Add and remove credentials

Contributors netapp-bcammett netapp-mwallis

Add and remove cloud provider credentials from your account at any time. Astra Control uses these credentials to discover a Kubernetes cluster, the apps on the cluster, and to provision resources on your behalf.

Note that all users in Astra Control share the same sets of credentials.

Add credentials

The most common way to add credentials to Astra Control is when you manage clusters, but you can also add credentials from the Account page. The credentials will then be available to choose when you manage additional Kubernetes clusters.

What you’ll need
  • For GKE, you should have the service account key file for a service account that has the required permissions. Learn how to set up a service account.

  • For AKS, you should have the JSON file that contains the output from the Azure CLI when you created the service principal. Learn how to set up a service principal.

    You’ll also need your Azure subscription ID, if you didn’t add it to the JSON file.

  1. Click Account > Credentials.

  2. Click Add Credentials.

  3. Select either Microsoft Azure or Google Cloud Platform.

  4. Enter a name for the credentials that distinguishes them from other credentials in Astra Control.

  5. Provide the required credentials.

    1. Microsoft Azure: Provide Astra Control with details about your Azure service principal by uploading a JSON file or by pasting the contents of that JSON file from your clipboard.

      The JSON file should contain the output from the Azure CLI when you created the service principal. It can also include your subscription ID so it’s automatically added to Astra Control. Otherwise, you need to manually enter the ID after providing the JSON.

    2. Google Cloud Platform: Provide the Google Cloud service account key file either by uploading the file or by pasting the contents from your clipboard.

  6. Click Add Credentials.


The credentials are now available to select when you add a cluster to Astra Control.

Remove credentials

Remove credentials from an account at any time. You should only remove credentials after unmanaging all clusters.

Note The first set of credentials that you add to Astra Control is always in use because Astra Control uses the credentials to authenticate to the backup bucket. It’s best not to remove these credentials.
  1. Click Account > Credentials.

  2. Click the drop-down list in the State column for the credentials that you want to remove.

  3. Click Remove.

    A screenshot of the Credentials tab in the Account page where you can click the state column and select the Remove action.

  4. Type the name of the credentials to confirm deletion and then click Yes, Remove Credentials.


Astra Control removes the credentials from the account.