<TOPIC_NAME>
with the name of the Pub/Sub topic you want to enable audit logging for.policy.json
file with the following content:
<PERIMETER_NAME>
with a name for the VPC Service Control perimeter.<PROJECT_ID>
with your GCP project ID.<TOPIC_NAME>
with the name of the Pub/Sub topic you want to enable encryption at rest for.<PROJECT_ID>
with your GCP project ID.<KEY_RING_NAME>
and <CRYPTO_KEY_NAME>
with the name of the key ring and crypto key you want to use for encryption.google-cloud-securitycenter
library to enable VPC Service Controls for your project.google-cloud-pubsub
library to implement access controls for your Pub/Sub topics and subscriptions.google-cloud-logging
library to monitor and analyze the logs generated by Pub/Sub.google-cloud-securitycenter
, google-cloud-pubsub
, google-cloud-logging
) using pip before running these scripts.