GCP Integrations - User Guide

In this article, you will understand step by step how to easily integrate Scytale with GCP integrations

In this user guide, you will learn how to seamlessly connect multiple GCP services using the same credentials. This approach simplifies integration and ensures access for all GCP integrations. We will guide you through the process of setting up permissions for GCP integrated with Scytale. 

How to connect GCP integrations?

To finish the setup you will need to fill in 4 fields:

  1. Client Email
  2. Private Key
  3. Project ID

How to connect GCP integrations?


Prerequisites:

  1. Connect to Google Workspace integration (only required for GCP IAM).
  2. The following links must be enabled in Google API (described in step 1 in detail).

Step 1: Verify Google APIs are enabled 

Step 2: Create service account within GCP Console

  • Go to IAM & Admin
  • Select Service Accounts
  • Click on "Create service account"

  • Fill in the details:
    • Phase 1 - Service account details

      • Service account name - GCP-integrations
      • Service account ID - after writing the service account name, this field is automatically filled in. Click "Create and continue"

     
    • Phase 2 - Grant service account access to the following roles:
      • Cloud SQL Viewer
      • Storage Objects Viewer
      • Storage Insights Viewer
      • Compute Viewer
      • Security Reviewer
    • Phase 3 - Grant users access to this service account (optional) - No need to fill
  • Click on "Done"

Step 2:
Generate JSON file
  • Go to IAM & Admin
  • Select Service Accounts. You can see the list of all the service accounts that you have

  • Select the service account that you created in the previous step - GCP-integrations
  • Go to the "Keys" tab
  • Click on "Add Key" and select the "Create new key" option
  • In "Key type", select JSON and "Create"

  • Copy the following fields from the JSON that was downloaded:
    • client email -  please copy without ""
    • private_key - Verify that you included all key values, including "-----BEGIN PRIVATE KEY-----  n-----END PRIVATE KEY-----\n"
    • project_id - please copy without ""


Step 3: Log in to the Scytale web app

  • Click on the "Integrations" menu screen to the left.
  • Click on "Connect" to the following Azure integrations
    💡You can use the same credentials to connect all or part of the following integrations
    • GCP SQL
    • GCP Storage
    • GCP Compute Engine
    • GCP VPC
    • GCP IAM
    • GCP Firewall
    • GCP Resource Manager
    • GCP Key Management
  • Paste the generated keys from the JSON file (see step 3 above) into the connection screen of each integration:
    • Client Email
    • Private Key
    • Project ID 
  • Connection Name - is used to differentiate between your connections.
    For instance, if you manage multiple accounts or would like to connect multiple times to the integration. It's automatically titled (Connection 1,2,3 etc), but you can change it to a custom name to make it easier to identify.
    For example: scytale-production-env.
  • Click on Connect

 

Congrats, you are done! 🎉