The Ultimate Guide to Building a Google Cloud Foundation: A one-on-one tutorial with one of Google’s top trainers

Length: 284 pages
Edition: 1
Language: English
Publisher: Packt Publishing
Publication Date: 2022-08-26
ISBN-10: 1803240857
ISBN-13: 9781803240855
Sales Rank: #474544 (See Top 100 Books)

Follow Google’s own ten-step plan to construct a secure, reliable, and extensible foundation for all your Google Cloud base infrastructural needs

Key Features

Build your foundation in Google Cloud with this clearly laid out, step-by-step guide
Get expert advice from one of Google’s top trainers
Learn to build flexibility and security into your Google Cloud presence from the ground up

Book Description

From data ingestion and storage, through data processing and data analytics, to application hosting and even machine learning, whatever your IT infrastructural need, there’s a good chance that Google Cloud has a service that can help. But instant, self-serve access to a virtually limitless pool of IT resources has its drawbacks. More and more organizations are running into cost overruns, security problems, and simple “why is this not working?” headaches.

This book has been written by one of Google’s top trainers as a tutorial on how to create your infrastructural foundation in Google Cloud the right way. By following Google’s ten-step checklist and Google’s security blueprint, you will learn how to set up your initial identity provider and create an organization. Further on, you will configure your users and groups, enable administrative access, and set up billing. Next, you will create a resource hierarchy, configure and control access, and enable a cloud network. Later chapters will guide you through configuring monitoring and logging, adding additional security measures, and enabling a support plan with Google.

By the end of this book, you will have an understanding of what it takes to leverage Terraform for properly building a Google Cloud foundational layer that engenders security, flexibility, and extensibility from the ground up.

What you will learn

Create an organizational resource hierarchy in Google Cloud
Configure user access, permissions, and key Google Cloud Platform (GCP) security groups
Construct well thought out, scalable, and secure virtual networks
Stay informed about the latest logging and monitoring best practices
Leverage Terraform infrastructure as code automation to eliminate toil
Limit access with IAM policy bindings and organizational policies
Implement Google’s secure foundation blueprint

Who this book is for

This book is for anyone looking to implement a secure foundational layer in Google Cloud, including cloud engineers, DevOps engineers, cloud security practitioners, developers, infrastructural management personnel, and other technical leads. A basic understanding of what the cloud is and how it works, as well as a strong desire to build out Google Cloud infrastructure the right way will help you make the most of this book. Knowledge of working in the terminal window from the command line will be beneficial.

The Ultimate Guide to Building a Google Cloud Foundation
Contributors
About the author
About the reviewer
Preface
    Who this book is for
    What this book covers
    To get the most out of this book
    Download the example files
    Download the color images
    Conventions used
    Get in touch
    Share Your Thoughts
Chapter 1: Getting to Know Google’s Cloud
    How Google Cloud is a lot like a power company
    The four main ways of interacting with Google Cloud
        Google Cloud Console
        The Google Cloud SDK and Cloud Shell
        The Google Cloud APIs
        The Google Cloud mobile client
    Organizing Google Cloud logically and physically
    Google’s core services
        Compute
        Data storage
        Firestore (Datastore)
        Bigtable
        Memorystore
    Summary
Chapter 2: IAM, Users, Groups, and Admin Access
    Step 1 – configuring identity management
        Cloud Identity setup
    Step 2 – adding an initial set of users and security groups
        Cloud Identity managing users and acting as IdP
        Cloud Identity managing IdP and an HR system managing users
        Cloud Identity delegates all IdP and user management to an external (non-AD) provider
        Integrating Cloud Identity with Microsoft AD
        Creating an initial set of security groups
    Step 3 – enabling administrator access
        Verifying initial Google Cloud organization creation
        Configuring organization administrator group access
    Summary
Chapter 3: Setting Up Billing and Cost Controls
    Understanding billing terminology
    Step 4 – setting up billing and cost controls
        It starts with how you pay
        Next comes Cloud Billing
        Google Cloud Billing best practices
    Summary
Chapter 4: Terraforming a Resource Hierarchy
    Automating infrastructure with Terraform
        Infrastructure as Code to the rescue!
        Terraform – the least you need to know
    Step 5 – creating a resource hierarchy to control logical organization
        Naming resources
        Designing the resource hierarchy
        Implementing a resource hierarchy
    Summary
Chapter 5: Controlling Access with IAM Roles
    Understanding IAM in Google Cloud
        Who?
        Can do what?
    Step 6 – Adding IAM trust boundaries to the resource hierarchy 
        Reading a security role
        Use groups where you can
        Google Cloud starter security group ideas
        Terraforming the permissions
        Fine-tuning IAM permissions with conditions 
        Deny policies
        Limiting the use of privileged identities 
        Troubleshooting access
    Summary
Chapter 6: Laying the Network
    Networking in Google Cloud
        Understanding Virtual Private Cloud networks
        Communicating between networked resources
        Connecting VPC networks
        Leveraging Shared VPCs
        Hybrid cloud options
        Google Cloud network security
    Step 7 – building and configuring our foundational VPC network 
        Updating your naming document
        Planning the Shared VPCs
        Terraforming your Google Cloud network
    Summary
Chapter 7: Foundational Monitoring and Logging
    Getting to know the six core instrumentation products in Google Cloud 
        Instrumentation product overview
        Working with Cloud Logging
        Monitoring your resources
    Step 8 – setting up foundational Cloud Logging and Cloud Monitoring 
        Logging foundation
        Foundational monitoring
    Food for thought
    Summary
Chapter 8: Augmenting Security and Registering for Support
    Step 9 – augmenting foundational security 
        Data encryption
        Improving security posture with the SCC
        Limiting access with the Organization Policy Service
        General security elements
    Step 10 – Setting up initial Google Cloud support 
    Final thoughts
    Why subscribe?
Other Books You May Enjoy
    Packt is searching for authors like you
    Share Your Thoughts

To access the Link, solve the captcha.

How to download source code?

1. Go to: https://github.com/PacktPublishing

2. In the Find a repository… box, search the book title: The Ultimate Guide to Building a Google Cloud Foundation: A one-on-one tutorial with one of Google’s top trainers, sometime you may not get the results, please search the main title.