This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Get hands-on experience with 20+ free Google Cloud products and $300 in free credit for new customers.
Log in to ask a question

Unable to Execute Dataform Workflow due to "IAM permission denied for service account"

Posted on 09-26-2023 08:46 PM
so0710
Bronze 2
Bronze 2
Reply posted on --/--/---- --:-- AM

Hello

I've been facing an issue trying to execute a workflow in Dataform. Every time I attempt to run it, I'm met with an "IAM permission denied for service account your-service-account-name" error.

スクリーンショット 2023-09-27 12.36.57.png

Here's a summary of the steps I've taken to troubleshoot:

  • Ensured the following permissions have been granted: BigQuery Data Editor, BigQuery Data Viewer, BigQuery Job User, and BigQuery Data Owner. Still facing the issue.
  • Tried granting BigQuery Administrator and Dataform Administrator roles.
  • Attempted to run the default template provided during repository initialization post-creation, but the same error persisted.
  • Verified that I have Owner permissions on my own account, yet the problem remains.

I'm at a bit of a loss here, and would greatly appreciate any insights or advice from anyone who may have encountered a similar issue or has any suggestions to offer.

Thank you in advance for your assistance.

 
Solved Solved
1 11 8,056
Topic Labels
Jump to Solution
1 ACCEPTED SOLUTION

Posted on --/--/---- --:-- AM
ms4446
Staff
Reply posted on --/--/---- --:-- AM

It seems like you have done a thorough job checking the permissions and trying different browsers. Your steps for executing via the command line are correct, and it's good to see that it works with the service account when you revoke your personal credentials.

Regarding the error with the --debug flag, it seems there might be a version difference or it might not be supported in the command you are using. You can check the documentation or use dataform --help to see the available options for debugging.

For the issue with the dashboard, consider the following:

  1. Dashboard Service Account Configuration:

    • Double-check if the dashboard is configured to use the correct service account. Sometimes, the dashboard might use a different service account or credentials, leading to permission issues.

  2. Project Settings in Dashboard:

    • Review the project settings within the Dataform dashboard. Ensure that the project is linked to the correct Google Cloud project and that the service account configuration in the dashboard matches the one you are using in the command line.

  3. Additional Permissions:

    • There might be additional permissions or roles needed when executing from the dashboard. Check the documentation of Dataform to ensure all necessary permissions are granted.

  4. Dataform Support:

    • Since the issue is specific to the dashboard, reaching out to Dataform support might provide more insights. They can help verify the dashboard configuration and ensure it is set up correctly to use the service account.

  5. Debugging in Dashboard:

    • Look for any debugging or log options within the Dataform dashboard. It might provide more detailed error messages or information about the permission denied error.

By exploring these areas, you might be able to identify and resolve the issue with executing workflows from the Dataform dashboard.

View solution in original post

Jump to Solution
0 Likes
11 REPLIES 11
Top Solution Authors
View all