Prisma Cloud Compute Edition Administrator’s Guide
    : Google Cloud Pub/Sub
    Focus
    Download PDF
    Focus
    1. Home
    2. Prisma
    3. Prisma Cloud
    4. Prisma Cloud Compute Edition Administrator’s Guide
    5. Alerts
    6. Google Cloud Pub/Sub
    Download PDF

    Prisma Cloud Compute Edition Administrator’s Guide

    Google Cloud Pub/Sub

    Table of Contents

    Google Cloud Pub/Sub

    Google Cloud Pub/Sub is a durable, scalable event ingestion and delivery system. It provides asynchronous messaging that decouples senders from receivers, and enables highly available communication between independently written applications.
    Prisma Cloud can send alerts to Google Cloud Pub/Sub topics, where a topic is a message feed.

    Configuring alert frequency

    You can configure the rate at which alerts are emitted. This is a global setting that controls the spamminess of the alert service. Alerts received during the specified period are aggregated into a single alert. For each alert profile, an alert is sent as soon as the first matching event is received. All subsequent alerts are sent once per period.
    1. Open Console, and go to
      Manage > Alerts
      .
    2. In
      General settings
      , select the default frequency for all alerts.
      You can specify
      Second
      ,
      Minute
      ,
      Hour
      ,
      Day
      .

    Sending alerts to Google Cloud Pub/Sub

    Alert profiles specify which events should trigger the alert machinery, and to which channel alerts are sent. You can send alerts to any combination of channels by creating multiple alert profiles.
    Alert profiles consist of two parts:
    (1) Alert settings — Who should get the alerts, and on what channel?
     Configure Prisma Cloud to integrate with your messaging service and specify the people or places where alerts should be sent. For example, configure the email channel and specify a list of all the email addresses where alerts should be sent. Or for JIRA, configure the project where the issue should be created, along with the type of issue, priority, assignee, and so on.
    (2) Alert triggers — Which events should trigger an alert to be sent?
     Specify which of the rules that make up your overall policy should trigger alerts.
    If you use multi-factor authentication, you must create an exception or app-specific password to allow Console to authenticate to the service.

    Create new alert profile

    Create a new alert profile.
    Prerequisite:
     You’ve set up a Cloud Pub/Sub topic.
    1. In
      Manage > Alerts
      , click
      Add profile
      .
    2. Enter a name for your alert profile.
    3. In
      Provider
      , select
      GCP Pub/Sub
      .

    Configure the channel

    Configure the channel.
    1. In
      Credential
      , click
      Add new
       or select an existing service account.
      Create a new xref:~/authentication/credentials-store/gcp-credentials.adoc[GCP credential] as needed.
    2. Enter a Cloud Pub/Sub topic.
    3. Click
      Send Test Alert
       to test the connection.

    Configure the triggers

    1. In
      Select triggers
      , select the events that should trigger an alert to be sent.
    2. To specify specific rules that should trigger an alert, deselect
      All rules
      , and then select any individual rules.
    3. Click
      Next
      .

    Recommended For You

    © 2023 Palo Alto Networks, Inc. All rights reserved.