**Allow SAs for Free tier** is a key initiative under the broader **Service Accounts: Consolidated Machine Identity** epic and aligns with the **New Add-On Implementation: DAP for Free Tier Users** strategic direction. This epic focuses on enabling Service Accounts (SAs) for GitLab's Free tier users, making machine identity management accessible to a wider audience. **Objectives:** This epic encompasses the work required to make Service Accounts available on the Free tier while maintaining security and resource constraints. The initiative includes: * **Licensing & Availability**: Moving Service Accounts to Community Edition (CE) and updating the license category to Free tier, with feature flag rollout for controlled deployment * **Resource Management**: Implementing limits on the number of Service Accounts that can be created in Free namespaces to prevent abuse * **Security Controls**: Ensuring Service Accounts cannot create top-level namespaces or other Service Accounts, and restricting their accessibility to the owning hierarchical branch * **Code Quality**: Refactoring and centralizing Service Account creation logic to eliminate duplication and improve maintainability * **Documentation**: Updating user-facing documentation to reflect the new Free tier availability and usage guidelines. **Note:** Work is ongoing to bring Service accounts on CE Free tier (it's currently available on EE Free tier only)