GCP - Add or Remove Tags to/from Assets
  • 03 Dec 2024
  • 1 Minute to read
  • Dark
    Light
  • PDF

GCP - Add or Remove Tags to/from Assets

  • Dark
    Light
  • PDF

Article summary

The GCP - Add or Remove Tags to/from Assets action adds or removes tags from Google Cloud Provider assets.

  • Assets that match the results of the selected saved query, and match the Enforcement Action Conditions if defined, or assets selected on the relevant asset page.
Note:

To use this Enforcement Action, you must successfully configure a Google Cloud Platform (GCP) adapter connection.

See Creating Enforcement Sets to learn more about adding Enforcement Actions to Enforcement Sets.

Note:

Required Fields

These fields must be configured to run the Enforcement Set.

  • Action name - The name of this Enforcement Action. The system sets a default name. You can change the name.
  • Configure Dynamic Values - Toggle on to enter a Dynamic Value statement. See Creating Enforcement Action Dynamic Value Statements to learn more about Dynamic Value statement syntax.

  • Use stored credentials from the GCP Adapter - Select this option to use credentials from the adapter connection. By default, the first connection is selected.

    • When you select this option, the Select Adapter Connection drop-down becomes available. Select the adapter connection to use for this Enforcement Action.
    Note:
    To use this option, you must successfully configure a Google Cloud Platform (GCP) adapter connection.
  • Tag names - Enter tag names separated by a comma.

  • Choose action for tags - Select whether to Add tags or Remove tags.

  • Compute Node - The Axonius node to use when connecting to the specified host. For more details, see Connecting Additional Axonius Nodes.

Additional Fields

These fields are optional.

  • Gateway Name - Select the Gateway through which to connect to perform the action.

APIs

Axonius uses the Method: instances.setTags | Compute Engine Documentation | Google Cloud API.

Required Permissions

The stored credentials, or those provided in Connection and Credentials, must have the following permission(s) to perform this Enforcement Action:

  • compute.v1.InstancesService.SetTags

For more details about other Enforcement Actions available, see Action Library.



Was this article helpful?