Google Cloud Integration

Configuring Google Cloud Storage as Destination

Realm Security supports integration with Google Cloud Storage as a destination. This guide provides instructions for configuring Google Cloud Storage to receive data from Realm.

Step 1: Create GCS Bucket

1. Login to GCS console
2. Cloud Storage > Buckets > Create Bucket
3. Enter Name for the bucket, for example: Realm-Archive
4. Select Standard storage
5. Click create
6. Bucket Configuration

Step 2: Create a Service Account

1. Go to IAM > Service Accounts
2. Click Create Service Account
3. Name: realm-archive-account
4. Create and Continue
5. Grant permission to write to the bucket
   • Add role > Cloud Storage > Storage Object Creator role
6. Add IAM condition to restrict access to just one bucket

resource.service == "storage.googleapis.com" &&
resource.name.startsWith("projects/_/buckets/REPLACE_WITH_BUCKET_NAME")

6. Select the service acount
7. Keys > Create Key > JSON
8. Click Create
9. Service account key will get downloaded to your local machine. Open the key in a text editor, select all contents and copy to clipboard.

Step 3: Create a Destination in Realm for GCS Archive

1. Navigate to Destinations > Add Destination
2. Type name: Archive
3. Under Destinations, select Add New Source

• Connect the relevant log source (e.g., FortiGate, Azure, etc.) to the destination

4. Go to Output Feeds > Add Output Feed

• Choose GCS output feed

5. Name: GCS Archive
6. Enter the name of the bucket created above
7. Paste the Service account key

Related Resources

• Setup GCS Service Account Key
• Setup GCS Workload Identity Federation