Selective Cloud Project Onboarding

The Selective Cloud Project Onboarding feature enables you to include or exclude GCP folders and projects during onboarding. This provides flexibility for organizations that don’t need to monitor every project in their environment. This is done using the Include/Exclude option.

The Selective Cloud Project Onboarding feature in Sysdig Secure gives you control over which Google Cloud folders and projects are onboarded during the initial setup.

This is useful for organizations that want to monitor only a subset of their cloud environment. Excluded projects can still be onboarded later individually.

Include Folders
Exclude Folders

Project Selection Options

You can configure onboarding with three approaches:

All

This option lets you select all folders in your cloud environment. This is the default selection.

  • All Folders
    • All folders under the organization will be onboarded automatically.
    • All projects within these folders will also be included.
    • You can optionally exclude projects by providing their project IDs.

Include Folders

This option lets you select folders to include during onboarding. You can also exclude individual projects from these folders. You can do the following:

  • Select folders to onboard.
  • Optionally exclude certain projects within those folders by providing their project IDs.

Exclude / Include Projects (optional)

This configuration allows for more granular control over project onboarding. You have the following options:

  • Exclude Projects:
    • Skip onboarding for named projects within the selected folders.
    • These projects will be skipped during onboarding, even if their parent folders are included.
  • Include Extra Projects:
    • Onboard individual projects from folders that were excluded.
    • These projects will be onboarded even if their parent folders are excluded.

Exclude Folders

This option lets you omit folders from onboarding. All folders are included by default unless explicitly excluded. You can also fine-tune project-level onboarding from excluded folders.

Include / Exclude Projects (optional)

This configuration allows for more granular control over project onboarding. You have the following options:

  • Include Projects:
    • Onboard named projects from folders that were excluded.
    • These projects will be onboarded, even if their parent folders are excluded.
  • Exclude Extra Projects:
    • Omit onboarding for named projects from included folders.
    • These projects won’t be onboarded, even though their folders are included.

Folder and project entries must be comma-separated.

  • Folders: Use folder IDs, not names.
    For example: 123456789012, 234567890123

  • Projects: Use project IDs, not display names.
    For example: my-project-id-123, my-project-id-456