Skip to content

Getting Started with GCP on Prowler Cloud

Set up your GCP project to enable security scanning using Prowler Cloud.

Requirements

To configure your GCP project, you’ll need:

  1. Get the Project ID
  2. Access to Prowler Cloud

  3. Configure authentication in GCP:

    3.1 Retrieve credentials from Google Cloud

  4. Add the credentials to Prowler Cloud

Step 1: Get the Project ID

  1. Go to the GCP Console
  2. Locate your Project ID on the welcome screen

Get the Project ID

Step 2: Access Prowler Cloud

  1. Go to Prowler Cloud

  2. Navigate to Configuration > Cloud Providers

    Cloud Providers Page

  3. Click Add Cloud Provider

    Add a Cloud Provider

  4. Select Google Cloud Platform

    Select GCP

  5. Add the Project ID and optionally provide a provider alias, then click Next

    Add Project ID

Step 3: Configure Authentication in GCP

Retrieve Credentials from Google Cloud

  1. In the GCP Console, click on Activate Cloud Shell

    Activate Cloud Shell

  2. Click Authorize Cloud Shell

    Authorize Cloud Shell

  3. Run the following command:

    gcloud auth application-default login
    • Type Y when prompted

    Run Gcloud Auth

  4. Open the authentication URL provided in a browser and select your Google account

    Choose the account

  5. Follow the steps to obtain the authentication code

    Copy auth code

  6. Paste the authentication code back in Cloud Shell

    Enter Auth Code

  7. Use cat <file_name> to view the temporary credentials file

    Get the FileName

  8. Extract the following values for Prowler Cloud:

    • client_id
    • client_secret
    • refresh_token

    Get the values

Step 4: Add Credentials to Prowler Cloud

  1. Go back to Prowler Cloud and enter the required credentials, then click Next

    Enter the Credentials

  2. Click Launch Scan to begin scanning your GCP environment

    Launch Scan GCP