Service IDs management
8 min
manage service ids to provide secure, non personalized access to services and apis, avoiding the need for individual credentials a service id identifies a non human user, such as a system service or subscription since the service id is not tied to a specific user, if a user is removed from the system, the rest of the team can continue using the subscription or service as an example, service ids are very useful when a group of developers needs to access a service that requires apis you could store a common credential and api keys that only have access to the services needed and are not tied to any of the developers to understand which roles and permissions are required, see roles and permissions docid\ ics69b2oesewnrtsmbi3w some of the benefits of service ids include avoid exposing corporate user credentials, since service ids are not linked to a specific individual grant access only to the services needed, rather than granting the full set of permissions assigned to a user distribute api keys and service ids across different subscriptions to avoid cross impact accessing the service ids page select the global menu icon select settings and select service the page opens select service ids from the left navigation bar of the page the service ids page opens once in the service ids page, you can perform a series of actions to personalize your service ids needs, including the following viewing a list of service ids creating a new service id adding service ids to an access group adding api keys for a service id deleting a service id locking and unlocking service ids adding access policies to a service id viewing a list of service ids by accessing the service ids page, you are presented with the available service ids added to your account you can use the filter and search capabilities to refine the results creating a new service id select add new select add service id the add service id page opens enter the name of the service id and an optional description click add the new service id is created and displayed under the service ids page adding service ids to an access group to add a service id to an access group, refer to the access groups and policies management docid\ q 6ffyrlj8tbceugqj3kl page and follow the steps adding api keys for a service id select the service id of your choice click manage select add api key the add api key page opens enter the name of the api key and an optional description click add copy the api key by clicking the copy icon and close the message window the new api key is created and displayed under the api keys tab for that specific service id similarly to the api keys page, you can manage your api keys for a service id to regenerate the api key, edit, lock, unlock, or delete it for more information, go to api keys deleting a service id check the boxes next to the service ids that you want to delete click delete confirm the deletion locking and unlocking service ids you can prevent a service id from being deleted or modified by locking it a locked service id is represented by the locked icon you can unlock a service id at any time to update or delete it from your account click the overflow menu next to the service id that you want to edit select lock or unlock depending on the service id status locking the service id also blocks any associated access policy from usage or modification (add, delete, or edit) the only actions allowed are deletion or removal from an access group at the same time, api keys associated with a service id are also locked lastly, (un)lock service id overwrites api keys locking and unlocking options adding access policies to a service id select the service id of your choice click manage select assign access the assign access to service id page opens select the access groups that you want to grant access to click continue select the service from the dropdown menu based on the service that you selected, click the radio button to select your preferred scope if you select all resources , the access policy is assigned to all resources for that user if you select resources based on selected attributes, you can create and add access tags and attributes for a more precise access the tag number advises the number of permissions associated with that specific role to learn about the permissions' descriptions, click the corresponding tag number select the platform role or roles that you want to assign to this access policy you may also select one of the custom roles that you have created click assign at the bottom of the summary pane to finish the access groups page for that specific service id is automatically updated, and the new access policy is displayed