search
Ctrlk
Sprinto DashboardAPI Reference

GCP Integration (Old Flow)

hashtag
Connect GCP Using Previous Methods

These methods apply to organisations that integrated Google Cloud Platform (GCP) before the Workload Identity Federation (WIF) upgrade introduced on December 6, 2024.

The legacy integration uses service account JSON keys for authentication. This method requires periodic key rotation and is less secure than the WIF-based integration.

Sprinto recommends migrating to the Workload Identity Federation (WIF) method whenever possible.

Before continuing, complete the steps in Navigate to the GCP integration in Sprinto.

hashtag
Legacy Method 1: Cloud Shell (JSON Key-Based)

This method automatically creates the required service account and permissions using a setup script executed in Google Cloud Shell.

hashtag
Step 1: Run Bash Script in Cloud Shell

  1. Enter the Project Id.

  2. Select the Use Google Cloud Shell check box.

  3. Click Continue.

  1. Copy the provided script.

  2. Run it in Google Cloud Shell.

  3. The script creates:

    • Service account

    • Security Reviewer role assignment

    • Required APIs

hashtag
Step 2: Download JSON Key

When prompted:

  • Download the generated JSON private key file.

hashtag
Step 3: Upload Key in Sprinto

  1. Upload the JSON file in Sprinto.

  2. The Connect button becomes active.

  3. Click Connect.

circle-exclamation

hashtag
Important

Rotate this key every 90 days.

hashtag
Legacy Method 2: Manual (JSON Key-Based)

Use this method if you prefer to create the service account and permissions manually in Google Cloud.

hashtag
Step 1: Create Service Account

  1. Enter the Project Id.

  2. Select the Set up service account manually check box.

  3. Click Continue.

  1. Log in to GCP.

  2. Navigate to IAM & Admin → Service Accounts.

  3. Click Create service account.

  4. Assign roles:

    • Security Reviewer

    • Compute Viewer

    • Monitoring Editor

  5. Click Done.

hashtag
Step 2: Create Access Keys

  1. Open the newly created service account.

  2. Click Actions → Manage Keys.

  3. Click Add Key → Create new key.

  4. Select JSON.

  5. Click Create.

  1. Download the key file.

hashtag
Step 3: Enable Required APIs

Enable the required APIs in each production project.

hashtag
Step 4: Upload JSON Key in Sprinto

  1. Upload the downloaded JSON key file.

  2. Click Connect.

circle-exclamation

hashtag
Important

Rotate this key every 90 days.

Last updated