Before creating a GCP Pub/Sub integration, the Pub/Sub topic you intend to integrate with should already exist in your GCP account. You may reuse the service account created in your Warden setup, but please ensure that the Pub/Sub Publisher role has been granted to the service account.
Granting Pub/Sub Publisher Role
-
Go to the main IAM page.
-
To grant a role to a principal who already has other roles on the resource, find a row containing the principal, click Edit principal in that row, and click Add another role. To grant a role to a principal who does not already have other roles on the resource, click Grant Access, then enter the principal's email address or other identifier.
- Click Save. The principal is granted the role on the resource.
Creating a GCP Pub/Sub Outbound Integration
- Go to Settings > Integrations
-
Click Configuration under GCP Pub/Sub. The GCP Pub/Sub Configuration menu should slide out from the right.
-
Click Add a New Pub/Sub Topic Destination.
-
Input the Project ID, Pub/Sub Topic ID, and Service Account Credentials (in JSON format).
- Click Save Changes.
Deleting a GCP Pub/Sub Outbound Integration
- Click on the red minus sign next to the Pub/Sub topic to delete an existing Pub/Sub integration. You can delete the Pub/Sub destination provided that it is not used by an existing Scan Group or Monitoring Group (set to Active).
- Click Remove on the confirmation dialog.
