Cloud computing platforms
      Back to home
      1. Knowledge Base
      2. Streamline your process with integrations
      3. Cloud computing platforms

      Set up your Google Cloud Platform integration

      This tutorial explains how to set up integration between your GCP and Autobahn Fit account

      Table of content

      Autobahn Fit’s integration with Google Cloud Platform

      Required preparation on the GCP side

      Navigate to the GCP Integration page

      Enable or disable your integration

      Update your GCP integration configuration

      View your GCP assets on the Assets page

      Autobahn Fit's integration with Google Cloud Platform

      When starting a scan, Autobahn Fit automatically discovers external assets related to your company. Uploading your GCP service account credentials enables Autobahn to automatically retrieve a list of your running GCP compute instances. These cloud IPs, along with any other assets Autobahn Fit discovers with the asset discovery engine, are used as targets for the scanning engine.

      Required preparation on the GCP side

      To enable this integration, several steps need to be done:

      • Creation of GCP credentials
      • Generation of GCP Key
      • Enabling API, and
      • Granting user access

      Create your GCP credentials

      There are two ways you can set up your GCP integration in Autobahn Fit:

      • Using a single credential (global), or
      • Differentiating by zone.

      If you want to set a single credential, you need to make sure that the credential you are creating here gets access to the root project (i.e. the project in GCP where all your other projects are assigned to). Doing so will mean that any projects under its root can be accessed immediately.

      1 - Login to your Google Cloud Console portal.

      2 - Navigate to APIs & Services > Credentials.

      3 - Click on the CREATE CREDENTIALS button and choose Service account.

      4 - Enter the basic information for the service account, then click the CREATE AND CONTINUE button.

       

      Generate Key

      1 - After the service account has been created, navigate to Manage service account.

      2 - In the chosen service account, navigate to Actions column, and choose Manage keys.

      3 - Open the detail information of the selected service account, open the Keys tab.

      4 - In the ADD KEY dropdown menu, you can create a new key or upload an existing public key. For the private key, it need to be saved in the JSON format. The structure of JSON format can be seen in the following link.

      5 - Click the CLOSE button to close the box.
      To learn more about GCP keys and their importance in the integration process, you can refer to the official documentation provided by Google Cloud Platform.

      Enable the API

      The API will be used to give an access for asset discovery in reading the resource in the GCP.

      1 - In the APIs & Services, redirect to Enabled APIs & Services page.

      2 - Click the ENABLE APIS AND SERVICES button, you will be redirected into GCP product.

      3 - Enable the Cloud Resource Manager API and Compute Engine API.

      Grant user access

      Based on the GCP resource hierarchy, we can set the coverage/visibility of our asset based on which access was given.

      1 - In the project selection (top right of the GCP dashboard), choose the desired highest level of visibility.

       
      gcp 1

      2 - In the selected level, open IAM & Admin, then open IAM page.

      3 - Click on the GRANT ACCESS button.

      4 - In the Grant Access drawer, select the principal (service account) that will be granted access.

      5 - In the Assign roles, add Browser and Compute Viewer as the role.

      gcp 2

      Let's now set up the integration! Go to this user guide for more information: Set up your Google Cloud Platform integration

      Integrate your GCP with Autobahn Fit

      After the preparation on your GCP is done, you can integrate your GCPn with Autobahn Fit by logging into your Autobahn Fit account.

      1 - Navigate to the Integration page by clicking the Integrations button on the sidebar.

      2 - Click the Configure button on the Google Cloud Platform card.

      3 - You will be directed to the GCP integration page. In this page, input the integration label on the Label field.
      4 - Select whether you want to do the integration for a specific timezone, or using global credentials.

      If you chose a timezone, click on the Select timezone dropdown and select your GCP timezone.

      5 - Upload your GCP private key.

      6 - After you fill all the fields to save the credentials click the Test and Save button.

      Enable or disable your integration

      After you integrate your GCP account, you can enable or disable the integration by:

      1 - Navigate to the Integrations page.

      2 - Switch off the toggle on the top right of the GCP card.

      Disabling your integration will keep the credentials and the previously pulled data in our platform, but will stop the automatic data collection.

      Update your GCP integration configuration

      1 - Navigate to the Integrations page.

      2 - Click the Edit button on the bottom of the GCP Software card.

      3 - You will be directed to the GCP Integration page. Click the Reset button to remove the existing credentials.

      4 - After clicking the Reset button, you can add the new credentials into the fields.

      Reseting the credentials will not affect the data that has been pulled into Autobahn Fit.

      View your GCP assets on the Assets page

      After you enable the integration, the assets will appear on the Assets page. You can see the data source in the Source column.