Audit Google Cloud Platform in Tenable Nessus

Tenable offers the ability to audit the Google Cloud Platform (GCP) environment to detect misconfigurations in the cloud environment and account settings using Tenable Nessus. Complete the following steps to audit GCP in Tenable Nessus.

For more information on the GCP audit, see Google Cloud Platform (Nessus Compliance Checks) in the Compliance Checks Reference.

Before you begin:

Note: No pre-authorization is needed from Google to perform the audit, but a Google Cloud Platform account is required.

To audit GCP in Tenable Nessus:

  1. Log in to Tenable Nessus.

  2. Click Scans.

    The My Scans page appears.

  3. Click + New Scan.

    The Scan Templates page appears.

  4. In the Compliance section, select the Audit Cloud Infrastructure template.

    The Audit Cloud Infrastructure page Settings tab appears.

  5. In the Name box, type a descriptive name for the scan.

  6. (Optional) In the Description box, enter information to describe your scan.
  7. Click the Credentials tab.

  8. In the Categories section, click Google Cloud Platform.

    The Google Cloud Platform options appear.

  9. Click Add File and select the JSON key file downloaded during step 11 of Configure Google Cloud Platform for a Compliance Audit.

  1. Click Compliance.

  2. Click Google Cloud Platform.

    Tenable offers pre-configured compliance checks and provides the ability to upload a custom GCP audit file.

    Note: For information on creating a custom audit, see Google Cloud Platform (Nessus Compliance Checks) in the Nessus Compliance Checks Reference Guide.

  3. Click each compliance check you want to add to the scan.

  4. If you choose to add a custom audit file, click Add File and select the file to upload.

  1. Click Save.

    The credential saves and the My Scans page appears.

Note: For additional information on configuring Nessus scans, refer to the Tenable Nessus User Guide.