This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Get hands-on experience with 20+ free Google Cloud products and $300 in free credit for new customers.
Log in to ask a question

Twilio Dialogflow CX integration

Posted on 08-19-2024 04:34 PM
tcuroso
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

Hello All,

I'm currently having issues adding virtualagent-ccai-prod@dialogflow-prod-env.iam.gserviceaccount.com  to domain restricted sharing so that it can be granted the dialogflow api reader and dialogflow api client roles in the project as specified in the twilio documentation. When I try to enter the virtualagent-ccai-prod@dialogflow-prod-env.iam.gserviceaccount.com address into the Domain restricted sharing in the Organization Policies, the console comes back with a formatting error. Same result with just entering the full domain and the top level domain. I feel like I need an org ID or service agent for the virtualagent-ccai-prod@dialogflow-prod-env.iam.gserviceaccount.com but I have no idea where to find it. Fairly new to Google Cloud so I might be missing something obvious here. TIA

 

0 3 411
Topic Labels
0 Likes
3 REPLIES 3

Posted on --/--/---- --:-- AM
dawnberdan
Staff
Reply posted on --/--/---- --:-- AM

Hi @tcuroso,

Welcome to Google Cloud Community,

The reason why you're having issues with the service account virtualagent-ccai-prod@dialogflow-prod-env.iam.gserviceaccount.com is because it's a key element in your integration of Google Cloud's Dialogflow with Twilio.

Here are some steps to help you resolve the issue:

1. Double-Check Your Entries:

  • Make sure the service account email (virtualagent-ccai-prod@dialogflow-prod-env.iam.gserviceaccount.com) is typed exactly right, with no typos or extra spaces.
  • When setting domain restrictions, use the correct format. For example, use "example.com" for a single domain or "*.example.com" to include all subdomains.

2. Verify Domain or Service Account:

  • Check if the domain or service account you're restricting access to is properly configured in your Google Cloud Organization's policies.
  • If you're using a domain-wide delegation, you might need to adjust the restrictions to include the service account's domain.

3. Permissions Check:

  • Make sure you have the necessary permissions to change organization policies and domain-restricted sharing settings. This might require Org Admin access or similar high-level privileges.

4. Service Account Details:

  • You usually don't need your organization ID for this. The service account (from Dialogflow's managed service) should already be set up correctly in Google Cloud's IAM settings.
  • Just verify that the service account exists and has the required roles assigned (Dialogflow API Reader and Dialogflow API Client).

Additionally, You can refer to the documentation of both Twilio and Google Cloud to ensure you're following the correct integration and configuration steps for Dialogflow with Twilio.

If the issue persist you can contact Google Cloud Support or Twilio Support as they can provide more specific guidance based on your specific setup and account details.

I hope the above information is helpful.

0 Likes

Posted on --/--/---- --:-- AM
tcuroso
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

Dawnberdan,

Thank you for the detailed reply. We were able to solve our issues by using the Allow All setting at the project level in in the domain-restricted settings. This allowed me to add the Dialogflow API Reader and Dialogflow API Client roles to the service account in IAM. While not ideal, this will allow us to continue to develop. 

Posted on --/--/---- --:-- AM
mariyaaa_
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

@dawnberdan I was able to solve our issue thanks to your advice.