[EXTERNAL] Cloud Asset Inventory product updates | Nov 11th, 2020
Sophia Yang
Google Cloud Asset Inventory Updates | November 11th, 2020
ASSET SERVICES
GA launch: IAM Policy Analyze
Figuring out access questions like "how can access this VM?" "What access does the terminated employee have?" have become so much easier with the GA launch of the Policy Analyzer. This easy to use analysis tool will look up resource hierarchy, expand groups, and map roles to permissions in order to provide a complete analysis result. Especially to call out that the analyzer also supports Service Account Impersonation analysis.You can also export the results to GCS or BQ for future reporting or analysis purposes. As part of the GA launch, we also launched the developer console support for the very first time in preview. Please check out our documentation site for more details. [Export to BigQuery Documentation] [Export to GCS Documentation]
GA launch: Export to BigQuery to per type table and partitioned table
We know that many of you use the current export to BigQuery feature frequently, yet asking for a more structured format with the exported data. You would be excited to find out that we now support exporting resource data into per resource type tables, so that it is much easier for you to write queries, with better query performance. Together with the launch, we also support partitioned tables now. So try these new features out, query away!
Resource Search update: new searchable fields
We know that being able to quickly search and find the right resources is essential to many of your tasks, so we just added more searchable fields and syntax support for the Resource Search API. For example, you can directly search based on networkIP of VM instances to find the VM you are looking for across projects.
Here is a full list of new Searchable fields:
- networkUrl in dns.googleapis.com/ManagedZone
- network, networkIP, natIP in compute.googleapis.com/Instance
- gatewayIPv4 in compute.googleapis.com/Network
- gatewayAddress in compute.googleapis.com/Subnetwork
- address in compute.googleapis.com/Address
New Search syntax:
- Support exact match "field=foo-bar" syntax in additional to partial match "field:bar" syntax.
Learn more in documentation.
ASSET COVERAGE
30+ new resource types added
Since June this year, we have made tremendous progress on asset coverage, and added 10 new services support for asset export, list, and for realtime notifications. Just to call out a few newly added services: Cloud Run, OS Config, Cloud Functions, Managed Microsoft Active Directory, Game Servers, Secret Manager.
Here is a full list of recently added resource types, check all support asset types in documentation.
If you have any questions or feedback, please email gcp-asset-inventory...@googlegroups.com.
To receive product updates from Asset Inventory, please join our mailing list here.
Thanks very much,
Google Cloud Asset Inventory team