Chronicle API Integration issue

Question

I am using workload identity for Chronicle api integration, I am getting error” unable to acquire impersonated credentials” . I think the issue is in adding the Principal. I am not sure what Principal needs to be added and how I can find it from scratch. I am not getting the principal in the error log also while testing the instance. Please help me with the steps how and which principal I can use and resolve the issue.

Thanks in advance :)

D1dave · Answer

I am using workload identity for Chronicle api integration, I am getting error” unable to acquire impersonated credentials” . I think the issue is in adding the Principal. I am not sure what Principal needs to be added and how I can find it from scratch. I am not getting the principal in the error log also while testing the instance. Please help me with the steps how and which principal I can use and resolve the issue.

Thanks in advance :)

Hi need more information but a couple of questions:

Did you set up a workload identity pool?
Where is the Workload is running , workloads different format for principles.
Did you create a service account to use for impersonation.
If yes, did you give the service account this role - roles/iam.serviceAccountTokenCreator
If yes, did you bind the service account to the workload principle.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded