yc iam key create
Written by
Updated at April 3, 2025
Create an IAM key for for authenticated account or the specified service account. Created key will be written to file in JSON format.
Command Usage
Syntax:
yc iam key create [Flags...] [Global Flags...]
Flags
| Flag | Description |
|---|---|
-o,--output |
stringThe path where the resulting IAM key should be written. |
--service-account-id |
stringservice account id. |
--service-account-name |
stringservice account name. |
--description |
stringSpecifies a textual description of the service account. |
--algorithm |
stringSpecifies key algorithm. Otherwise server default will be used. Values: 'rsa-2048', 'rsa-4096' |
Global Flags
| Flag | Description |
|---|---|
--profile |
stringSet the custom configuration file. |
--debug |
Debug logging. |
--debug-grpc |
Debug gRPC logging. Very verbose, used for debugging connection problems. |
--no-user-output |
Disable printing user intended output to stderr. |
--retry |
intEnable gRPC retries. By default, retries are enabled with maximum 5 attempts. Pass 0 to disable retries. Pass any negative value for infinite retries. Even infinite retries are capped with 2 minutes timeout. |
--cloud-id |
stringSet the ID of the cloud to use. |
--folder-id |
stringSet the ID of the folder to use. |
--folder-name |
stringSet the name of the folder to use (will be resolved to id). |
--endpoint |
stringSet the Cloud API endpoint (host:port). |
--token |
stringSet the OAuth token to use. |
--impersonate-service-account-id |
stringSet the ID of the service account to impersonate. |
--no-browser |
Disable opening browser for authentication. |
--format |
stringSet the output format: text (default), yaml, json, json-rest. |
--jq |
stringQuery to select values from the response using jq syntax |
-h,--help |
Display help for the command. |