Files
prowler/docs/tutorials/gcp/organization.md
T
Rubén De la Torre Vico 9ca1899ebf docs(tutorials): improve quality redrive (#7915)
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
Co-authored-by: Andoni Alonso <14891798+andoniaf@users.noreply.github.com>
2025-07-29 11:03:52 +02:00

911 B
Raw Blame History

Scanning a Specific GCP Organization

By default, Prowler scans all Google Cloud projects accessible to the authenticated user.

To limit the scan to projects within a specific Google Cloud organization, use the --organization-id option with the GCP organizations ID:

prowler gcp --organization-id organization-id

???+ warning Ensure the credentials used have one of the following roles at the organization level: Cloud Asset Viewer (roles/cloudasset.viewer), or Cloud Asset Owner (roles/cloudasset.owner).

???+ note With this option, Prowler retrieves all projects under the specified Google Cloud organization, including those organized within folders and nested subfolders. This ensures full visibility across the entire organizations hierarchy.

???+ note To obtain the Google Cloud organization ID, use:

```console
gcloud organizations list
```