Cette page répertorie les éléments Google Cloud compatibles avec Security Command Center. Ce service accepte un sous-ensemble d'éléments provenant de l'inventaire des éléments cloud, l'inventaire centralisé de Google pour les éléments gérés dans le cloud.
Dans Security Command Center, les types de ressources utilisent une convention d'attribution de noms différente de celle de l'inventaire des éléments cloud. Le tableau suivant répertorie les types d'éléments acceptés, ainsi que leur format dans Security Command Center. Les types de ressources sont utiles lorsque vous répertoriez des éléments dans l'API Security Command Center.
| Service | Format dans l'inventaire des éléments cloud | Format Security Command Center |
|---|---|---|
| App Engine |
appengine.googleapis.com/Application
|
google.appengine.Application
|
appengine.googleapis.com/Service
|
google.appengine.Service |
|
appengine.googleapis.com/Version
|
google.appengine.Version
|
|
| Artifact Registry |
artifactregistry.googleapis.com/Repository |
google.artifactregistry.Repository |
| BigQuery |
bigquery.googleapis.com/Dataset |
google.cloud.bigquery.Dataset |
| Cloud Composer |
composer.googleapis.com/Environment |
google.composer.Environment |
| Cloud DNS |
dns.googleapis.com/ManagedZone |
google.cloud.dns.ManagedZone |
dns.googleapis.com/Policy |
google.cloud.dns.Policy |
|
| Cloud Functions |
cloudfunctions.googleapis.com/CloudFunction |
google.cloud.functions.CloudFunction |
| Cloud Key Management Service |
cloudkms.googleapis.com/CryptoKey |
google.cloud.kms.CryptoKey |
cloudkms.googleapis.com/CryptoKeyVersion |
google.cloud.kms.CryptoKeyVersion |
|
cloudkms.googleapis.com/ImportJob |
google.cloud.kms.ImportJob |
|
cloudkms.googleapis.com/KeyRing |
google.cloud.kms.KeyRing |
|
| Cloud Logging |
logging.googleapis.com/LogBucket |
google.logging.LogBucket |
logging.googleapis.com/LogMetric |
google.logging.LogMetric |
|
logging.googleapis.com/LogSink |
google.logging.LogSink |
|
| Cloud Spanner |
spanner.googleapis.com/Database |
google.spanner.Database |
spanner.googleapis.com/Instance |
google.spanner.Instance |
|
| Cloud SQL |
sqladmin.googleapis.com/Instance |
google.cloud.sql.Instance |
| Cloud Storage |
storage.googleapis.com/Bucket |
google.cloud.storage.Bucket |
| Compute Engine |
compute.googleapis.com/Address |
google.compute.Address |
compute.googleapis.com/Autoscaler |
google.compute.Autoscaler |
|
compute.googleapis.com/BackendBucket |
google.compute.BackendBucket |
|
compute.googleapis.com/BackendService |
google.compute.BackendService |
|
compute.googleapis.com/Commitment |
google.compute.Commitment |
|
compute.googleapis.com/Disk |
google.compute.Disk |
|
compute.googleapis.com/Firewall |
google.compute.Firewall |
|
compute.googleapis.com/ForwardingRule |
google.compute.ForwardingRule |
|
compute.googleapis.com/GlobalAddress |
google.compute.GlobalAddress |
|
compute.googleapis.com/GlobalForwardingRule |
google.compute.GlobalForwardingRule |
|
compute.googleapis.com/HealthCheck |
google.compute.HealthCheck |
|
compute.googleapis.com/HttpHealthCheck |
google.compute.HttpHealthCheck |
|
compute.googleapis.com/HttpsHealthCheck |
google.compute.HttpsHealthCheck |
|
compute.googleapis.com/Image |
google.compute.Image |
|
compute.googleapis.com/Instance |
google.compute.Instance |
|
compute.googleapis.com/InstanceGroup |
google.compute.InstanceGroup |
|
compute.googleapis.com/InstanceGroupManagers |
google.compute.InstanceGroupManager |
|
compute.googleapis.com/InstanceTemplate |
google.compute.InstanceTemplate |
|
compute.googleapis.com/InterconnectAttachment |
google.compute.InterconnectAttachment |
|
compute.googleapis.com/License |
google.compute.License |
|
compute.googleapis.com/Network |
google.compute.Network |
|
compute.googleapis.com/NetworkEndpointGroup |
google.compute.NetworkEndpointGroup |
|
compute.googleapis.com/NodeGroup |
google.compute.NodeGroup |
|
compute.googleapis.com/NodeTemplate |
google.compute.NodeTemplate |
|
compute.googleapis.com/PacketMirroring |
google.compute.PacketMirroring |
|
compute.googleapis.com/Project |
google.compute.Project |
|
compute.googleapis.com/RegionBackendService |
google.compute.RegionBackendService |
|
compute.googleapis.com/RegionDisk |
google.compute.RegionDisk |
|
compute.googleapis.com/Reservation |
google.compute.Reservation |
|
compute.googleapis.com/ResourcePolicy |
google.compute.ResourcePolicy |
|
compute.googleapis.com/Route |
google.compute.Route |
|
compute.googleapis.com/Router |
google.compute.Router |
|
compute.googleapis.com/SecurityPolicy |
google.compute.SecurityPolicy |
|
compute.googleapis.com/Snapshot |
google.compute.Snapshot |
|
compute.googleapis.com/SslCertificate |
google.compute.SslCertificate |
|
compute.googleapis.com/SslPolicy |
google.compute.SslPolicy |
|
compute.googleapis.com/Subnetwork |
google.compute.Subnetwork |
|
compute.googleapis.com/TargetHttpProxy |
google.compute.TargetHttpProxy |
|
compute.googleapis.com/TargetHttpsProxy |
google.compute.TargetHttpsProxy |
|
compute.googleapis.com/TargetInstance |
google.compute.TargetInstance |
|
compute.googleapis.com/TargetPool |
google.compute.TargetPool |
|
compute.googleapis.com/TargetSslProxy |
google.compute.TargetSslProxy |
|
compute.googleapis.com/TargetTcpProxy |
google.compute.TargetTcpProxy |
|
compute.googleapis.com/TargetVpnGateway |
google.compute.TargetVpnGateway |
|
compute.googleapis.com/UrlMap |
google.compute.UrlMap |
|
compute.googleapis.com/VpnGateway |
google.compute.VpnGateway |
|
compute.googleapis.com/VpnGateway |
google.compute.VpnGateway |
|
compute.googleapis.com/VpnTunnel |
google.compute.VpnTunnel |
|
| Container Registry Remarque : Container Registry met en œuvre l'API HTTP Docker V2 et ne fournit pas d'API publique. |
containerregistry.googleapis.com/Image |
google.containerregistry.Image |
| Dataflow |
dataflow.googleapis.com/Job |
google.dataflow.Job |
| Dataproc |
dataproc.googleapis.com/Cluster |
google.cloud.dataproc.Cluster |
| Google Kubernetes Engine |
container.googleapis.com/Cluster |
google.container.Cluster |
rbac.authorization.k8s.io/ClusterRole |
google.container.ClusterRole |
|
rbac.authorization.k8s.io/ClusterRoleBinding |
google.container.ClusterRoleBinding |
|
k8s.io/Namespace |
google.container.Namespace |
|
k8s.io/Node |
google.container.Node |
|
k8s.io/Pod |
google.container.Pod |
|
rbac.authorization.k8s.io/Role |
google.container.Role |
|
rbac.authorization.k8s.io/RoleBinding |
google.container.RoleBinding |
|
k8s.io/Service |
google.container.Service |
|
| Identity and Access Management |
iam.googleapis.com/Role |
google.iam.Role |
iam.googleapis.com/ServiceAccount |
google.iam.ServiceAccount |
|
iam.googleapis.com/ServiceAccountKey |
google.iam.ServiceAccountKey |
|
| Pub/Sub |
pubsub.googleapis.com/Snapshot |
google.pubsub.Snapshot |
pubsub.googleapis.com/Subscription |
google.pubsub.Subscription |
|
pubsub.googleapis.com/Topic |
google.pubsub.Topic |
|
| Resource Manager |
cloudresourcemanager.googleapis.com/Organization |
google.cloud.resourcemanager.Organization |
cloudresourcemanager.googleapis.com/Folder |
google.cloud.resourcemanager.Folder |
|
cloudresourcemanager.googleapis.com/Project |
google.cloud.resourcemanager.Project |
|
| Accès au VPC sans serveur |
vpcaccess.googleapis.com/Connector |
google.vpcaccess.Connector |
| Service Usage |
serviceusage.googleapis.com/Service |
google.serviceusage.Service |
| Vertex AI |
aiplatform.googleapis.com/BatchPredictionJob |
google.aiplatform.BatchPredictionJob |
aiplatform.googleapis.com/CustomJob |
google.aiplatform.CustomJob |
|
aiplatform.googleapis.com/DataLabelingJob |
google.aiplatform.DataLabelingJob |
|
aiplatform.googleapis.com/Dataset |
google.aiplatform.Dataset |
|
aiplatform.googleapis.com/Endpoint |
google.aiplatform.Endpoint |
|
aiplatform.googleapis.com/HyperparameterTuningJob |
google.aiplatform.HyperparameterTuningJob |
|
aiplatform.googleapis.com/Model |
google.aiplatform.Model |
|
aiplatform.googleapis.com/SpecialistPool |
google.aiplatform.SpecialistPool |
|
aiplatform.googleapis.com/TrainingPipeline |
google.aiplatform.TrainingPipeline |