Cloud Asset Inventory provides inventory services based on a time series database. This database keeps a five week history of Google Cloud Platform (GCP) asset metadata. The Cloud Asset Inventory export service allows you to export all asset metadata at a certain timestamp or export event change history during a timeframe.
Export asset metadata at a timestamp
The Cloud Asset Inventory export service allows you to export all the asset metadata at a given timestamp to a Cloud Storage file.
Export asset history
The Cloud Asset Inventory export service allows you to export the event change history of multiple assets during a given timeframe. The exported event change history shows you all the create, delete, and update events for the specifed assets over time.
Supported resource types
Cloud Asset Inventory currently supports and returns the following resource types. You need to use the correct resource name format when using Cloud Asset Inventory.
|App Engine||GAAPI reference •
|BigQueryNote that BigQuery asset metadata and change history might be incomplete.||GAAPI reference•
|Cloud Bigtable||GAAPI reference•
|Cloud Billing||GAAPI reference•
|Cloud Dataproc||GA API reference•
|Cloud DNS||GAAPI reference•
|Cloud Identity and Access ManagementNote that
|Cloud Key Management Service||GAAPI reference•
|Cloud Pub/Sub||GA API reference•
|Cloud Spanner||GAAPI reference•
|Cloud SQL Note that Cloud SQL asset change history can be incomplete, and data freshness can be stale for up to an hour.||GAAPI reference•
|Cloud Storage||GAAPI reference•
|Compute Engine||GAAPI reference •
|Google Kubernetes Engine||GAAPI reference•
|Resource Manager||GAAPI reference•
Supported policy types
The Cloud Asset API currently supports the following policy types in GCP:
|Policy||Launch stage/Supported resource|
|Cloud IAM||GAAPI reference •
|Organization Policy Note that Organization Policy change history can be incomplete, and data freshness can be stale for up to one day.||GAAPI reference•
|Access Policy (VPC Service Controls Policy) Note that Access Policy change history can be incomplete, and data freshness can be stale for up to 6 hours.||GAAPI reference•
An asset refers to a GCP resource or policy. Examples of resources include Compute Engine virtual machines (VMs), Cloud Storage buckets, and App Engine instances. Examples of policies include Cloud Identity and Access Management (Cloud IAM) policies and org policies (currently not supported).
Asset content type
Cloud Asset Inventory supports the following asset types:
Resource: Resource metadata of a GCP asset.
IAM Policy: Metadata of the Cloud IAM policy set on a GCP asset.
An asset snapshot is the set of available assets under a Cloud Asset Inventory project, folder, or organization at a timestamp.
For a given asset, asset history includes all metadata create, delete, and update events between timestamp T1 and T2.
- Try out the Cloud Asset Inventory Quickstart to start exporting assets.