TL;DR

Problem you have encountered:

The Directory API currently enables administrators to associate SSH keys with user accounts, a capability that is presently unavailable in the OS Login API.

The OS Login API's current adherence to a stringent identity verification process restricts the capacity to manage SSH keys for both user and service accounts.

It would be advantageous to incorporate SSH key management for service accounts directly within the OS Login API, mirroring the functionality provided by the Directory API. This enhancement would substantially improve the user experience and mitigate operational friction associated with managing SSH keys for service accounts, particularly within automated environments such as Terraform.

https://docs.cloud.google.com/compute/docs/connect/add-ssh-keysos-login

What you expected to happen:

Be able to use a Terraform service account to associate SSH keys with multiple service accounts without impersonation

Terraform Resources

Detailed design

Additional information

No response