New Service Account added to Security Group not included when group is deployed to higher environment

Certified Senior Developer

Created a new Service Account in the Admin Console and generated API Key. Added the new Service Account to a security group that has access to an application. Added the updated security group to a patch and deployed it to the next higher environment (AFTER creating the same new Service Account in that higher environment - since the API Keys are different), but after import - the new Service Account was not included in the security group. According to the documentation, it should be. "API keys and service accounts can be managed in the Admin Console by system administrators. Service accounts should be created in each environment with the same username and placed in the same groups so that permissions can be promoted to higher environments. API keys can only be used for the environment they're created in." I'm assuming that we will have to manually add the Service Account to the security group in each higher environment - but why? The name of the Service Account created IS the same in both DEV and TEST - as is the description. After creating them - they both were added to the Service Account group - as described in the documentation. 

  Discussion posts and replies are publicly visible

Parents Reply
  • You're right, Judy: Service Accounts are still basically user accounts first. 
    When a user is added to the Service Accounts user role (group), it becomes a service account.
    According to current product functionality, user accounts must be created in each environment where they are to be used.  
    They cannot be moved from one environment to another like other Appian objects.
    When a group object is exported from a system, member users are not also exported.

Children