You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/active-directory/cloud-infrastructure-entitlement-management/onboard-gcp.md
+28Lines changed: 28 additions & 0 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -47,6 +47,24 @@ To view a video on how to configure and onboard GCP accounts in Permissions Mana
47
47
48
48
### 2. Set up a GCP OIDC project.
49
49
50
+
Choose from 3 options to manage GCP projects.
51
+
52
+
#### Option 1: Automatically manage
53
+
54
+
This option allows projects to be automatically detected and monitored without additional configuration. Steps to detect list of projects and onboard for collection:
55
+
56
+
- Grant Viewer and Security Reviewer role to service account created in previous step at organization, folder or project scope.
57
+
58
+
Any current or future projects found get onboarded automatically.
59
+
60
+
To view status of onboarding after saving the configuration:
61
+
62
+
- Navigate to data collectors tab.
63
+
- Click on the status of the data collector.
64
+
- View projects on the In Progress page
65
+
66
+
#### Option 2: Enter authorization systems
67
+
50
68
1. In the **Permissions Management Onboarding - GCP OIDC Account Details & IDP Access** page, enter the **OIDC Project ID** and **OIDC Project Number** of the GCP project in which the OIDC provider and pool will be created. You can change the role name to your requirements.
51
69
52
70
> [!NOTE]
@@ -59,6 +77,16 @@ To view a video on how to configure and onboard GCP accounts in Permissions Mana
59
77
You can either download and run the script at this point or you can do it in the Google Cloud Shell, as described [later in this article](onboard-gcp.md#4-run-scripts-in-cloud-shell-optional-if-not-already-executed).
60
78
1. Select **Next**.
61
79
80
+
#### Option 3: Select authorization systems
81
+
82
+
This option detects all projects that are accessible by the Cloud Infrastructure Entitlement Management application.
83
+
84
+
- Grant Viewer and Security Reviewer role to service account created in previous step at organization, folder or project scope.
85
+
- Click Verify and Save.
86
+
- Navigate to newly create Data Collector row under GCP data collectors.
87
+
- Click on Status column when the row has “Pending” status
88
+
- To onboard and start collection, choose specific ones from the detected list and consent for collection.
89
+
62
90
### 3. Set up GCP member projects.
63
91
64
92
1. In the **Permissions Management Onboarding - GCP Project Ids** page, enter the **Project IDs**.
0 commit comments