GCP flow logs
Requirements for proper receiving of Google Cloud Platform flow logs.
Product: Flowmon OS
Version: 12.x and higher
How should I configure permissions to properly receive Google Cloud Platform (GCP) flow logs?
|Steps to Reproduce:|
The service account in GCP, created for reading flow logs, needs only "pubsub.subscriptions.consume" permission, alternatively pre-defined GCP role "Pub/Sub Subscriber" can be used.
The service account and Pub/Sub subscription have to have the same Project ID.
GCP CLI configuration example:
gcloud pubsub subscriptions add-iam-policy-binding SUBSCRIPTION --member=PRINCIPAL --role="roles/pubsub.subscriber"
Was this article helpful?0 out of 0 found this helpful