Set up an identity connector in a Google Cloud Platform environment

Before you begin

Create and download the connector template file for Google Compute Engine (GCE). This file is a tarball (connector-id.tar.gz) file. Save the connector tarball in a safe location. For instructions, see Create and download an identity connector.

Complete this procedure to set up an identity connector in a Google Cloud Platform.

How to

  1. Log in to the GCP console. Use the storage browser to upload the connector-id.tar.gz file to your Google Cloud storage.
  2. Create an image using the connector-id.tar.gz file. Click Compute Engine > Images > New image.
  3. Enter a name for the identity connector.
  4. From the Source Type menu select Cloud Storage Object.
  5. Enter the location of the tarball file stored in Cloud storage. For example, gs://bucketname/connector-id.tar.gz.
  6. Spawn an instance using the new image. Select the image name and click Create Instance.
  7. Enter a name for the instance, select HTTPs to allow only HTTPs traffic, select the zone, and make sure the Machine Type is n1-standard. A minimum of 2vCPU with 8 GB memory for connectors is recommended. Make sure the image has the correct connector image.
  8. Select the appropriate Boot Disk Type.
  9. Make sure the identity connector has Internet connectivity. Assign Ephemeral or New static IP address.
  10. Click Create. GCP creates and boots up the connector instance in Google Cloud.
  11. In ETP, approve the identity connector:
    1. In the Enterprise Center navigation menu, select Clients & Connectors > Access and Identity Connectors.
    2. Locate the GCE connector and click Need your approval.
    3. Click Save.