The scripts here are being used when onboarding to CloudGuard Intelligence through the UI. Here is additional info on how to do that: GCP Onboarding Documentation
- Onboard your GCP Project to CloudGuard Intelligence
- Offboard your GCP Project from CloudGuard Intelligence
The script provided will create the following resources:
1️⃣ Service account "cloudguard-logs-authentication"
2️⃣ Topic "cloudguard-topic"
3️⃣ Subscription "cloudguard-subscription"
4️⃣ Sink "cloudguard-sink"
1️⃣ Make sure that you are logged in to your GCP account before starting the Intelligence onboarding wizard in the CloudGuard portal.
2️⃣ At first, you will be asked to trust our repo. Please confirm.
Note: In case you didn't check the "Trust repo" checkbox, you will encounter error messages.
The solution is to : click on "Session information" button in the right side of the screen and "Return to default Cloud Shell" and then exit the window and click again on the "Open in Cloudshell" button.
3️⃣ Follow the instructions in the Tutorial panel:
-
Run the script (copy it, paste it to the terminal and click Enter)
-
During the deployment, your project will be set as default and you will be asked to authorize Cloud Shell.
-
Note: If you have previously onboarded this project to Intelligence, the script will run a clean up before handling the new onboarding. Make sure to approve it in the terminal window.
4️⃣ After the script finishes running, the terminal should show:
+ Project Successfully Onboarded❗ Please do not forget to click on "NEXT" button in the CloudGuard onboarding wizard in your CloudGuard account. This step is mendatory to activate Intelligence on your GCP projects.
Good Luck!
.png)