Connect to BigQuery

Summary of Content

Requirements
Connecting your Warehouse to Sigma
Creating a BigQuery Service Account
      What is a service account, and why do I need one?
      Account Permissions / Roles
      Create a Service Account
Creating a Connection in Sigma
Confirming your Connection
Related Resources

Requirements

Connecting your Warehouse to Sigma

  1. Create a BigQuery Service Account
  2. Create a Connection in Sigma
  3. Confirm your Connection

Creating a BigQuery Service Account

Before you connect to Sigma, you will need to visit your Google Cloud Platform (GCP) console to create a service account and generate a json private key for your BigQuery instance.

What is a service account, and why do I need one?

A GCP service account is a type of Google account that can securely communicate over Google APIs on your behalf. The service account you create in the steps below will act as a middleman between Sigma and your BigQuery warehouse.
To learn more about service accounts, visit Google’s service account documentation.

Account Permissions / Roles

When creating your service account, you will need to grant it specific access permissions. These permissions are called Roles.

To run BigQuery with Sigma, please grant your service account the following roles:

  • "BigQuery Data Viewer"
  • "BigQuery Job User"
  • "BigQuery Data Editor" - This role is only required if you intend to enable write access on your connection.

Create a Service Account

We have included instructions below to create your service account. However, please be aware that this guide may not always be up to date with the most recent GCP console changes, as GCP is not managed by Sigma.

For Google’s instructions, visit Creating and enabling service accounts for instance

  1. Log into your GCP console.
  2. Open the Navigation menu.
  3. Hover over IAM & Admin and select Service Accounts from the submenu.
  4. Click + CREATE SERVICE ACCOUNT in the service accounts header.
  5. Under Service account details, add an account name, ID, and optional description.
    Click CREATE.
  6. Under Service account permissions, add the following roles:
    • BigQuery Data Viewer
    • BigQuery Job User
    • BigQuery Data Editor - This role is only required if you intend to enable write access on your connection. 
  7. Click CONTINUE.
  8. [optional] Under Grant users access.... you may choose to grant other users access to your new service account.
    This step is not necessary for connecting to Sigma.
  9. Click + CREATE KEY to create a json private key.
    A file will be downloaded to your computer, which you will later use when connecting to Sigma.

Creating a Connection in Sigma

  1. If you have not already created a BigQuery Service Account, please do so now.
  2. In Sigma, open Administration > Connections.
    Screen_Shot_2020-10-28_at_8.13.41_PM.png
  3. Click Create Connection.
  4. Name your connection.
    Screen_Shot_2020-10-28_at_8.15.48_PM.png
  5. Select BigQuery under warehouse type.
    You will then be prompted to specify your Connection Credentials.
  6. Under Billing project ID, enter your GCP ‘Project ID’. This can be found under ‘Project Info’ on your GCP console dashboard. Find your project id.
    Note: Grant the service account the “BigQuery Data Viewer“ role for the project's datasets. Learn more
  7. Under Service account, paste the json key you created when setting up your service account. The key is located in the .json file that was downloaded to your computer when you created your service account.
    Screen_Shot_2020-07-09_at_1.45.13_PM.png

  8. [Optional] Under Additional project IDs, you can add additional BigQuery project IDs to the same connection. Separate multiple IDs with a comma.
    Example: project-id-001, project-id-002
    Note: Grant the service account the “BigQuery Data Viewer“ role for each project's datasets. Learn more

  9. [Optional] Under Connection Features, you can set a connection timeout and/or enable write access*.
    Note: The "BigQuery Data Editor" role is required for write access.
    Write access is required for CSV Upload, Materialization, and Dataset Warehouse Views.
  10. After completing the form, click Create.

Confirming your Connection

After you have created your connection, you can confirm that your data is accessible by visiting the Connections section of Sigma’s left hand navigation panel. 

  1. If you are still in the Admin Portal, click the back button in the top left corner of your screen to close the Admin Portal and navigate back to the home page.
  2. Select your new warehouse connection from the left hand navigation panel.
  3. From here, you can navigate through your connection’s schemas and tables, confirming the connection was successful.
    Screen_Shot_2020-10-28_at_8.26.00_PM_copy.png

Related Resources

Setup Write Access
Grant Permissions
Google Cloud - Service Accounts 

Was this page helpful?
Yes No