SpaceONE Documentation
Service Guide
Admin Guide
Asset Management
Service Account Management

Service Account Management

In Admin mode’s service accounts, you can create and manage top-level service accounts for each cloud provider.
You can also quickly create workspaces and projects through Trusted Account Auto Synchronization.

ℹ️
Service accounts in Admin mode are almost identical to Workspace mode. This document focuses on features only available in Admin mode.
For detailed information about Service Accounts, please refer to this document.

Creating a Trusted Account

Navigate to Trusted Account Creation Page

On the [Asset Inventory > Service Account] page, select a provider and click the [Create] button on the right.

Configure Basic Information

Enter the basic information.

Configure Authentication Key

Set up the authentication key. This information can be entered through input fields or as JSON.

ℹ️
There may be more than one authentication key setting depending on the case.

Configure Auto Synchronization (Optional)

When you enable Auto Sync, you can automatically map the provider’s hierarchical structure to the SpaceONE system.
This feature ensures synchronization to maintain the latest status in SpaceONE whenever the account structure changes.

Mapping Methods

You can set up how to map with SpaceONE’s workspaces and project groups. There are two mapping options available:

  • Workspace Mapping: This method connects the cloud account hierarchy to SpaceONE workspaces. The hierarchy nomenclature varies slightly depending on the provider.

    • Top-level Unit → Multiple Workspaces: Maps top-level units (e.g., AWS Organization, Azure Tenant, Google Cloud Organization) to multiple SpaceONE workspaces.
    • Entire Organization → Single Workspace: Maps the entire organization to a single workspace. When selecting this option, you must specify a particular workspace.

  • Project Group Mapping: This method automatically creates project groups within a workspace.

    • Sub-organization Unit → Project Group: Automatically maps sub-organization units from the cloud account hierarchy to SpaceONE project groups. This allows for more detailed management units while maintaining the hierarchy.
    • Exclude Project Group Mapping: Does not map the cloud account hierarchy to project groups. All projects are created individually.

Complete Creation and Start Synchronization (Optional)

After completion, you can proceed with auto synchronization.

Viewing and Managing Trusted Accounts

View Trusted Account

Click on a specific Trusted Account in the list on the [Asset Inventory > Service Account] page to go to the details page.

Check the details and click the [Edit] button in the upper right corner of each section to modify.

Check Connected General Account List

When auto synchronization is set up, the hierarchical structure of the cloud provider is automatically reflected.
In addition to the scheduled auto sync time, you can immediately update accounts by clicking the [Sync] button.

Check and Modify Auto Synchronization

You can check and modify auto sync activation status, mapping methods, and schedules.

Check All Resources