Hi all, following up from the security discussion here, we found there are some experiment clients who did not followed the proper security practice when store the experimentation service account. In order to make sure no unexpected events occurred, Experimentation team would like to replace the existing service account.

Action Items

Update the spreadsheet with the PIC emails. We will share the new service account for your product team to the PIC emails. You could put more than one email or team email.
Notify experimentation team by commenting in spreadsheet above and mention @adityatri or @zulfach
We will share the new service account to PIC emails through lastpass.
Update your service to use the new service account. Please make sure your implementation are secure. We suggest to use either Vault, Parameter Store, Secret Manager or any standard approach setup in your team.
After all services that used experimentation client in your Product domain are migrated, please update the status in spreadsheet accordingly.

Looking at the importance of this exercise, we need your help to complete the exercise before 28 May 2021. We will revoke the old service account key after the that date.

If you have any question or concern regarding this announcement, feel free to ask the experimentation team.

Thank you!

:bow:

Experimentation Client Service Account Rotation