Skip to main content

Cloud Account Validation

DevOps Genie validates cloud account access before saving credentials. Use this page when Cloud Accounts > Add Cloud Account fails validation.

AWS

Check:

  • The role ARN is complete.
  • The role trust policy uses the External ID shown in your DevOps Genie organization.
  • The trust principal matches the value shown in the product.
  • The role has read-oriented permissions for the services you want scanned.

GCP

Check:

  • The service account JSON is complete and valid.
  • The service account is enabled.
  • The service account has read access to the target project.
  • Organization policies do not block the required APIs.

Azure

Check:

  • Tenant ID, client ID, client secret, and subscription ID are correct.
  • The client secret has not expired.
  • The app registration has Reader access to the subscription or another scope that includes target resources.

If validation still fails

Contact support@devopsgenie.ai and include the support checklist from Support.