The Ultimate Guide to Building a Google Cloud Foundation: A one-on-one tutorial with one of Google’s top trainers
Follow Google’s own ten-step plan to construct a secure, reliable, and extensible foundation for all your Google Cloud base infrastructural needs
- Build your foundation in Google Cloud with this clearly laid out, step-by-step guide
- Get expert advice from one of Google’s top trainers
- Learn to build flexibility and security into your Google Cloud presence from the ground up
From data ingestion and storage, through data processing and data analytics, to application hosting and even machine learning, whatever your IT infrastructural need, there’s a good chance that Google Cloud has a service that can help. But instant, self-serve access to a virtually limitless pool of IT resources has its drawbacks. More and more organizations are running into cost overruns, security problems, and simple “why is this not working?” headaches.
This book has been written by one of Google’s top trainers as a tutorial on how to create your infrastructural foundation in Google Cloud the right way. By following Google’s ten-step checklist and Google’s security blueprint, you will learn how to set up your initial identity provider and create an organization. Further on, you will configure your users and groups, enable administrative access, and set up billing. Next, you will create a resource hierarchy, configure and control access, and enable a cloud network. Later chapters will guide you through configuring monitoring and logging, adding additional security measures, and enabling a support plan with Google.
By the end of this book, you will have an understanding of what it takes to leverage Terraform for properly building a Google Cloud foundational layer that engenders security, flexibility, and extensibility from the ground up.
What you will learn
- Create an organizational resource hierarchy in Google Cloud
- Configure user access, permissions, and key Google Cloud Platform (GCP) security groups
- Construct well thought out, scalable, and secure virtual networks
- Stay informed about the latest logging and monitoring best practices
- Leverage Terraform infrastructure as code automation to eliminate toil
- Limit access with IAM policy bindings and organizational policies
- Implement Google’s secure foundation blueprint
Who this book is for
This book is for anyone looking to implement a secure foundational layer in Google Cloud, including cloud engineers, DevOps engineers, cloud security practitioners, developers, infrastructural management personnel, and other technical leads. A basic understanding of what the cloud is and how it works, as well as a strong desire to build out Google Cloud infrastructure the right way will help you make the most of this book. Knowledge of working in the terminal window from the command line will be beneficial.
The Ultimate Guide to Building a Google Cloud Foundation Contributors About the author About the reviewer Preface Who this book is for What this book covers To get the most out of this book Download the example files Download the color images Conventions used Get in touch Share Your Thoughts Chapter 1: Getting to Know Google’s Cloud How Google Cloud is a lot like a power company The four main ways of interacting with Google Cloud Google Cloud Console The Google Cloud SDK and Cloud Shell The Google Cloud APIs The Google Cloud mobile client Organizing Google Cloud logically and physically Google’s core services Compute Data storage Firestore (Datastore) Bigtable Memorystore Summary Chapter 2: IAM, Users, Groups, and Admin Access Step 1 – configuring identity management Cloud Identity setup Step 2 – adding an initial set of users and security groups Cloud Identity managing users and acting as IdP Cloud Identity managing IdP and an HR system managing users Cloud Identity delegates all IdP and user management to an external (non-AD) provider Integrating Cloud Identity with Microsoft AD Creating an initial set of security groups Step 3 – enabling administrator access Verifying initial Google Cloud organization creation Configuring organization administrator group access Summary Chapter 3: Setting Up Billing and Cost Controls Understanding billing terminology Step 4 – setting up billing and cost controls It starts with how you pay Next comes Cloud Billing Google Cloud Billing best practices Summary Chapter 4: Terraforming a Resource Hierarchy Automating infrastructure with Terraform Infrastructure as Code to the rescue! Terraform – the least you need to know Step 5 – creating a resource hierarchy to control logical organization Naming resources Designing the resource hierarchy Implementing a resource hierarchy Summary Chapter 5: Controlling Access with IAM Roles Understanding IAM in Google Cloud Who? Can do what? Step 6 – Adding IAM trust boundaries to the resource hierarchy Reading a security role Use groups where you can Google Cloud starter security group ideas Terraforming the permissions Fine-tuning IAM permissions with conditions Deny policies Limiting the use of privileged identities Troubleshooting access Summary Chapter 6: Laying the Network Networking in Google Cloud Understanding Virtual Private Cloud networks Communicating between networked resources Connecting VPC networks Leveraging Shared VPCs Hybrid cloud options Google Cloud network security Step 7 – building and configuring our foundational VPC network Updating your naming document Planning the Shared VPCs Terraforming your Google Cloud network Summary Chapter 7: Foundational Monitoring and Logging Getting to know the six core instrumentation products in Google Cloud Instrumentation product overview Working with Cloud Logging Monitoring your resources Step 8 – setting up foundational Cloud Logging and Cloud Monitoring Logging foundation Foundational monitoring Food for thought Summary Chapter 8: Augmenting Security and Registering for Support Step 9 – augmenting foundational security Data encryption Improving security posture with the SCC Limiting access with the Organization Policy Service General security elements Step 10 – Setting up initial Google Cloud support Final thoughts Why subscribe? Other Books You May Enjoy Packt is searching for authors like you Share Your Thoughts
How to download source code?
1. Go to:
2. In the Find a repository… box, search the book title:
The Ultimate Guide to Building a Google Cloud Foundation: A one-on-one tutorial with one of Google’s top trainers, sometime you may not get the results, please search the main title.
3. Click the book title in the search results.
3. Click Code to download.
1. Disable the AdBlock plugin. Otherwise, you may not get any links.
2. Solve the CAPTCHA.
3. Click download link.
4. Lead to download server to download.