The main benefit is that access can be centrally controlled for a variety of apps including GCP. This type of provider allows users to be defined in one place and more importantly for access to be revoked in one place. This is important if credentials are stolen and sensitive data is at risk. Compare this to managing separate credentials in GCP which may not be consistent but would need additional maintenance.