1. Proposed title of this feature request

Ability to specify a custom ServiceAccount for all pods in Migration Toolkit for Virtualization (MTV)

2. What is the nature and description of the request?

MTV currently always uses the default ServiceAccount in the "openshift-mtv" namespace when creating VDDK importer, pre-hook, and post-hook pods.

There is no supported way to override or configure the SA used for this workflow.
CDI annotations, migration plan settings, and operator configuration fields do not affect the SA selection.

Request:
Add a supported method to specify a custom ServiceAccount for the following pods, either globally (operator/CR-level) or per migration plan.

• VDDK image pull
• Pre-hook image pull
• Post-hook image pull

3. Why does the customer need this? (List the business requirements here)

• Customer operates under strict audit, compliance, and least-privilege policies.

• Use of the default SA is prohibited in their environment because it:

• • provides no audit trail,

• • violates least privilege,

• • is shared across multiple components,

• • cannot be safely modified (OLM overwrites patches).

• Customer must use a dedicated, auditable, tightly scoped SA for internal registry access.

4. List any affected packages or components.

MTV 2.9