Setting up and adding GCP accounts to Cloud Manager Edit on GitHub Request doc changes

Contributors netapp-bcammett

If you want to enable data tiering on a Cloud Volumes ONTAP system, you need to provide Cloud Manager with a storage access key for a service account that has Storage Admin permissions. Cloud Manager uses the access keys to set up and manage a Cloud Storage bucket for data tiering.

Setting up a service account and access keys for Google Cloud Storage

A service account enables Cloud Manager to authenticate and access Cloud Storage buckets used for data tiering. The keys are required so that Google Cloud Storage knows who is making the request.

Steps
  1. Open the GCP IAM console and create a service account that has the Storage Admin role.

    A screenshot of the GCP IAM console that shows the selection of the Storage Admin role for a service account.

  2. Go to GCP Storage Settings.

  3. If you’re prompted, select a project.

  4. Click the Interoperability tab.

  5. If you haven’t already done so, click Enable interoperability access.

  6. Under Access keys for service accounts, click Create a key for a service account.

  7. Select the service account that you created in step 1.

    A screenshot of the GCP storage console that shows a selected service account for a new access key.

  8. Click Create Key.

  9. Copy the access key and secret.

    You’ll need to enter this information in Cloud Manager when you add the GCP account for data tiering.

Adding a GCP account to Cloud Manager

Now that you have an access key for a service account, you can add it to Cloud Manager.

Steps
  1. In the upper right of the Cloud Manager console, click the Settings icon, and select Cloud Provider & Support Accounts.

    A screenshot that shows the Settings icon in the upper right of the Cloud Manager console.

  2. Click Add New Account and select GCP.

  3. Enter the access key and secret for the service account.

    The keys enable Cloud Manager to set up a Cloud Storage bucket for data tiering.

  4. Confirm that the policy requirements have been met and then click Create Account.

What’s next?

You can now enable data tiering on individual volumes when you create, modify, or replicate them. For details, see Tiering inactive data to low-cost object storage.

But before you do, be sure that the subnet in which Cloud Volumes ONTAP resides is configured for Private Google Access. For instructions, refer to Google Cloud Documentation: Configuring Private Google Access.