Logging and Monitoring Access Control on GCP

Difficulty: Intermediate
Duration: 2 minutes and 23 seconds
Students: 654
Rating: 4.2/5

This lesson looks at logging and monitoring access control on Google Cloud Platform. We start by looking at monitoring IAM, and you'll also learn about the IAM permissions and roles that apply specifically to monitoring. A demonstration from the GCP cloud console will show you how to grant monitoring permissions through role assignments.

Then we'll move on to monitoring access control via VPC Service Controls as well as covering cloud logging access control. We’ll start with an overview, before taking a closer look at specific IAM roles and permissions that are used to grant access to Cloud Logging. Finally, we'll look at Logs Explorer permissions and show which permissions you need to export logs.

Learning Objectives

  • Get a solid understanding of monitoring and logging access control on GCP
  • Learn about the IAM permissions and roles for monitoring
  • Learn how to monitor access control using VPC Service Controls
  • Understand the roles and permissions used to grant access to cloud logging
  • Learn Logs Explorer permissions for exporting logs

Intended Audience

This lesson is intended for anyone who wants to learn how to configure logging and monitoring access control on the GCP platform.

Prerequisites

To get the most out of this lesson, you should have some experience of using GCP, as well as knowledge of IAM principles.