playbooks

home / skills / jeremylongshore / claude-code-plugins-plus-skills / service-account-manager

service-account-manager skill

/skills/14-gcp-skills/service-account-manager

This skill automates service account manager tasks in GCP, generating production-ready configs, best practices, and validation outputs.

npx playbooks add skill jeremylongshore/claude-code-plugins-plus-skills --skill service-account-manager

Review the files below or copy the command above to add this skill to your agents.

Files (1)
SKILL.md
2.1 KB
---
name: "service-account-manager"
description: |
  Manage service account manager operations. Auto-activating skill for GCP Skills.
  Triggers on: service account manager, service account manager
  Part of the GCP Skills skill category. Use when working with service account manager functionality. Trigger with phrases like "service account manager", "service manager", "service".
allowed-tools: "Read, Write, Edit, Bash(gcloud:*)"
version: 1.0.0
license: MIT
author: "Jeremy Longshore <[email protected]>"
---

# Service Account Manager

## Overview

This skill provides automated assistance for service account manager tasks within the GCP Skills domain.

## When to Use

This skill activates automatically when you:
- Mention "service account manager" in your request
- Ask about service account manager patterns or best practices
- Need help with google cloud platform skills covering compute, storage, bigquery, vertex ai, and gcp-specific services.

## Instructions

1. Provides step-by-step guidance for service account manager
2. Follows industry best practices and patterns
3. Generates production-ready code and configurations
4. Validates outputs against common standards

## Examples

**Example: Basic Usage**
Request: "Help me with service account manager"
Result: Provides step-by-step guidance and generates appropriate configurations


## Prerequisites

- Relevant development environment configured
- Access to necessary tools and services
- Basic understanding of gcp skills concepts


## Output

- Generated configurations and code
- Best practice recommendations
- Validation results


## Error Handling

| Error | Cause | Solution |
|-------|-------|----------|
| Configuration invalid | Missing required fields | Check documentation for required parameters |
| Tool not found | Dependency not installed | Install required tools per prerequisites |
| Permission denied | Insufficient access | Verify credentials and permissions |


## Resources

- Official documentation for related tools
- Best practices guides
- Community examples and tutorials

## Related Skills

Part of the **GCP Skills** skill category.
Tags: gcp, bigquery, vertex-ai, cloud-run, firebase

Overview

This skill automates common service account manager operations for Google Cloud Platform. It guides setup, generates production-ready configurations, and validates outputs against common standards. Use it to streamline service account creation, role assignments, key management, and troubleshooting.

How this skill works

The skill inspects requests for service account manager intent and activates automatically when triggered by relevant phrases. It provides step-by-step guidance, generates IaC snippets or CLI commands, and performs validation checks against typical GCP best practices. Where applicable it includes remediation suggestions and error-handling steps.

When to use it

  • Creating or rotating service account keys
  • Assigning IAM roles and least-privilege planning
  • Onboarding services that require programmatic GCP access
  • Auditing service accounts, permissions, and usage patterns
  • Troubleshooting permission or authentication failures

Best practices

  • Follow least-privilege principle: grant only necessary roles and use custom roles when appropriate
  • Use short-lived credentials and rotate keys regularly; prefer Workload Identity where possible
  • Audit service account activity and revoke unused accounts promptly
  • Store keys securely in secret management systems and avoid embedding them in code
  • Use infrastructure-as-code (Terraform, Deployment Manager) to manage accounts and IAM consistently

Example use cases

  • Generate Terraform snippet to create a service account and attach specific roles
  • Provide gcloud commands to create a key, rotate it, and revoke an old key safely
  • Recommend role mappings for connecting Vertex AI or BigQuery to a service with least privilege
  • Validate an existing service account configuration and list remediation steps for excessive permissions
  • Create a checklist for secure service account onboarding and CI/CD integration

FAQ

Can this skill create keys and rotate them automatically?

Yes. It generates commands or IaC to create and rotate keys and outlines safe rotation procedures, but actual key operations require appropriate credentials and execution in your environment.

How does the skill help with least-privilege IAM design?

It analyzes requested operations and suggests minimal role sets or custom role definitions, plus sample policies and deployment snippets to implement the recommendations.