Google Cloud Platform integration
Resource Provider
Project Scanner
Ctrlplane’s Project Scanner provides native integration with Google Cloud Platform resources. This allows you to automatically discover and monitor resources across your GCP projects without additional configuration.
Supported resources:
- Google Kubernetes Engine Clusters
- Google Kubernetes Engine Namespaces
- vClusters Running on Google Kubernetes Engine
- Google Compute VMs
- Google Compute VPCs
The scanner authenticates using Google Service Accounts to securely access your projects. Follow these steps to get started:
Enable GCP Integration
Enable the Google Cloud Platform integration in your Ctrlplane workspace settings.
Workspace Settings > Integrations > Google Cloud
Configure Service Account Access
Add the service account to your GCP projects with the following IAM roles:
-
roles/container.clusterViewer
- Required for GKE cluster scanning -
roles/compute.networkViewer
- Required for VPC network scanning -
For GKE namespace scanning, create the following Kubernetes RBAC configuration:
Set Up Scanner
Navigate to Resources > Providers > Google > Configure
to create a new scanner in your Ctrlplane workspace.
The scanner will automatically begin discovering resources across your Google Cloud projects once configured.