Onboard a GCP Service Account

You can connect your Google Cloud Platform (GCP) account using a Google service account in Tenable Cloud Security. For a detailed workflow for onboarding GCP accounts, see the Tenable Cloud Security Quick Reference Guide: Onboarding GCP Accounts.

Before you begin:

• Make sure you have the private key or GCP credentials file (JSON) for your service account and activated your service account.

  For more information, see Create a GCP Service Account and Activate the GCP Service Account.

To connect to a GCP service account from Tenable Cloud Security:

1. Log in to Tenable Vulnerability Management.

2. In the left navigation bar, click Cloud Security.

   The Tenable Cloud Security page opens. By default, a dashboard appears that shows various statistics.

3. In the left navigation bar, click > Connection > GCP service account.

4. In the Choose a workflow to discover GCP service account(s) section, click Service account credentials (recommended).

5. Click Continue.

6. To upload the service account credential file, in the Discover GCP service account(s) section, click Upload and select the private key JSON file.

7. Click Continue.

8. For the discovered account, in the Choose GCP project(s) section, do one of the following:

   • To select all available GCP projects, click All (recommended).

   • To select specific projects, click Specific, then select a GCP project.

     Tip: You can search for a specific project.

9. Click Continue.

10. (Optional) In the Choose projects to add the GCP project(s) to section, create or select a project for the GCP instance.

    • To create a new project for your GCP account, click Add a project. For more information, see Create a Project.

    • Select a project from the list.

11. Click Connect Cloud Account.

    You can view the GCP projects linked to the connected GCP account on the Projects & Connections page.