GCP Buckets
Similar to scanning AWS storage volumes you can also scan GCP Buckets.
Last updated
Similar to scanning AWS storage volumes you can also scan GCP Buckets.
Last updated
When linking an account in the CSS console, we deploy resources in a new CSS Project created in GCP through our Terraform module. Those resources will have access to the customer project(s) denoted in the deployments parameters (projects_to_protect).
Once the projects are linked, GCP buckets will be made available to be scan through the CSS Console in the Protection > GCP Buckets page. You can select buckets to scan or run scans on a schedule basis.
We offer Retro scanning for GCP.
Users or apps place files into Google Cloud Storage.
The Console Service initiates a scan request to the Cloud Run service that resides in CSS' Project that is provisioned via Terraform.
The Cloud Run Job accesses the customer's Cloud Storage and loads a list of its objects in memory, procedurally scanning each item.
Results are returned to the Console service for processing.
(Optional) The Cloud Run Job will move infected files to a Quarantine Cloud Storage that resides in CSS' Project.
For CSS scanning of GCP, Protection can mean schedule scanning (pre-defined schedule based) and on-demand (pick one or more buckets and scan immediately whenever you want).
The schedule icons shown below will reflect whether an object is associated with a schedule and whether that schedule is active or not.
You can scan pre-existing files in a bucket at anytime by selecting which bucket you'd like to scan and then selecting Scan Existing - AV in the Actions menu.
Navigate to Protection > GCP > Buckets page
Select the check mark next to the bucket name of your volume
Click Actions > Scan Existing - AV
Select your date range, prefixes (optional) and whether you'd like to scan files that have been already scanned.
Acknowledge that scanning files will result in a charge and scan selected.
You can add buckets to a schedule by selecting the buckets you want to scan on a scheduled basis and selecting Create AV Schedule in the Actions menu.
Navigate to Protection > GCP > Buckets page
Select the check mark next to the bucket name of your volume
Click Actions > Create AV Schedule
Select the Schedule tab and enter in your schedule name, scan period, schedule description (optional), files to scan, and prefixes to crawl (optional).
Acknowledge that scanning files will result in a charge and save the schedule.
Click on Schedules, find the schedule you created. Click the button with 3 dots on it and click Activate.
If you go to Monitoring > Jobs you'll be able to see the status of on-demand and scheduled retro scans for GCP Buckets.
Protected by Active Schedule -
Part of an Inactive Schedule -
Not a Part of any Schedule -