Update CloudCAS instructions.

docs/cas.md

@@ -85,23 +85,24 @@ or using `gcloud` CLI:
 
    ```sh
    # Create service account
-   gcloud iam service-accounts create step-ca-sa \
+   gcloud iam service-accounts create mariano-ca-sa \
        --project smallstep-cas-test \
-       --description "Step-CA Service Account" \
-       --display-name "Step-CA Service Account"
+       --description "Mariano-CA Service Account" \
+       --display-name "mariano-CA Service Account"
    # Add permissions to use the privateca API
    gcloud projects add-iam-policy-binding smallstep-cas-test \
-       --member=serviceAccount:step-ca-sa@smallstep-cas-test.iam.gserviceaccount.com \
+       --member=serviceAccount:mariano-ca-sa@smallstep-cas-test.iam.gserviceaccount.com \
+       --role=roles/privateca.caManager \
        --role=roles/privateca.certificateRequester
    # Download the credentials.file
    gcloud iam service-accounts keys create credentials.json \
-      --iam-account step-ca-sa@smallstep-cas-test.iam.gserviceaccount.com
+      --iam-account mariano-ca-sa@smallstep-cas-test.iam.gserviceaccount.com
    ```
 
 5. Create a Root CA. You can do this on the console or running:
 
    ```sh
-   gcloud alpha privateca roots create prod-root-ca \
+   gcloud beta privateca roots create prod-root-ca \
        --kms-key-version "$KMS_ROOT_KEY_VERSION" \
        --subject "CN=Example Root CA, O=Example LLC" \
        --max-chain-length 2
@@ -110,7 +111,7 @@ or using `gcloud` CLI:
 6. Create an Intermediate CA. You can do this on the console or running:
 
    ```sh
-   gcloud alpha privateca subordinates create prod-intermediate-ca \
+   gcloud beta privateca subordinates create prod-intermediate-ca \
        --issuer prod-root-ca --issuer-location us-west1 \
        --kms-key-version "$KMS_INTERMEDIATE_KEY_VERSION" \
        --subject "CN=Example Intermediate CA, O=Example LLC" \