Find your people. Pick a challenge. Ship something real. The CreatorCon Hackathon is coming to the Community Pavilion for one epic night. Every skill level, every role welcome. Join us on May 5th and learn more here.

Service Account

Go to solution
Not applicable

‎12-22-2025 10:32 AM

Hello Everyone,
Can anyone please let me know why we require "Service Account" when doing "Cloud Discovery" & why it is used?.
Thanks

Labels:
0 Helpfuls
  • 1,570 Views
1 ACCEPTED SOLUTION

Go to solution
Maham Tahir
Mega Guru
In response to Community Alums

‎12-23-2025 07:59 AM

Hi @Community Alums, 

 

Sorry for the late reply, client must create the actual identity in the Cloud Console (AWS IAM User, Azure Service Principal, etc.) first. They are the only ones with permissions to generate the Access Keys or Client Secrets. Then you will create the record in ServiceNow using the keys/IDs provided by the client.

 

If you find my response helpful, mark it as helpful and accepted solution.

 

Regards, 

Maham Tahir.

View solution in original post

0 Helpfuls
3 REPLIES 3

Go to solution
Maham Tahir
Mega Guru

‎12-22-2025 12:28 PM

Hi @Community Alums, 

 

In ServiceNow Cloud Discovery, a Service Account is required because it acts as the "identity" or "bridge" that allows ServiceNow to talk to your Cloud Provider (AWS, Azure, GCP).

 

Why it is used:

  1. Authentication: It stores the specific credentials (like AWS IAM keys or Azure Service Principals) needed to log in to your cloud environment API.

  2. Targeting: It tells ServiceNow which specific Cloud Account or Subscription ID to scan.

  3. Automation: It allows the MID Server to run automated API queries to fetch datacenters, images, and hardware types without human intervention.

Without a Service Account record in ServiceNow, the discovery process does not know who is asking for the data or where to look. It is the record that binds your Credentials to your Cloud Provider ID.

 

If you find my response helpful, mark it as helpful and accepted solution.

 

Regards, 

Maham Tahir.

Go to solution
Not applicable

‎12-22-2025 08:59 PM

Hi,@Maham Tahir 
Thanks for the information, Should we create the service account, or will the client handle that? If it's on us, what values do we need to fill in for the table?

 

0 Helpfuls

Go to solution
Maham Tahir
Mega Guru
In response to Community Alums

‎12-23-2025 07:59 AM

Hi @Community Alums, 

 

Sorry for the late reply, client must create the actual identity in the Cloud Console (AWS IAM User, Azure Service Principal, etc.) first. They are the only ones with permissions to generate the Access Keys or Client Secrets. Then you will create the record in ServiceNow using the keys/IDs provided by the client.

 

If you find my response helpful, mark it as helpful and accepted solution.

 

Regards, 

Maham Tahir.

0 Helpfuls