavins Avatar answered Sep 29 '22 18:09

Guillem Xercavins

I got the same error. You have to give the absolute path to the role.

cloud iam service-accounts add-iam-policy-binding SERVICEACCOUNT --member=SERVICEACCOUNT_EMAIL --role=projects/PROJECTNAME/roles/ROLENAME

like image 36
Vinayak Kaushik Avatar answered Sep 29 '22 20:09

Vinayak Kaushik
Sign in to Comment

Related questions

Setup securityContext inside kubernetes deployment
HAProxy to use DNS from operating system?
List all the kubernetes resources related to a helm deployment or chart
How to create grafana configmap for datasources?
How to identify static pods via kubectl command?
Whats difference between "kubectl auth reconcile" and "kubectl apply" for working with RBAC?
Kubernetes deployments: Editing the 'spec' of a pod's YAML file fails
Kubernetes failed to discover supported resources: getsockopt: connection refused
How to use environment variables in init container args in kubernetes/openshift?
How much RAM can my Kubernetes pod grow to?
Docker for Windows Kubernetes pod gets ImagePullBackOff after creating a new deployment
Helm install or upgrade release failed on Kubernetes cluster: the server could not find the requested resource or UPGRADE FAILED: no deployed releases
Kubernetes "the server doesn't have a resource type deployments"
How to configure kubernetes (microk8s) to use local docker images?
How do I add the x-forwarded-for field to my access logs for the nginx ingress controller?
Kubernetes: connection refused on the endpoint of a working pod
MalformedPolicyDocument when calling the CreatePolicy operation - AWS
Kubernetes job and deployment
unknown field "capabilities" in io.k8s.api.core.v1.PodSecurityContext (running tshark in a container/k8s pod)
kubectl - How to restart a deployment (or all deployment)

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!