Google Cloud Platform integration

Integrate Identity Security Posture Management (ISPM) with Google Cloud Platform.

Complete the steps in Google Workspace integration to integrate ISPM with Google Workspace. This is required before you can integrate with Google Cloud Platform.

Assign Google Cloud permissions

1. Sign in to the Google Cloud console as a super admin.

2. Verify that you're working on the main organization and not on a specific project.

   

3. Open the navigation menu and go to IAM & Admin IAM.

4. Optional. If you're a super administrator and don't have an Owner or an Editor role in the organization, grant these roles to yourself:

   • Click GRANT ACCESS.

   • Add yourself as a principal.

   • Assign the Owner or Editor role.

   • Remember to revoke the role after you finish the integration.

5. Click Grant access.

6. In the New Principals field, enter the client_email value of the service account that you used at the Google Workstation integration. You can find the client email in the credential JSON file that you generated while creating the service account.

7. Assign the following roles:

   • Quota Viewer

   • Security Reviewer

   • Cloud Asset Viewer

   • Organization Role Viewer

   • Organization Viewer

8. Click Save.

Enable Google Cloud APIs

1. Go to the Google Cloud console.

2. In the resource menu, select the project in which you created the service account for the Google Workstation integration.

   

3. Open the Navigation menu and go to APIs & Services Enabled APIs & services.

4. Check if these three APIs appear in the APIs & Services list:

   • Identity and Access Management (IAM) API

   • Cloud Resource Manager API

   • Cloud Asset API

5. If they aren't listed, complete these steps for each API:

   1. Click + ENABLE APIS AND SERVICES.

   2. Search for and select an API using the search bar.

   3. Select the tile corresponding to the API.

   4. Select the specific API.

   5. Click Enable.