Service Accounts

SUBTITLE

A service account is a specific subset of permissions assigned to a non-human user. The most common use is the Agilicus Connector.

CONTACT ✉
8f897ca4 undraw server down s 4 lk

Service Accounts

0ec9a374 image

A service account is a specific subset of permissions assigned to a non-human user. The most common use is the Agilicus Connector.

Service accounts (typically) do not sign in via an OpenID Connect web-based identity-provider. Instead they use an ‘Authentication Document’ which is a cryptographic proof of identity and scopes combined, which is periodically refreshed.

Service accounts behave the same as all other users for the sake of permission assignment.

When you install your Agilicus Connector, a service account is created for it at that time. If you delete the Connector, you can delete the service account for it. WARNING: do not delete the service account if the Connector is still in use (it will stop functioning).

Service accounts show up in the audits as any other user: all actions are audited individually.

Service account’s have a name which is similar to an email address, in the format of:

agent-connector-erx-service-account-kx4mfqwadgxbccz3axyrr9@serviceaccounts.agilicus.com

The email address and authentication document may be downloaded as below.

cb4a22de image

If you download the authentication document, you will see something as below. This may be used in applications you write that use the Agilicus SDK.

{
  "_builtin_original": {
    "metadata": {
      "created": "2022-05-29T23:27:39.556283Z",
      "id": "j5PLubHV....",
      "updated": "2022-05-29T23:27:39.599237Z"
    },
    "spec": {
      "auth_issuer_url": "https://auth.dbt.agilicus.cloud",
      "org_id": "5kX8JJdQ3CzY66pyAWPN3D",
      "user_id": "GWN9EKQR7U8vv9eYNJdXud"
    },
    "status": {
      "audience": "urn:api:agilicus:tokens",
      "issuer": "urn:agilicus:authentication_documents:j5PLubHV....",
      "key": "-----BEGIN PRIVATE KEY-----\n...t9F\n-----END PRIVATE KEY-----\n"
    }
  },
  "metadata": {
    "created": "2022-05-29T23:27:39.556283Z",
    "id": "j5PLubHVzuq44xDbVEBMfh",
    "updated": "2022-05-29T23:27:39.599237Z"
  },
  "spec": {
    "auth_issuer_url": "https://auth.dbt.agilicus.cloud",
    "org_id": "5kX8JJdQ3CzY66pyAWPN3D",
    "user_id": "GWN9EKQR7U8vv9eYNJdXud"
  },
  "status": {
    "audience": "urn:api:agilicus:tokens",
    "issuer": "urn:agilicus:authentication_documents:j5PLubHVzuq44xDbVEBMfh",
    "key": "-----BEGIN PRIVATE KEY-----\n...bOHt9F\n-----END PRIVATE KEY-----\n"
  }
}

Want Assistance?

The Agilicus team is here for you. The ‘Chat‘ icon in the lower left, here, or in the administrative web page, goes to our team.

Or, feel free to email support@agilicus.com

Not yet a customer? The TRY NOW button will walk you through the process.

CONTACT US
TRY NOW