Skip to main content
Skip table of contents

Generate GCP Credentials



Purpose

This document describes how to create Google Cloud Platform (GCP) credentials.

Introduction

Google Cloud Platform (GCP)  is a suite of cloud computing services that runs on the same infrastructure that Google uses internally. Alongside a set of management tools, it provides infrastructure as a service, platform as a service, and serverless computing environments.

Configure a GCP Account

  1. In the drop-down menu select Google Cloud Platform.

    Add GCP Credentials

  2. Add the name of your GCP account.

  3. Click the blue UPLOAD ACCESS KEY (JSON) button to select your access key file.

  4. Click blue ADD button to create the credential.

To manage your account, refer to Scan Credentials.

Create a GCP Account and Keys - Google Cloud Console

Refer to Create and Manage service accounts, to manage IAM service accounts.  

Steps to Create a Service Account

  1. Log in to Google Cloud Platform.

    Google Cloud Platform
  2. Open the Service Accounts page. 

    Service Accounts page
  3. Click on + CREATE SERVICE ACCOUNT

    Create Service Account
  4. Fill in the details and click CREATE.

  5. Add service account permissions and roles to allow a user to manage service account.

    Note

    The Service account created on GCP must have a Role set to Project Viewer without anything else.

     


    Service Account Permission

Steps to enable GCP API

  1. Enter the APIs & Services Dashboard page.

    Steps to enable GCP API


  2. Click on  + ENABLE APIS AND SERVICES on the top of the dashboard.

    Enable APIs and services


  3. Search for the required API,  Compute Engine API in this example.

    Compute Engine API


  4. Click on the API block and then enable it by clicking on the ENABLE button.

    Enable API


You need to enable the following GCP API in order to be able to run GCP Compliance policy such as "CIS Google Cloud Platform Foundation Benchmark".

  • Compute Engine API
  • Kubernetes Engine API
  • Cloud Key Management Service (KMS) API
  • Identity and Access Management (IAM) API
  • Cloud Logging API
  • Cloud Resource Manager API
  • Cloud DNS API
  • Cloud Functions API
  • Cloud SQL Admin API

You can double check GCP enabled APIs at the bottom of the "APIs & Services" Dashboard.

Steps to Create Key

  1. After granting user access, click on Create Key.

     
    Create Key


  2. Select JSON as the Key type/format and click on CREATE.


Note

Refer to Creating and Managing Service Account Keys, for detailed information regarding how to generate Access keys. The uploaded access key is the credential used to run a GCP scan.




Copyright

© 2024 Outpost24® All rights reserved. This document may only be redistributed unedited and unaltered. This document may be cited and referenced only if clearly crediting Outpost24® and this document as the source. Any other reproduction and redistribution in print or electronically is strictly prohibited without explicit permission.

Trademark

Outpost24® and OUTSCAN™ are trademarks of Outpost24® and its affiliated companies. All other brand names, product names or trademarks belong to their respective owners.


JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close