Google Cloud Platform (GCP)

Google Cloud Platform (GCP) is a cloud hosting platform that offers cloud computing and infrastructure services. 

Secureframe scans various GCP resources and configurations to ensure compliance and automatically gather evidence.

Connecting the Integration

To integrate GCP with Secureframe, navigate to Integrations and search for “Google” on the “Available Integrations” page. Click “Connect” and follow the steps in the connection form.

Secureframe now integrates with both Organization & Projects. To connect a project, an Organization must also be connected. 

Connecting at different levels of the hierarchy (Organization & Projects)

Google Cloud allows users to manage connections at various levels in the hierarchy e.g. Organization and Projects. Secureframe allows you to integrate with the Organization level as well as the project connection in order to:

  • Make it easier to pull in and set up multiple account connections under an organization at once, allowing you to save time
  • Provide a cleaner experience in organizing and managing the different levels of the hierarchy enabled in your GCP account
  • Make it easier to identify accounts by automatically discovering accounts associated to your organization
  • Make it easier to exclude the accounts that you do not want to sync with Secureframe

Manage connections/sync

You can now easily manage your project (child) connections directly from the Integrations page. 

  • To sync all accounts under a connection click the sync button
  • In order to sync or manage only specific accounts under a connection, click the # of connections
    • You can now view and manage the settings, rename the connection, reconnect and archive a project (child) account directly from this screen
  • You can also view and change included regions and accounts if you click into the GCP integration settings (cogwheel icon). Screenshot 2024-10-04 at 3.13.23 PM.png

Migrating existing connections in Secureframe to Parent/Child connections

  1. Archive any individual existing project connections you have that you are expecting to be pulled in by the organization connection. Note: if you have any project connections that you’re not expecting to be brought in by the organization connection, you do not need to archive those project accounts in Secureframe.  
    1.  
      1. Click the kebab menu on individual project accounts
      2. Click archive

  1. Once your connections have been archived, click on available connections, search for “Google” and click “add connection” or “connect” under Google Cloud. Screenshot 2024-10-01 at 5.03.41 PM.png
  2. Follow the steps outlined in the connection form under “GCP Organization”. Screenshot 2024-10-01 at 5.05.16 PM.png
  3.  In step 7 of the connection form, you will be able to view a list of member projects/child connections and select those you wish to integrate with Secureframe. Screenshot 2024-10-01 at 5.10.42 PM.png
  4. Click Finish. When completed, you will now be able to see the number of child connections under an organization account (and their details) directly in the main integrations page.
  5. When you click on the number of child (project) connections, you will be able to see details of the project connections and be able to: 
    1. Filter through child connections
    2. Sync individual child connections or sync all project accounts under the organization
    3. Rename the connection (organization or project connection)
    4. Exclude any individual project connections you don’t want integrated with Secureframe

Permissions, Fields Pulled, Controls and Automated Tests

  1. Click the provided link or navigate to the “Integration” page.
  2. Select the “Available” tab.
  3. Search for the integration.
  4. Click “View Details”.

Frequently Asked Questions (FAQ)

I have a few GCP tests showing permissions issues?

  • A common scenario for the error below is that the Cloud Resource Manager API is not enabled properly, or the key is simply typed incorrectly. This requirement is outlined in step 3 of the connection form.

 

 

Related to

Was this article helpful?

Have more questions? Submit a request

Comments

0 comments

Article is closed for comments.