Integrate with Google Cloud Storage

Learn how to integrate with Google Cloud Storage and create environment-wide backups.

You can integrate the with Google Cloud Storage (GCS) to enable data backups. You can use these backups for data restoration in the case of an infrastructure disaster, or corrupt data. After you integrate with GCS, you can schedule daily or weekly backups and do manual on-demand backups.

The backup includes the StackRox Kubernetes Security Platform’s entire database, which includes all configurations, resources, events, and certificates. Make sure that backups are stored securely.

If you’re using the StackRox Kubernetes Security Platform version 3.0.53 or older, the backup doesn’t include certificates.

Configure Google Cloud Storage

Before you configure GCS backups in the StackRox Kubernetes Security Platform, you must have:

The StackRox Kubernetes Security Platform doesn’t currently support using Workload Identity to authenticate to GCS.

Configure the StackRox Kubernetes Security Platform

To configure GCS backups, create a new integration in the StackRox Kubernetes Security Platform:

  1. Navigate to Platform Configuration > Integrations.
  2. Under the External backups section, select Google Cloud Storage.
  3. Select the New Integration icon.
  4. In the Integration Name box, enter a name for this integration.
  5. Enter the number of backups to retain in the Backups To Retain box.
  6. For Schedule, select the backup frequency (daily or weekly) and the time to run the backup process.
  7. Enter the Bucket name in which you want to store the backup.
  8. In the Service Account JSON field, enter the contents of your service account key file.
  9. Select Test (checkmark icon) to confirm that the integration with GCS is working.
  10. Select Create (save icon) to create the configuration.

Once configured, the StackRox Kubernetes Security Platform automatically backs up all data according to the specified schedule.

On-demand backups

To trigger manual backups:

  1. On the StackRox portal, navigate to Platform Configuration > Integrations.
  2. Under the External backups section, select Google Cloud Storage.
  3. Select the integration name for the GCS bucket in which you want to do a backup.
  4. Select Trigger Backup.

Currently, when you select the Trigger Backup option, there is no notification and you might see a timeout error message in the portal. However, the StackRox Kubernetes Security Platform begins the backup task and keeps it running in the background.

For more details, see Backup and restore.

Questions?

We're happy to help! Reach out to us to discuss questions, issues, or feature requests.

© 2021 StackRox Inc. All rights reserved.