BYOID_CredentialSource

When configuring External Account Authentication, set this option to the full path of the .json configuration file that is used to specify the source from which to retrieve a subject token to exchange for an access token. This option corresponds to the credential_source property in the configuration file.

Note:

• The key file must be in raw .json format.
• Only "file" ODBC credential sources are supported (files from which the subject token can be read).
• For more information about generating configuration files, see "Generate a Configuration File" in the Google Cloud documentation: https://cloud.google.com/iam/docs/workforce-obtaining-short-lived-credentials#generate_a_configuration_file.

Key Name	Default Value	Required
BYOID_CredentialSource	None	Yes, if OAuth Mechanism is set to External Account Authentication (OAuthMechanism=4) and other BYOID_ properties, or KeyFile or KeyFilePath are not set.