Creating and Managing Service Accounts

Service accounts are specialized user accounts designed for system integrations, automations, and non-human interactions. These accounts are typically assigned specific permissions to perform tasks like event creation, data synchronization, or application communication. This guide explains how to create and configure a service account, ensuring secure and efficient integration with EarthRanger.

 

Step 1: Create an Appropriate Permission Set

To ensure the service account has the correct level of access, you may need to create a dedicated permission set.

  1. Access the Permission Sets Page
    1. Log in to the Earthranger Admin page
    2. Navigate to User Accounts > Permission Sets
  2. Check for an existing Permission Set
    1. Search for a permission set that fits the needs of the integration or application.
    2. If a suitable permission set exists, proceed to the next step.
  3. Add a New Permission Set (If necessary)
    1. Click Add Permission Set in the top-right corner.
    2. Enter a descriptive name for the permission set (e.g., "Integration Service Account Permissions").
  4. Assign Permissions
    In the Permissions section, assign only the permissions needed for the service account to function. 
    Typical permissions might include:
    1. Can add event
    2. Can add event category
    3. Can add event type
    4. Can add message
    5. Can add observation
    6. Can add source
    7. Can add source provider
    8. Can add subject
    9. Can change event
    10. Can change event category
    11. Can change event type
    12. Can change message
    13. Can change observation
    14. Can change source
    15. Can change source provider
    16. Can change subject
    17. Can view event
    18. Can view event category
    19. Can view event type
    20. Can view message
    21. Can view observation
    22. Can view source
    23. Can view source provider
    24. Can view subject
  5. Save the Permission Set
    1. Click Save to finalize the configuration

 

Step 2: Create a Service Account

Once a permission set is ready, create the service account and assign the appropriate permissions

  1. Access the Users page
    1. Navigate to User Accounts > Users in the Earthranger Admin page.
  2. Check for an Existing Service Account
    1. Search for an existing service account related to the application or integration.
    2. If the account exists, verify its configuration and permissions.
  3. Add a New Service Account (If necessary)
    1. Click Add User in the top-right corner.
    2. Complete the following fields:
      1. First Name: Enter a descriptive name (e.g., "Integration").
      2. Last Name: Specify the type of account (e.g., "Service Account").
      3. Username: Create a unique identifier (e.g., integration_serviceaccount).
      4. Permission Sets: Assign the previously created permission set.
      5. Active: Check this box to enable the account.
  4. Save the Account
    1. Click Save to create the account


For more information on managing users in EarthRanger Admin, refer to Managing Users in EarthRanger Admin.
Additionally, note that the Service Account user created in this process is linked to an Authentication Token (see Create an Authentication Token) for use in system integrations.
 



Was this article helpful?