Google Cloud Platform

Professional Enterprise

The Google Cloud Platform (GCP) integration provides visibility into your cloud assets by synchronizing your GCP cloud inventories with Rumble. Rumble also integrates with other cloud providers, such as Microsoft Azure and Amazon AWS. Similarly to other integrations, you will need to add the credentials needed to authenticate to GCP and set up a connector in Rumble. Rumble will pull in GCP compute instance VMs, pulling in GCP attributes that will be viewable from each asset.

Requirements

The following GCP asset types are supported:

  • Compute Engine instances
  • Load balancers
  • CloudSQL
  • Verify you have Rumble Professional or Rumble Enterprise.
  • Verify you have the Google Cloud service account key downloaded.
  • Verify you have the GCP Compute Engine enabled.

How to set up the Google Cloud Platform integration

Here are the high-level steps to set up the Google Cloud Platform integration:

Step 1: Download the service account key

Create and download your Google Cloud Platform service account key through the Google Cloud Console. The service account key automatically downloads as a JSON file to your system when you create it.

Step 2: Create Google Cloud Platform credentials

  1. Go to the Credentials page and click Add Credential.
  2. From the Credentials type dropdown, choose GCP Service Account Key.
  3. Provide a name for the credential, like GCP.
  4. Click Choose file to upload the service account key file you downloaded in step 1.
  5. If you want other organizations to be able to use this credential, select the Make this a global credential option. Otherwise, you can configure access on a per organization basis.
  6. Save the credential. You’re now ready to set up and activate the connection to bring in data from Google Cloud Platform.

Step 3. Activate the Google Cloud Platform connection

After you have added your Google Cloud Platform credentials, there are two ways to set up data import:

  1. Enabling the GCP probe as part of a Rumble scan.
  2. Setting up a scheduled import task.

The first option is useful if you are running self-hosted Rumble Enterprise and your console cannot talk to Google Cloud. For most situations it will be easier to set up a scheduled connection to sync your data from GCP.

A connection requires you to set a schedule and choose a site. The schedule determines when the sync occurs, and the site determines where the data is organized.

  1. Activate a connection to GCP. You can access all available connections from your inventory or Tasks page.
  2. Choose the credential you added earlier. If you don’t see the credential listed, make sure the credential has access to the organization you are currently in.
  3. Enter a name for the task, like Google Cloud Platform sync.
  4. Schedule the sync. A sync can be set to run on a recurring schedule or run once. The schedule will start on the date and time you have set.
  5. To organize your assets logically, choose the site you’d like to use to add your assets to. You can choose an existing site or add them to a new site when the sync occurs. Assigning your assets to a site helps organize and group your assets. You can automatically generate a new site per GCP project by selecting this option from the task configuration.
  6. Activate the connection when you are done. The sync will run on the defined schedule. You can check the Scheduled tasks to see when the next sync will occur.

Step 4: View your Google Cloud Platform assets

After a successful sync, you can go to your inventory to view your GCP assets. These assets will have a Google icon listed in the Source column.

To view all your GCP assets, run the following query:

source:gcp

Click into each asset to see its individual attributes. Rumble will show you the attributes returned by GCP.