website logo
HomeTwitterLinkedInLogin ➡️
⌘K
Overview
Getting started
The Intelligent IaC Difference
Connect Cloud Accounts
AWS Account
Azure Subscription
GCP Project
Managing Cloud Accounts
What are Accounts
Credentials
Scanning Options
Changelog
Compliance
CI/CD
IaC Explorer
IaC Explorer Overview
Codifier
Generating Terraform
Terraform Remote State File Integration
IaC Catalog
Overview
Getting Started
Configuration
Producer Flow
Consumer Flow
Reference
GraphQL API
Management
Security
Feedback/Contact
Docs powered by
Archbee
Connect Cloud Accounts

GCP Project

10min

To connect a Google project you will need to generate service keys. This may either be done with Terraform or through the Google Cloud Platform.

Connect a GCP project

Connect a GCP project using Terraform

This module provisions an GCP Service Account granting cross account read-only access rights for AutoCloud's services to ingest your infrastructure.

  1. Get your AutoCloud organization ID, which can be found in My Account.
  2. Head over to AutoCloud's GCP Terraform Module.
  3. Get the Provision Instructions, copy and paste into your Terraform configuration.
  4. The following assets will be created:
    • google_service_account - The GCP cross-account Service Account
    • google_project_iam_member - Several role attachments linking the cross-account Service Account to the specific permissions allotted
    • google_service_account_key - The GCP cross-account Service Account Private Key
  5. Download this private key to your computer.
Document image


Connect a GCP project using the Google Cloud Platform

  1. Log in to your GCP account. Navigate to the 'IAM & Admin' section then click on 'Service Accounts' in the left-hand menu. Click the '+ Create Service Account' button at the top of this page.
Document image


2. Give your service account a name and description. We suggest the name include your Project's name.

Document image


3. Grant this service account read access to the project. Specifically, you must give it the following role, as shown below. The Project-level 'Viewer' role. Then press Done.

Document image


4. Once the service account has been created, select the service account from the list.

Document image


5. In the service account details screen, select the Keys tab, and select Add Key.

Document image


6. Download this private key to your computer. AutoCloud stores this key in Vault so that you do not need to upload the key each time you create a new Version. To learn more about how AutoCloud keeps your information secure, check out our Security Practices.

Document image


Connect a Google Project to AutoCloud

  1. Go to Cloud Accounts
  2. Select "Add New" on top right corner
  3. Choose Google Cloud as the provider.
Document image


4. AutoCloud requires a Service Account Key with the roles "Viewer" and "Service Usage Viewer". A viewer role at the project-level is also required. You can generate this by using Google Console or Terraform. Upload the Service Account Key, then click Next.

Document image


6. If the upload of the JSON credentials was successful, you should now see the available projects. Click Next.

Document image


7. Configure billing information (optional).

Document image


8. Select regions.

Document image


6. Your GCP susbscription was onboarded and it's now being scanned!

Document image




Updated 26 Jul 2023
Did this page help you?
PREVIOUS
Azure Subscription
NEXT
Getting billing data from GCP
Docs powered by
Archbee
TABLE OF CONTENTS
Connect a GCP project
Connect a GCP project using Terraform
Connect a GCP project using the Google Cloud Platform
Connect a Google Project to AutoCloud
Docs powered by
Archbee