Troubleshooting GCP Onboarding

After successfully onboarding your GCP Google® Cloud Platform - a suite of cloud computing services that runs on the same infrastructure that Google uses internally for its end-user products, such as Google Search, Gmail, Google Drive, and YouTube. Projects, make sure there are no errors that prevent CloudGuard from evaluating your GCP projects. Most of the errors relate to invalid credentials (access denied) or missing permissions.

To troubleshoot:

1. Open Assets > Environments.

2. Click the filter.

3. Select:

   • Status: Error and Warning

   • Platform: GCP

4. Put the cursor on the Status column items to see tool-tip warnings.

• Invalid credentials - The Cloudguard-Connect service account you created does not have sufficient permissions to communicate with your GCP environment

• Missing permissions - The Cloudguard-Connect service account does not have sufficient permissions to get data from specific GCP projects

5. Click on the related GCP asset.

6. Click Show more for possible remediation steps.

7. Click Validate Permissions.

8. Click VALIDATE.

   CloudGuard automatically validates the permissions, dismisses the warning, and updates the environment status in two to three minutes.

Note - If automatic validation fails, for troubleshooting purposes, onboard your GCP project again.