Granting Permissions in Google Cloud Platform (GCP)

Outlines the required roles and step-by-step instructions for granting permissions in Google Cloud Platform (GCP) for service account

Need help with something?

Talk to data expert

Required Roles

The following roles must be assigned:

Service Account Admin → roles/iam.serviceAccountAdmin

Service Account Key Adminroles/iam.serviceAccountKeyAdmin

Service Usage Adminroles/serviceusage.serviceUsageAdmin

BigQuery Adminroles/bigquery.admin

BigQuery Data Ownerroles/bigquery.dataOwner

BigQuery Job Userroles/bigquery.jobUser

BigQuery Resource Editorroles/bigquery.resourceEditor

Steps to Grant Permissions

Log in to GCP Console

Navigate to https://console.cloud.google.com

Go to IAM & Admin

From the left-hand menu, select IAM & Admin → IAM

Select the Project

Use the project dropdown at the top to select the correct project.

Add a New Member

Click Add at the top of the IAM page.

Enter Service Account Email

In the New members field, enter: reports@sarasanalytics.com

Assign Roles

In the Roles dropdown, assign the following (one by one):

Service Account Admin

Service Account Key Admin

Service Usage Admin

BigQuery Admin

BigQuery Data Owner

BigQuery Job User

BigQuery Resource Editor

Save Changes

Click Save to confirm.


Once done, the service account will have all the required permissions to access and manage BigQuery resources.