Add Service Accounts On Prisma Cloud

Enable access to the Prisma Cloud APIs for non-human entities.
Service Accounts can be created for automation use cases to enable a nonhuman entity to interact programmatically with the Prisma Cloud APIs. Service accounts differ from user accounts in that they do not need an email address associated with them and do not need to be validated or activated in an external system before they can be used.
  1. Select
    Settings
    Users
    and select
    Add New
    Service Account
    .
    You must have the System Administrator role on Prisma Cloud to add a service account; a maximum of 250 service accounts are supported.
  2. Enter the Service Account details and click
    Next
    .
    Think about the data you will enter carefully because the information that’s associated with the service account cannot be modified afterwards.
    • Service Account Name
      —A descriptive name for your service account.
    • Role
      —The role for your service account.
    • Time Zone
      —The time zone that is associated with your service account. The audit logs use this timezone to log activity.
  3. Create an Access Key.
    1. Enter a descriptive name for your access key.
    2. Enable Expiration
      .
      As a best practice, set an expiration date that meets your compliance requirements and rotate your keys frequently.
    3. Save & Create (1 of 2)
      to generate the key.
  4. Download your Access Key.
    Access keys are not stored on Prisma Cloud, so this will be the only opportunity that you’ll have to download it. Click
    Download .csv file
    to download your access key as a csv file and store it in a secure location.
  5. View the service accounts.
    To verify that the service accounts is created successfully, select
    Settings
    Users
    , and enter the name of the service account in the search box.
    You cannot edit the
    Name
    ,
    Roles
    , or
    Timezone
    for a service account. To modify any of these values, you must delete it and create a new one. Each service account can have a maximum of two access keys; you must create one key when you add the service account, and can add an additional key later.

Recommended For You