Cloud Asset Inventory provides inventory services based on a time series database. This database keeps a five week history of Google Cloud Platform (GCP) asset metadata. The Cloud Asset Inventory export service allows you to export all asset metadata at a certain timestamp or export event change history during a timeframe.
Export asset metadata at a timestamp
The Cloud Asset Inventory export service allows you to export all the asset metadata at a given timestamp to a Cloud Storage file.
Export asset history
The Cloud Asset Inventory export service allows you to export the event change history of multiple assets during a given timeframe. The exported event change history shows you all the create, delete, and update events for the specifed assets over time.
Supported resource types
The Cloud Asset Inventory export service currently supports the following resource types in GCP:
|App Engine||GAAPI reference •
|BigQueryNote that BigQuery asset metadata and change history might be incomplete.||GAAPI reference•
|Cloud Bigtable||GAAPI reference•
|Cloud Billing||GAAPI reference•
|Cloud Dataproc||GA API reference•
|Cloud DNS||GAAPI reference•
|Cloud Identity and Access Management||GAAPI reference•
|Cloud Key Management Service||GAAPI reference•
|Cloud Pub/Sub||GA API reference•
|Cloud Spanner||GAAPI reference•
|Cloud SQL Note that Cloud SQL asset change history can be incomplete, and data freshness can be stale for up to an hour.||GAAPI reference•
|Cloud Storage||GAAPI reference•
|Compute Engine||GAAPI reference •
|Google Kubernetes Engine||GAAPI reference•
|Resource ManagerResource Manager assets in Alpha and Beta are in the process of migrating to GA. You might see data inconsistencies that can impact your data processes.||BetaAPI reference•
Supported policy types
The Cloud Asset API currently supports the following policy types in GCP:
|Policy||Launch stage/Supported resource|
|Cloud IAM||GAAPI reference •
|Organization Policy Note that Organization Policy change history can be incomplete, and data freshness can be stale for up to one day.||GAAPI reference•
|Access Policy (VPC Service Controls Policy) Note that Access Policy change history can be incomplete, and data freshness can be stale for up to 6 hours.||GAAPI reference•
An asset refers to a GCP resource or policy. Examples of resources include Compute Engine virtual machines (VMs), Cloud Storage buckets, and App Engine instances. Examples of policies include Cloud Identity and Access Management (Cloud IAM) policies and org policies.
Asset content type
Cloud Asset Inventory supports the following asset types:
Resource: Resource metadata of a GCP asset.
IAM Policy: Metadata of the Cloud IAM policy set on a GCP asset.
Organization Policy: Metadata of the organization policy set on a GCP project, folder or organization.
An asset snapshot is the set of available assets under a Resource Manager project, folder, or organization at a timestamp.
For a given asset, asset history includes all metadata create, delete, and update events between timestamp T1 and T2.