Resource Provider

Project Scanner

Ctrlplane’s Project Scanner provides native integration with Google Cloud Platform resources. This allows you to automatically discover and monitor resources across your GCP projects without additional configuration.

Supported resources:

  • Google Kubernetes Engine Clusters
  • Google Kubernetes Engine Namespaces
  • vClusters Running on Google Kubernetes Engine
  • Google Compute VMs
  • Google Compute VPCs

The scanner authenticates using Google Service Accounts to securely access your projects. Follow these steps to get started:

1

Enable GCP Integration

Enable the Google Cloud Platform integration in your Ctrlplane workspace settings.

Workspace Settings > Integrations > Google Cloud

2

Configure Service Account Access

Add the service account to your GCP projects with the following IAM roles:

  • roles/container.clusterViewer - Required for GKE cluster scanning

  • roles/compute.networkViewer - Required for VPC network scanning

  • For GKE namespace scanning, create the following Kubernetes RBAC configuration:

3

Set Up Scanner

Navigate to Resources > Providers > Google > Configure to create a new scanner in your Ctrlplane workspace. The scanner will automatically begin discovering resources across your Google Cloud projects once configured.