P0 App Documentation
Sign up for FreeKnowledge Base
  • What Is P0?
    • πŸŽ›οΈIAM Dashboard
    • πŸ”ŽAccess Inventory
    • πŸͺ‘IAM Posture
    • ⏱️Just-In-Time Access
    • ♻️Service-Account Key Rotation
  • Getting Started
    • ⬇️Quick Start
    • 🎁Share P0 With Your Team
  • INVENTORY
    • πŸ—ΊοΈAccess Inventory
    • πŸ”¬Result Details
    • ❔Query Search
      • πŸ“–Search Reference
  • Posture
    • βš–οΈPosture Overview
  • Monitor Results
  • πŸ€”Finding Details
  • ORCHESTRATION
    • ⏰Just-in-time access
      • πŸ–οΈRequesting Access
        • πŸ‘‰For Another Party
      • 🏁Approving Access
        • Pre-approving Access
      • πŸ”€Request Routing
        • Google Cloud Filtering
        • AWS Filtering
      • πŸ—’οΈSession Recording
        • πŸ“¦AWS
      • πŸ”ŒJust-in-time API
        • Command API
        • Access Requests API
        • Routing Rules API
  • Environments
    • ☁️Creating an Environment
    • πŸ““Environment Terminology
    • βš™οΈSettings
  • Integrations
    • πŸ“žNotifier integrations
      • πŸ’¬Slack
      • πŸ‘¬Microsoft Teams
      • βœ‰οΈEmail
      • πŸ“£Custom Notifiers
        • AWS Lambda Notifier
    • πŸ”‘Resource integrations
      • ☁️Google Cloud
        • Security Perimeter
        • Requesting Access
        • Permissions Reference
          • Cloud Storage
          • Compute Engine
        • Function Caller
      • πŸ“¦AWS
        • Requesting Access
        • AWS Integration API
        • Function Caller
      • ☸️Kubernetes
        • Requesting Access
        • Advanced Requests
      • πŸ”‹PostgreSQL
        • Requesting Access
      • ❄️Snowflake
      • πŸ–₯️SSH
      • GitHub
        • Requesting Access
      • πŸ› οΈCustom Resource
        • Installing a Custom Resource Integration
    • πŸ‘₯Directory integrations
      • Microsoft Entra ID
        • Requesting Access
      • Google Workspace
      • Okta
    • βœ”οΈApproval integrations
      • πŸ””PagerDuty
    • ⚑SIEM Integrations
      • Splunk HEC Setup
  • πŸ“Tracker integrations
    • 🎟️Jira
  • P0 Management
    • 🎩Role-Based Access Control
    • πŸ”ŒManagement API
      • Role Management API
      • Just-in-time settings API
Powered by GitBook
On this page
  • Prerequisites
  • Install Security Perimeter
  1. Integrations
  2. Resource integrations
  3. Google Cloud

Security Perimeter

This page describes how to setup cloud run based security perimeter for P0 to provide access to your Google Cloud project.

PreviousGoogle CloudNextRequesting Access

Last updated 23 days ago

Prerequisites

  • Existing Google project where you want to install P0 Security perimeter. General guidance is to create a separate google cloud project to deploy security perimeter.

  • Permissions to create GCP cloud run service, GCP roles and add IAM bindings to your Google project(s).

    • Editor Role on the project, can also be used to setup security perimeter.

Contact P0 support for access to the GCP security perimeter code repo.

Install Security Perimeter

  1. Choose the IAM management security perimeter component.

  1. Click Add project to install a new project.

  1. Enter the Google project name into the Project identifier field.

  1. The resulting page will display GCP commands to complete the installation. Run these instructions in google cloud shell

  1. Copy and run the given provided command to retrieve the cloud run url from the cloud shell.

  1. Click Finish to complete the installation.

Congratulations! You can now install Google Cloud IAM management component.

πŸ”‘
☁️
Prerequisites
Install Security perimeter
Setup your P0 organization.