Scytale

In this user guide, you will learn how to seamlessly connect multiple GCP services using the same credentials. This approach simplifies integration and ensures access for all GCP integrations. We will guide you through the process of setting up permissions for GCP integrated with Scytale. 

To enable Scytale to collect evidence across GCP services, your service account must be granted the following read-only roles:

Storage Insights Collector Service

- Cloud SQL Viewer
- Storage Insights Collector Service
- Storage Insights Viewer
- Compute Viewer
- Security Reviewer

These roles ensure the integration has the necessary permissions to retrieve data for audit purposes across selected GCP resources.

How to Connect Scytale and GCP Integrations

Search for any of the supported GCP integrations (see list below) and click 'Connect'.

Click 'Upload JSON File' and attach the JSON file generated from your GCP console (see instructions below) and select 'Connect'. The required fields (client ID, project ID, private key, etc.) will be auto-populated from the file.

Add a connection name – this will be used to differentiate between your connections – and then select 'Next'.

Click 'Connect' to complete the integration.

1. In Scytale, go to 'Integrations'.
 
2. Search for any of the supported GCP integrations (see list below) and click 'Connect'.

3. Click 'Upload JSON File' and attach the JSON file generated from your GCP console (see instructions below) and select 'Connect'. The required fields (client ID, project ID, private key, etc.) will be auto-populated from the file.

4. Add a connection name – this will be used to differentiate between your connections – and then select 'Next'.
 
5. Click 'Connect' to complete the integration.

You have now successfully connected to your GCP integration!

How to Create a Service Account in GCP

Note: Connecting to the Google Workspace integration is required if you are integrating with GCP IAM.

Make sure the following Google APIs are enabled in your GCP project:

Enable these APIs via APIs &amp; Services → Library:

<a href="https://console.developers.google.com/apis/api/serviceusage.googleapis.com/overview" rel="nofollow noopener noreferrer" target="_blank">Service Usage API</a>

<a href="https://console.developers.google.com/apis/api/cloudresourcemanager.googleapis.com/overview" rel="nofollow noopener noreferrer" target="_blank">Cloud Resource Manager API</a>

<a href="https://console.developers.google.com/apis/api/sqladmin.googleapis.com/overview" rel="nofollow noopener noreferrer" target="_blank">Cloud SQL Admin API</a>

<a href="https://console.cloud.google.com/apis/api/compute.googleapis.com/overview" rel="nofollow noopener noreferrer" target="_blank">Compute Engine API</a>

<a href="https://console.cloud.google.com/apis/api/storage-component.googleapis.com/overview" rel="nofollow noopener noreferrer" target="_blank">Cloud Storage API</a>

<a href="https://console.cloud.google.com/apis/api/cloudkms.googleapis.com/overview" rel="nofollow noopener noreferrer" target="_blank">Cloud KMS API</a>

- <a href="https://console.developers.google.com/apis/api/serviceusage.googleapis.com/overview" rel="nofollow noopener noreferrer" target="_blank">Service Usage API</a>
- <a href="https://console.developers.google.com/apis/api/cloudresourcemanager.googleapis.com/overview" rel="nofollow noopener noreferrer" target="_blank">Cloud Resource Manager API</a>
- <a href="https://console.developers.google.com/apis/api/sqladmin.googleapis.com/overview" rel="nofollow noopener noreferrer" target="_blank">Cloud SQL Admin API</a>
- <a href="https://console.cloud.google.com/apis/api/compute.googleapis.com/overview" rel="nofollow noopener noreferrer" target="_blank">Compute Engine API</a>
- <a href="https://console.cloud.google.com/apis/api/storage-component.googleapis.com/overview" rel="nofollow noopener noreferrer" target="_blank">Cloud Storage API</a>
- <a href="https://console.cloud.google.com/apis/api/cloudkms.googleapis.com/overview" rel="nofollow noopener noreferrer" target="_blank">Cloud KMS API</a>

Here's how it should appear when enabled:

How to Create a Service Account Key (JSON File)

In the GCP console, go to IAM &amp; Admin → Service Accounts.

Click Create service account and complete:

- Service account name: e.g., <code>GCP-integrations</code>
- The Service account ID will auto-fill. Click Create and continue.

- <code>Cloud SQL Viewer</code>
- <code>Storage Insights Collector Service</code>
- <code>Storage Insights Viewer</code>
- <code>Compute Viewer</code>
- <code>Security Reviewer</code>

From the Service Accounts list, select the newly created account.

Go to the 'Keys' tab → click 'Add Key' → select 'Create new key'.

- Key type: Select JSON and click Create.

Save the downloaded JSON file — you will upload it into Scytale.

Grant users access to this service account (optional) - No need to fill

1. In the GCP console, go to IAM &amp; Admin → Service Accounts.
2. Click Create service account and complete:
 - Service account name: e.g., <code>GCP-integrations</code>
 - The Service account ID will auto-fill. Click Create and continue.

3. Assign the following roles:
 - <code>Cloud SQL Viewer</code>
 - <code>Storage Insights Collector Service</code>
 - <code>Storage Insights Viewer</code>
 - <code>Compute Viewer</code>
 - <code>Security Reviewer</code>
4. Click Done.
5. From the Service Accounts list, select the newly created account.
6. Go to the 'Keys' tab → click 'Add Key' → select 'Create new key'.
 
 - Key type: Select JSON and click Create.
7. Save the downloaded JSON file — you will upload it into Scytale.

8. Grant users access to this service account (optional) - No need to fill 

9. Click on "Done"

In this article, you will understand step by step how to easily integrate Scytale with GCP integrations

GCP Integrations - User Guide

Create a custom design with text, images, and links

Support

Find answers and get help from Intercom Support and Community Experts

This site employs cookies and other technologies that we and our third party vendors use to monitor and record personal information about you and your interactions with the site (including content viewed, cursor movements, screen recordings, and chat contents) for the purposes described in our Cookie Policy. By continuing to visit our site, you agree to our {websiteTermsLink}, {privacyPolicyLink} and {cookiePolicyLink}.

This site uses cookies and similar technologies ("cookies") as strictly necessary for site operation. We and our partners also would like to set additional cookies to enable site performance analytics, functionality, advertising and social media features. See our {cookiePolicyLink} for details. You can change your cookie preferences in our Cookie Settings.

We use cookies to make our site work and also for analytics and advertising purposes. You can enable or disable optional cookies as desired. See our {cookiePolicyLink} for more details.

Advertising cookies are set by our advertising partners to collect information about your use of the site, our communications, and other online services over time and with different browsers and devices. They use this information to show you ads online that they think will interest you and measure the ads' performance. Social media cookies are set by social media platforms to enable you to share content on those platforms, and are capable of tracking information about your activity across other online services for use as described in their privacy policies.

These cookies enable the website to provide enhanced functionality and personalisation. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies then some or all of these services may not function properly.

These cookies are necessary for the website to function and cannot be switched off in our systems.

These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site.

You have the right to opt out of the sale of your personal information. See our {cookiePolicyLink} for more details about how we use your data.

Your Privacy Choices

We use cookies to enhance your experience. You can customize your cookie preferences below. See our {cookiePolicyLink} for more details.

Cookie Settings

Empty Help Center

Uh oh. That page doesn’t exist.

Home

Search results

Disappointed

Neutral

Smiley

Thinking...

Searching through sources...

Analyzing...

Tickets submitted through the messenger or by a support agent in your conversation will appear here.

GCP Integrations - User Guide

Permissions for GCP Integrations

How to Connect Scytale and GCP Integrations

How to Create a Service Account in GCP

How to Create a Service Account Key (JSON File)