Certified Google Cloud Architect

Author Archives: anuj - Page 5

Object level permissions in GCP Storage

anuj January 19, 2024 Object level permissions in GCP Storage2024-01-19T00:45:37+00:00 No Comment

How do you ensure that individual Object level permissions can be set in GCP Storage? Disable Uniform Access (set Fine Grained Access to true). This will allow you to use…

Scopes and GCP Service Accounts

anuj January 18, 2024 Scopes and GCP Service Accounts2024-01-18T17:16:41+00:00 No Comment

Scopes let you control what services / APIs can be called from DEFAULT service accounts. Only Default SAs get to be defined by scopes (since their default scope can be…

Centralized Logging in GCP – Log Analytics Buckets

anuj January 17, 2024 Centralized Logging in GCP – Log Analytics Buckets2024-01-17T16:41:40+00:00 Logging and Monitoring No Comment

Logs - Platform Logs, Application Logs and Networking Logs Platform Logs - are three types of auditable activities: Data Access, Admin Activity, and System Event activity. And thus, there are…

VM Instance Level Metrics in GCP

anuj January 17, 2024 VM Instance Level Metrics in GCP2024-01-17T16:19:20+00:00 No Comment

GCP VM Level Monitoring metrics Active Metric Categories Firewall Metrics - Remember that FW rules are applied at the instance level in GCP. So Ingress Bytes and Egress Bytes are…

Connecting ServiceNow to GCP

anuj January 11, 2024 Connecting ServiceNow to GCP2024-01-17T16:37:57+00:00 No Comment

Need Help with your GCP Project? Contact a certified professional GoogleCloudArchitect today. What are we trying to do? There are going to be discovered VMs through service now discovery. These…

Windows Server VMs on GCP Compute Engine

anuj January 10, 2024 Windows Server VMs on GCP Compute Engine2024-01-11T18:26:14+00:00 Compute Engine No Comment

Quick tips for creating and installing a windows server VM on GCP The creation of the instance is straightforward - pick the instance name, the boot disk, any special networking…

Sandbox Environments on Google Cloud

anuj October 20, 2023 Sandbox Environments on Google Cloud2023-10-20T17:19:21+00:00 GCP Infrastructure No Comment

also read - AWS isolated sandbox environments More importantly, how do you control user access to these sandboxes? And what if your sandbox needed applications (say your own inhouse apps)…

reusable sandbox environments in AWS

anuj October 20, 2023 reusable sandbox environments in AWS2023-10-20T17:12:49+00:00 AWS 1 Comment

AWS innovation sandbox provides a way to create a separate sandbox account that can be managed from a management account. Along with the account level separation, network isolation is provided…

Grouping multiple service accounts

anuj October 10, 2023 Grouping multiple service accounts2024-01-15T01:28:18+00:00 GCP IAM No Comment

What if I need to group multiple service accounts (for example - if I need to attach the same role to all the SAs)? You cannot create an AD group…

Mitigating GCP Service Accounts – Constraints, Default Grants and Limiting Scope

anuj October 10, 2023 Mitigating GCP Service Accounts – Constraints, Default Grants and Limiting Scope2024-01-15T01:55:55+00:00 GCP IAM No Comment

Are there org level constraints around creating custom roles? No. Are there org level constraints around granting Cross Account access to service accounts? Yes. There is a constraint that will…

«‹3 456 7 ›»