GCP Least-Privileged Access (LPA)
The GCP Least Privileged Access (LPA) feature within Cloud Security (InsightCloudSec) uses GCP’s Recommendations feature to assist in remediating excessive permission for a given user or role within your GCP environment. Because GCP Recommendations are a natively supported resource within Cloud Security (InsightCloudSec) (assuming you have successfully onboarded a GCP cloud account with the appropriate permissions), no additional configuration is required to use GCP LPA. Review GCP LPA Usage for more information.
GCP Security Command Center Premium required for IAM Recommender
Access to advanced IAM Recommender features in GCP now requires a Security Command Center Premium subscription.
- Without this subscription, Cloud Security (InsightCloudSec) cannot harvest IAM recommendations from GCP.
- This is a change may result in additional costs on the cloud service provider side.
As always, if you have questions about this feature or any others, reach out through the Customer Support Portal .