Book Image

The Ultimate Guide to Building a Google Cloud Foundation

By : Patrick Haggerty
Book Image

The Ultimate Guide to Building a Google Cloud Foundation

By: Patrick Haggerty

Overview of this book

From data ingestion and storage, through data processing and data analytics, to application hosting and even machine learning, whatever your IT infrastructural need, there's a good chance that Google Cloud has a service that can help. But instant, self-serve access to a virtually limitless pool of IT resources has its drawbacks. More and more organizations are running into cost overruns, security problems, and simple "why is this not working?" headaches. This book has been written by one of Google’s top trainers as a tutorial on how to create your infrastructural foundation in Google Cloud the right way. By following Google’s ten-step checklist and Google’s security blueprint, you will learn how to set up your initial identity provider and create an organization. Further on, you will configure your users and groups, enable administrative access, and set up billing. Next, you will create a resource hierarchy, configure and control access, and enable a cloud network. Later chapters will guide you through configuring monitoring and logging, adding additional security measures, and enabling a support plan with Google. By the end of this book, you will have an understanding of what it takes to leverage Terraform for properly building a Google Cloud foundational layer that engenders security, flexibility, and extensibility from the ground up.

Related Content you might be interested in

Current Title:

Small book image
The Ultimate Guide to Building a Google Cloud Foundation
Patrick Haggerty
Aug, 2022 | 284 pages
Small book image
Official Google Cloud Certified Professional Cloud Security Engineer Exam Guide
Prashant Kulkarni | Ankush Chowdhary
Aug, 2023 | 496 pages
Small book image
Official Google Cloud Certified Professional Cloud Security Engineer Exam Guide
Prashant Kulkarni | Ankush Chowdhary
Aug, 2023 | 496 pages
Small book image
Google Cloud Associate Cloud Engineer Certification and Implementation Guide
Wojciech Marusiak | Agnieszka Koziorowska
Sep, 2023 | 606 pages
Table of Contents (10 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Download the example files
Download the color images
Conventions used
Get in touch
Share Your Thoughts
1
Chapter 1: Getting to Know Google’s Cloud
Chapter 1: Getting to Know Google’s Cloud
How Google Cloud is a lot like a power company
The four main ways of interacting with Google Cloud
Organizing Google Cloud logically and physically
Google’s core services
Summary
Free Chapter
2
Chapter 2: IAM, Users, Groups, and Admin Access
Chapter 2: IAM, Users, Groups, and Admin Access
Step 1 – configuring identity management
Step 2 – adding an initial set of users and security groups
Step 3 – enabling administrator access
Summary
3
Chapter 3: Setting Up Billing and Cost Controls
Chapter 3: Setting Up Billing and Cost Controls
Understanding billing terminology
Step 4 – setting up billing and cost controls
Summary
4
Chapter 4: Terraforming a Resource Hierarchy
Chapter 4: Terraforming a Resource Hierarchy
Automating infrastructure with Terraform
Step 5 – creating a resource hierarchy to control logical organization
Summary
5
Chapter 5: Controlling Access with IAM Roles
Chapter 5: Controlling Access with IAM Roles
Understanding IAM in Google Cloud
Step 6 – Adding IAM trust boundaries to the resource hierarchy
Summary
6
Chapter 6: Laying the Network
Chapter 6: Laying the Network
Networking in Google Cloud
Step 7 – building and configuring our foundational VPC network
Summary
7
Chapter 7: Foundational Monitoring and Logging
Chapter 7: Foundational Monitoring and Logging
Getting to know the six core instrumentation products in Google Cloud
Step 8 – setting up foundational Cloud Logging and Cloud Monitoring
Food for thought
Summary
8
Chapter 8: Augmenting Security and Registering for Support
Chapter 8: Augmenting Security and Registering for Support
Step 9 – augmenting foundational security
Step 10 – Setting up initial Google Cloud support
Final thoughts
Why subscribe?
9
Other Books You May Enjoy
Other Books You May Enjoy
Packt is searching for authors like you
Share Your Thoughts

Conventions used

There are a number of text conventions used throughout this book.

Code in text: Indicates code words in text, database table names, folder names, filenames, file extensions, pathnames, dummy URLs, user input, and Twitter handles. Here is an example: “allAuthenticatedUsers is a special placeholder representing all service accounts and Google accounts, in any organization (not just yours), including Gmail.”

A block of code is set as follows:

resource "google_tags_tag_value" "c_value" {
    parent = "tagKeys/${google_tags_tag_key.c_key.name}"
    short_name = "true"
    description = "Project contains contracts."
}

When we wish to draw your attention to a particular part of a code block, the relevant lines or items are set in bold:

{
  "deniedPrincipals": [
    "principalSet://goog/public:all"
  ],
  "exceptionPrincipals": [
    "principalSet://goog/group/[email protected]"
  ],

Any command-line input or output is written as follows:

cd gcp-org
git checkout plan

Bold: Indicates a new term, an important word, or words that you see onscreen. For instance, words in menus or dialog boxes appear in bold. Here is an example: “If you click the TROUBLESHOOT button, Google Cloud will forward you to the Policy Troubleshooter.”

Tips or important notes

Appear like this.

Previous Section
Next Section