Reference documentation and code samples for the Google Cloud Security Command Center Settings v1beta1 API class SecurityHealthAnalyticsSettings.Types.AdminServiceAccountSettings.
User-created service accounts ending in the provided identities are
allowed to have Admin, Owner or Editor roles granted to them. Otherwise
a finding will be created.
A valid identity can be:
a partilly specified service account that starts with "@", e.g.
"@myproject.iam.gserviceaccount.com". This approves all the service
accounts suffixed with the specified identity.
a fully specified service account that does not start with "@", e.g.
"myadmin@myproject.iam.gserviceaccount.com".
Google-created service accounts are all approved.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Missing the information I need","missingTheInformationINeed","thumb-down"],["Too complicated / too many steps","tooComplicatedTooManySteps","thumb-down"],["Out of date","outOfDate","thumb-down"],["Samples / code issue","samplesCodeIssue","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-07 UTC."],[[["\u003cp\u003eThis documentation covers the \u003ccode\u003eSecurityHealthAnalyticsSettings.Types.AdminServiceAccountSettings\u003c/code\u003e class within the Google Cloud Security Command Center Settings v1beta1 API.\u003c/p\u003e\n"],["\u003cp\u003eThe \u003ccode\u003eAdminServiceAccountSettings\u003c/code\u003e class provides settings for the "ADMIN_SERVICE_ACCOUNT" scanner and inherits from the \u003ccode\u003eobject\u003c/code\u003e class while implementing several interfaces, such as \u003ccode\u003eIMessage\u003c/code\u003e, \u003ccode\u003eIEquatable\u003c/code\u003e, and \u003ccode\u003eIDeepCloneable\u003c/code\u003e.\u003c/p\u003e\n"],["\u003cp\u003eThe class offers two constructors: a default one and another that takes an existing \u003ccode\u003eAdminServiceAccountSettings\u003c/code\u003e instance for copying.\u003c/p\u003e\n"],["\u003cp\u003eThe \u003ccode\u003eApprovedIdentities\u003c/code\u003e property, a \u003ccode\u003eRepeatedField<string>\u003c/code\u003e, allows the specification of approved service account identities, either fully or partially, which can have Admin, Owner, or Editor roles.\u003c/p\u003e\n"],["\u003cp\u003eThe latest documentation version is \u003ccode\u003e2.0.0-beta04\u003c/code\u003e, with older versions \u003ccode\u003e2.0.0-beta03\u003c/code\u003e, and \u003ccode\u003e1.0.0-beta04\u003c/code\u003e available.\u003c/p\u003e\n"]]],[],null,["# Google Cloud Security Command Center Settings v1beta1 API - Class SecurityHealthAnalyticsSettings.Types.AdminServiceAccountSettings (2.0.0-beta04)\n\nVersion latestkeyboard_arrow_down\n\n- [2.0.0-beta04 (latest)](/dotnet/docs/reference/Google.Cloud.SecurityCenter.Settings.V1Beta1/latest/Google.Cloud.SecurityCenter.Settings.V1Beta1.SecurityHealthAnalyticsSettings.Types.AdminServiceAccountSettings)\n- [2.0.0-beta03](/dotnet/docs/reference/Google.Cloud.SecurityCenter.Settings.V1Beta1/2.0.0-beta03/Google.Cloud.SecurityCenter.Settings.V1Beta1.SecurityHealthAnalyticsSettings.Types.AdminServiceAccountSettings)\n- [1.0.0-beta04](/dotnet/docs/reference/Google.Cloud.SecurityCenter.Settings.V1Beta1/1.0.0-beta04/Google.Cloud.SecurityCenter.Settings.V1Beta1.SecurityHealthAnalyticsSettings.Types.AdminServiceAccountSettings) \n\n public sealed class SecurityHealthAnalyticsSettings.Types.AdminServiceAccountSettings : IMessage\u003cSecurityHealthAnalyticsSettings.Types.AdminServiceAccountSettings\u003e, IEquatable\u003cSecurityHealthAnalyticsSettings.Types.AdminServiceAccountSettings\u003e, IDeepCloneable\u003cSecurityHealthAnalyticsSettings.Types.AdminServiceAccountSettings\u003e, IBufferMessage, IMessage\n\nReference documentation and code samples for the Google Cloud Security Command Center Settings v1beta1 API class SecurityHealthAnalyticsSettings.Types.AdminServiceAccountSettings.\n\nSettings for \"ADMIN_SERVICE_ACCOUNT\" scanner. \n\nInheritance\n-----------\n\n[object](https://learn.microsoft.com/dotnet/api/system.object) \\\u003e SecurityHealthAnalyticsSettings.Types.AdminServiceAccountSettings \n\nImplements\n----------\n\n[IMessage](https://cloud.google.com/dotnet/docs/reference/Google.Protobuf/latest/Google.Protobuf.IMessage-1.html)[SecurityHealthAnalyticsSettings](/dotnet/docs/reference/Google.Cloud.SecurityCenter.Settings.V1Beta1/latest/Google.Cloud.SecurityCenter.Settings.V1Beta1.SecurityHealthAnalyticsSettings)[Types](/dotnet/docs/reference/Google.Cloud.SecurityCenter.Settings.V1Beta1/latest/Google.Cloud.SecurityCenter.Settings.V1Beta1.SecurityHealthAnalyticsSettings.Types)[AdminServiceAccountSettings](/dotnet/docs/reference/Google.Cloud.SecurityCenter.Settings.V1Beta1/latest/Google.Cloud.SecurityCenter.Settings.V1Beta1.SecurityHealthAnalyticsSettings.Types.AdminServiceAccountSettings), [IEquatable](https://learn.microsoft.com/dotnet/api/system.iequatable-1)[SecurityHealthAnalyticsSettings](/dotnet/docs/reference/Google.Cloud.SecurityCenter.Settings.V1Beta1/latest/Google.Cloud.SecurityCenter.Settings.V1Beta1.SecurityHealthAnalyticsSettings)[Types](/dotnet/docs/reference/Google.Cloud.SecurityCenter.Settings.V1Beta1/latest/Google.Cloud.SecurityCenter.Settings.V1Beta1.SecurityHealthAnalyticsSettings.Types)[AdminServiceAccountSettings](/dotnet/docs/reference/Google.Cloud.SecurityCenter.Settings.V1Beta1/latest/Google.Cloud.SecurityCenter.Settings.V1Beta1.SecurityHealthAnalyticsSettings.Types.AdminServiceAccountSettings), [IDeepCloneable](https://cloud.google.com/dotnet/docs/reference/Google.Protobuf/latest/Google.Protobuf.IDeepCloneable-1.html)[SecurityHealthAnalyticsSettings](/dotnet/docs/reference/Google.Cloud.SecurityCenter.Settings.V1Beta1/latest/Google.Cloud.SecurityCenter.Settings.V1Beta1.SecurityHealthAnalyticsSettings)[Types](/dotnet/docs/reference/Google.Cloud.SecurityCenter.Settings.V1Beta1/latest/Google.Cloud.SecurityCenter.Settings.V1Beta1.SecurityHealthAnalyticsSettings.Types)[AdminServiceAccountSettings](/dotnet/docs/reference/Google.Cloud.SecurityCenter.Settings.V1Beta1/latest/Google.Cloud.SecurityCenter.Settings.V1Beta1.SecurityHealthAnalyticsSettings.Types.AdminServiceAccountSettings), [IBufferMessage](https://cloud.google.com/dotnet/docs/reference/Google.Protobuf/latest/Google.Protobuf.IBufferMessage.html), [IMessage](https://cloud.google.com/dotnet/docs/reference/Google.Protobuf/latest/Google.Protobuf.IMessage.html) \n\nInherited Members\n-----------------\n\n[object.GetHashCode()](https://learn.microsoft.com/dotnet/api/system.object.gethashcode) \n[object.GetType()](https://learn.microsoft.com/dotnet/api/system.object.gettype) \n[object.ToString()](https://learn.microsoft.com/dotnet/api/system.object.tostring)\n\nNamespace\n---------\n\n[Google.Cloud.SecurityCenter.Settings.V1Beta1](/dotnet/docs/reference/Google.Cloud.SecurityCenter.Settings.V1Beta1/latest/Google.Cloud.SecurityCenter.Settings.V1Beta1)\n\nAssembly\n--------\n\nGoogle.Cloud.SecurityCenter.Settings.V1Beta1.dll\n\nConstructors\n------------\n\n### AdminServiceAccountSettings()\n\n public AdminServiceAccountSettings()\n\n### AdminServiceAccountSettings(AdminServiceAccountSettings)\n\n public AdminServiceAccountSettings(SecurityHealthAnalyticsSettings.Types.AdminServiceAccountSettings other)\n\nProperties\n----------\n\n### ApprovedIdentities\n\n public RepeatedField\u003cstring\u003e ApprovedIdentities { get; }\n\nUser-created service accounts ending in the provided identities are\nallowed to have Admin, Owner or Editor roles granted to them. Otherwise\na finding will be created.\nA valid identity can be:\n\n- a partilly specified service account that starts with \"@\", e.g. \"@myproject.iam.gserviceaccount.com\". This approves all the service accounts suffixed with the specified identity.\n- a fully specified service account that does not start with \"@\", e.g. \"myadmin@myproject.iam.gserviceaccount.com\". Google-created service accounts are all approved."]]
