Configure Google Cloud Platform Log Collector - Alert Logic ...

Google Cloud logs do not have host metadata and are formatted in JSON. ... The Role field authorizes your service account to access resources. SkipToMainContent Account Settings Logout placeholder Account Settings Logout Filter: AllFiles SubmitSearch Youarehere: ConfigureGoogleCloudPlatformLogCollector TheAlertLogicGoogleCloudPlatformcollectorisanAWS-basedAPIPoll(PAWS)logcollectorlibrarymechanismdesignedtocollectlogsfromtheGoogleCloudlogs,formerlyreferredtoasStackdriver.YoumustgenerateaGoogleAPI,applythepermissions,andthencompletetheconfigurationprocessintheAlertLogicconsole. GoogleCloudlogsdonothavehostmetadataandareformattedinJSON.Ifyouwanttocollectsyslogs,youmustusetheAlertLogicagenttoallowAlertLogictoprocessthem.FormoreinformationabouthowtoinstalltheAlertLogicagent,seeInstalltheAlertLogicAgentforWindowsorInstalltheAlertLogicAgentforLinux YoucanfindGoogleCloudPlatformlogscollectedwithkeywordsearchintheAlertLogicconsoleSearch: LogMessagespage. AlthoughAlertLogicdoesnotrecommendusingaVirtualMachine(VM)instancetoforwardlogstoGoogleCloud,ifyouwanttocollectlogsfromaVM,youmustuseaGoogleloggingagent.TheGoogleloggingagentsendslogstotheVMparentprojectbydefault.Youmustoverrideandsendtoanotherproject.TolearnmoreabouttheGoogleloggingagent,seeAbouttheLoggingagent. GenerateaGoogleAPIinGoogleCloudPlatform IntheGoogleCloudPlatformconsole,youmustcompleteafewkeytasksforlogstobecollectedfromGoogleCloud. YoumustgenerateaGoogleAPIkeyfile: IntheGoogleCloudPlatformconsole,onthesidepanel,clickIAM&admin,andthenclickServiceaccounts. ClickCREATESERVICEACCOUNT. IntheServiceaccountnamefield,enteraname. (Optional)IntheServiceaccountdescriptionfield,andadescription. ClickCREATE. FromtheSelectaroledrop-downlist,selectLogging,andthenPrivateLogsViewer. ClickContinue. (Optional)Grantuserpermissionsifnecessary,andthenclickDONE.TheRolefieldauthorizesyourserviceaccounttoaccessresources.YoucanviewandchangethisfieldlaterintheGoogleCloudPlatformconsole.Ifyouaredevelopingaproductionapp,specifymoregranularpermissionsthanPrivateLogsViewer.Formoreinformation,seegrantingrolestoserviceaccounts. UnderActions,clicktheicon,andthenclickCreatekey. SelectJSON,andthenclickCreate.AJSONfilethatcontainsyourkeydownloadstoyourcomputer.NotethelocationofJSONfile,whichyouwillneedlater. ConfiguringcollectionfromtheAlertLogicconsole AfteryougenerateyourJSONkey,youmustcompletethelogconfigurationprocessintheAlertLogicconsole.Thisconfigurationisanaccount-levelintegration,whichmeansyoucanconfiguremorethanoneinstanceofGoogleCloudcollection.Thiscapabilityisusefulwhenmorethanoneinstanceoftheapplicationexists. ToaccesstheApplicationRegistrypage,clickthemenuicon()fromtheDashboardspage.ClickConfigure,andthenclickApplicationRegistry. Toaddanewapplicationcollection: IntheApplicationRegistryclicktheGoogleCloudtile,andthenclickGoogleCloudPlatform. IntheApplicationNamefield,enteranameforthisGoogleCloudcollectioninstance. UnderCollectionMethodandPolicy,intheResourceidentifiersfield,enterGoogleresourcesfromwhichyouwanttopolllogs.Eachelementmustfollowtheformat/andmustbeonitsownline.Otherformattingexamples:projects/organizations/billingAccounts/folders/ IntheServiceAccountJSONkeyfield,enterthecontentsoftheJSONfilethatyoudownloadedpreviouslyfromgeneratingakey. (Optional)EnteraCollectionStarttimeusingaformatsuchas(2020-01-01T16:00:00Z).IftheCollectionStartfieldisleftblank,onlylogsgeneratedafteryouconfigurethiscollectioninstancewillbecollected. ThecollectionstarttimedetermineshowfarbackyouwantAlertLogictocollectlogsifdataalreadyexistsinyouraccount.AlertLogiccanonlycollectlogsupto30dayspriortothedateyouconfiguredthiscollectioninstance. ClickADD. Waitafewminutesfortheapplicationtocreateandappearinyourapplicationlist.DonotclickADDagain. IntheApplicationsListtab,ifyouconfiguredyourapplicationcorrectly,withinapproximately10minutesyouwillseeConfigurednexttotheapplication.Formoreinformationabouthowtoaddinstancesormanageexistingcollectingapplications,seeManageyourconfiguredapplications.