Skip to content

GCP Data Server#

This topic covers integration of Google Cloud Storage (GCS) and Google BigQuery (GBQ) with the Privacera Platform using Privacera Dataserver.

Prerequisites#

Ensure that the following prerequisites are met:

  • If GCS is being configured, then you need access to an Google Cloud Storage account along with required credentials.
  • If GBQ is being configured, then you need access to an Google Cloud BigQuery account along with required credentials.
  • Get the credential file (JSON) associated with the service account by downloading it. For more information, click here.

UI Configuration#

  1. Launch PM UI. For more information on how to start PM UI, click here.

  2. In the left navigation of the PM UI, navigate to Setup Access Manager > Configure Data Access Server.

  3. Click Configure Data Access Server to modify the properties. For property details and description, refer to the Configuration Properties below.

  4. To install/update, go to Install in the left navigation, and click Install & Start Services.

CLI Configuration#

  1. SSH to the instance where Privacera is installed.

  2. Copy the credential file you've downloaded from your machine to a location on your instance where Privacera Manager is configured. Get the file path of the JSON file and add it in the next step.

  3. Run the following commands.

    cd ~/privacera/privacera-manager/
    cp config/sample-vars/vars.dataserver.gcp.yml config/custom-vars/
    vi config/custom-vars/vars.dataserver.gcp.yml
    
  4. Update the following credential file information.

    GCP_CREDENTIAL_FILE_PATH: "/tmp/my_google_credential.json"
    

    Note

    You can also add custom properties that are not included by default. See Dataserver.

  5. Run the following commands.

    cd ~/privacera/privacera-manager
    ./privacera-manager.sh update
    

    After the update is completed, Privacera gets installed and a default GCS data source is created.

  6. Add GCS Project ID in the GCS data source.

    1. Navigate to Portal UI > Settings > Data Source Registration and edit GOOGLE_CLOUD_STORAGE.

    2. Click Application Properties and add the following properties:

      • Credential Type: Select Google Credentials Local File Path from the dropdown list.
      • Google Credentials Local File Path: Set value to None.
      • Google Project Id: Enter your Google Project ID.
    3. To view the buckets, navigate to Data Inventory > File Explorer.

      If you can not view the buckets, restart Dataserver.

      cd  privacera/privacera-manager 
      ./privacera-manager.sh restart dataserver
      

Related Information

For further reading, see:

  • You can use Google APIs to apply access control on GCS. For more information, click here.