Setting up the GCP Integration to enable Asset Discovery & Auto Checks
Important:
You must have admin rights in your GCP environment to complete the setup.
Without sufficient permissions, you wonβt be able to assign the necessary roles, enable APIs, or create service accounts.
Video: How to GCP Integration in Kertos
This video walks you through the full GCP integration setup in Kertos β from registering an application to assigning the correct permissions.
Step 1: Getting Started
- Go to the Integrations page in Kertos
- Click on Setup in GCP Integration Card
- Toggle Enable Auto Checks to
ON
Now you are ready to grant the permissions in your GCP Environment following these Instructions below
Step 2: Enable required APIs
1. Log into your Google Cloud Console as an admin user.
2. Select the project containing your relevant resources from the top navigation bar.
3. Go to APIs & Services > API Library.
4. Enable the following APIs:
Step 3: Create a Service Account
5. Navigate to IAM & Admin > Service Accounts.
6. Click the Create service account button.
7. Provide a name for the service account, e.g., 'Kertos Discovery,' and click Create and Continue.
8. Assign the following roles:
- Viewer
- Cloud Asset Viewer
- Service Usage Consumer
- Security Reviewer
9. Click Continue and then Done.
Step 4: Create and Download the Key
10. Locate the newly created Service Account in the list.
11. Open the Keys tab.
12. From the Add Key dropdown, select Create new key.
13. Choose JSON as the key type and click Create.
14. Save the downloaded private key file to your computer.
Step 5: Finalizing the GCP Integration
14. Return to the Kertos Integration Setup Page
15. Upload the dowloaded private key file
16. Click Save
19. Click again on the Integration Card to Start Sync to run your first discovery run & auto check.