Book Image

Google Cloud Platform Administration

By : Ranjit Singh Thakurratan
Book Image

Google Cloud Platform Administration

By: Ranjit Singh Thakurratan

Overview of this book

On-premise data centers are costly to manage. If you need a data center but don’t want to deal with a physical one, Google Cloud Platform (GCP) is the solution. With GCP, you can build, test, and deploy applications on Google’s infrastructure. Google Cloud Platform Administration begins with GCP fundamentals, with the help of which you will deploy your first app and gain an understanding of Google Cloud architecture and services. Furthermore, you will learn how to manage Compute, networking, and storage resources. As you make your way through the book, you will learn how to track and manage GCP’s usage, monitoring, and billing access control. You will also be able to manage your GCP's access and permissions. In the concluding chapters, you will explore a list of different developer tools for managing and interacting with the GCP platform. By the end of this book, you will have learned how to effectively deploy workloads on GCP.
Table of Contents (11 chapters)

Key management service

Cloud KMS is a hosted KMS that lets you manage your encryption keys in the cloud. You can create/generate, rotate, use, and destroy AES256 encryption keys just like you would in your on-premises environments. You can also use the cloud KMS REST API to encrypt and decrypt data. Before we explore Cloud KMS, we need to understand the object hierarchy structure. Let's briefly go over the object hierarchy and then explore Cloud KMS on the GCP console.

To enhance access control management, Cloud KMS stores keys in a hierarchical structure. There are different levels in the hierarchical structure:

  1. Project: Like every other GCP resource, Cloud KMS resources belong to a project. All primitive IAM roles that are applied to a project also apply to your KMS.
  2. Location: You can create Cloud KMS resources in multiple locations within a project. These locations are...