Types d'éléments acceptés dans Security Command Center

Cette page répertorie les éléments Google Cloud compatibles avec l'API Security Command Center Assets. L'API Security Command Center Assets est compatible avec un sous-ensemble d'éléments provenant de l'inventaire des éléments cloud, l'inventaire centralisé de Google pour les éléments gérés dans le cloud.

Dans Security Command Center, les types de ressources utilisent une convention d'attribution de noms différente de celle de l'inventaire des éléments cloud. Le tableau suivant répertorie les types d'éléments acceptés, ainsi que leur format dans Security Command Center. Les types de ressources sont utiles lorsque vous répertoriez des éléments dans l'API Security Command Center.

Tableau 1. Types d'éléments acceptés
Service Format dans l'inventaire des éléments cloud Format Security Command Center
App Engine appengine.googleapis.com/Application google.appengine.Application
appengine.googleapis.com/Service google.appengine.Service
appengine.googleapis.com/Version google.appengine.Version
Artifact Registry artifactregistry.googleapis.com/Repository google.artifactregistry.Repository
BigQuery bigquery.googleapis.com/Dataset google.cloud.bigquery.Dataset
Cloud Composer composer.googleapis.com/Environment google.composer.Environment
Cloud DNS dns.googleapis.com/ManagedZone google.cloud.dns.ManagedZone
dns.googleapis.com/Policy google.cloud.dns.Policy
Fonctions Cloud Run cloudfunctions.googleapis.com/CloudFunction google.cloud.functions.CloudFunction
Cloud Key Management Service cloudkms.googleapis.com/CryptoKey google.cloud.kms.CryptoKey
cloudkms.googleapis.com/CryptoKeyVersion google.cloud.kms.CryptoKeyVersion
cloudkms.googleapis.com/ImportJob google.cloud.kms.ImportJob
cloudkms.googleapis.com/KeyRing google.cloud.kms.KeyRing
Cloud Logging logging.googleapis.com/LogBucket google.logging.LogBucket
logging.googleapis.com/LogMetric google.logging.LogMetric
logging.googleapis.com/LogSink google.logging.LogSink
Spanner spanner.googleapis.com/Database google.spanner.Database
spanner.googleapis.com/Instance google.spanner.Instance
Cloud SQL sqladmin.googleapis.com/Instance google.cloud.sql.Instance
Cloud Storage storage.googleapis.com/Bucket google.cloud.storage.Bucket
Compute Engine compute.googleapis.com/Address google.compute.Address
compute.googleapis.com/Autoscaler google.compute.Autoscaler
compute.googleapis.com/BackendBucket google.compute.BackendBucket
compute.googleapis.com/BackendService google.compute.BackendService
compute.googleapis.com/Commitment google.compute.Commitment
compute.googleapis.com/Disk google.compute.Disk
compute.googleapis.com/Firewall google.compute.Firewall
compute.googleapis.com/ForwardingRule google.compute.ForwardingRule
compute.googleapis.com/GlobalAddress google.compute.GlobalAddress
compute.googleapis.com/GlobalForwardingRule google.compute.GlobalForwardingRule
compute.googleapis.com/HealthCheck google.compute.HealthCheck
compute.googleapis.com/HttpHealthCheck google.compute.HttpHealthCheck
compute.googleapis.com/HttpsHealthCheck google.compute.HttpsHealthCheck
compute.googleapis.com/Image google.compute.Image
compute.googleapis.com/Instance google.compute.Instance
compute.googleapis.com/InstanceGroup google.compute.InstanceGroup
compute.googleapis.com/InstanceGroupManagers google.compute.InstanceGroupManager
compute.googleapis.com/InstanceTemplate google.compute.InstanceTemplate
compute.googleapis.com/InterconnectAttachment google.compute.InterconnectAttachment
compute.googleapis.com/License google.compute.License
compute.googleapis.com/Network google.compute.Network
compute.googleapis.com/NetworkEndpointGroup google.compute.NetworkEndpointGroup
compute.googleapis.com/NodeGroup google.compute.NodeGroup
compute.googleapis.com/NodeTemplate google.compute.NodeTemplate
compute.googleapis.com/PacketMirroring google.compute.PacketMirroring
compute.googleapis.com/Project google.compute.Project
compute.googleapis.com/RegionBackendService google.compute.RegionBackendService
compute.googleapis.com/RegionDisk google.compute.RegionDisk
compute.googleapis.com/Reservation google.compute.Reservation
compute.googleapis.com/ResourcePolicy google.compute.ResourcePolicy
compute.googleapis.com/Route google.compute.Route
compute.googleapis.com/Router google.compute.Router
compute.googleapis.com/SecurityPolicy google.compute.SecurityPolicy
compute.googleapis.com/Snapshot google.compute.Snapshot
compute.googleapis.com/SslCertificate google.compute.SslCertificate
compute.googleapis.com/SslPolicy google.compute.SslPolicy
compute.googleapis.com/Subnetwork google.compute.Subnetwork
compute.googleapis.com/TargetHttpProxy google.compute.TargetHttpProxy
compute.googleapis.com/TargetHttpsProxy google.compute.TargetHttpsProxy
compute.googleapis.com/TargetInstance google.compute.TargetInstance
compute.googleapis.com/TargetPool google.compute.TargetPool
compute.googleapis.com/TargetSslProxy google.compute.TargetSslProxy
compute.googleapis.com/TargetTcpProxy google.compute.TargetTcpProxy
compute.googleapis.com/TargetVpnGateway google.compute.TargetVpnGateway
compute.googleapis.com/UrlMap google.compute.UrlMap
compute.googleapis.com/VpnGateway google.compute.VpnGateway
compute.googleapis.com/VpnGateway google.compute.VpnGateway
compute.googleapis.com/VpnTunnel google.compute.VpnTunnel
Container Registry

Remarque : Container Registry met en œuvre l'API HTTP Docker V2 et ne fournit pas d'API publique.

 containerregistry.googleapis.com/Image google.containerregistry.Image
Dataflow dataflow.googleapis.com/Job google.dataflow.Job
Dataproc dataproc.googleapis.com/Cluster google.cloud.dataproc.Cluster
Google Kubernetes Engine container.googleapis.com/Cluster google.container.Cluster
rbac.authorization.k8s.io/ClusterRole google.container.ClusterRole
rbac.authorization.k8s.io/ClusterRoleBinding google.container.ClusterRoleBinding
k8s.io/Namespace google.container.Namespace
k8s.io/Node google.container.Node
k8s.io/Pod google.container.Pod
rbac.authorization.k8s.io/Role google.container.Role
rbac.authorization.k8s.io/RoleBinding google.container.RoleBinding
k8s.io/Service google.container.Service
Identity and Access Management iam.googleapis.com/Role google.iam.Role
iam.googleapis.com/ServiceAccount google.iam.ServiceAccount
iam.googleapis.com/ServiceAccountKey google.iam.ServiceAccountKey
Pub/Sub pubsub.googleapis.com/Snapshot google.pubsub.Snapshot
pubsub.googleapis.com/Subscription google.pubsub.Subscription
pubsub.googleapis.com/Topic google.pubsub.Topic
Resource Manager cloudresourcemanager.googleapis.com/Organization google.cloud.resourcemanager.Organization
cloudresourcemanager.googleapis.com/Folder google.cloud.resourcemanager.Folder
cloudresourcemanager.googleapis.com/Project google.cloud.resourcemanager.Project
Accès au VPC sans serveur vpcaccess.googleapis.com/Connector google.vpcaccess.Connector
Service Usage serviceusage.googleapis.com/Service google.serviceusage.Service
Vertex AI aiplatform.googleapis.com/BatchPredictionJob google.aiplatform.BatchPredictionJob
aiplatform.googleapis.com/CustomJob google.aiplatform.CustomJob
aiplatform.googleapis.com/Dataset google.aiplatform.Dataset
aiplatform.googleapis.com/Endpoint google.aiplatform.Endpoint
aiplatform.googleapis.com/HyperparameterTuningJob google.aiplatform.HyperparameterTuningJob
aiplatform.googleapis.com/Model google.aiplatform.Model
aiplatform.googleapis.com/SpecialistPool google.aiplatform.SpecialistPool
aiplatform.googleapis.com/TrainingPipeline google.aiplatform.TrainingPipeline