Skip to main content
McAfee MVISION Cloud

Create an On-Demand Scan for GCP DLP and Malware

This topic provides instructions for creating an On-Demand DLP and Malware scan for Google Cloud Platform (GCP).  For enhanced assistance on this topic,  we have a 5-minute Youtube video. 

To configure an On-Demand Scan, perform the following steps:

  1. Go to Policy > On-Demand Scan.
  2. Click Actions > Create a Scan.
  3. The Scan Creation Wizard is displayed. On the General Info page enter the following:clipboard_ee2d94282a3b29bb2a6fe73aa3f3c4f55.png
    • Scan Type. Select DLP & Malware.
    • Name. Enter a unique identifier so that you can rerun the scan later.
    • Description. Enter an optional description for the scan. 
    • Service Instance. Select the Google Cloud Platform instance you want to scan. 
  4. Click Next
  5. On the Select Policies page, select the available policies to use for your scan type. clipboard_e0d658037d64806de21cafdcd867454c3.png
  6. Click Next
  7. On the Configure Scan page, configure the data scope, buckets, and projects for your scan. clipboard_eab0e74467a63ee571cb460ae7ecd8a76.png
  • Data Scope. 
    • Full. Scans all content every time the scan is run. The first time you run a scan, you must use Full mode. 
    • Incremental. Scan only content that has changed since the last successful scan. For details about Incremental mode, see About On-Demand Scans
    • Scan Dates. Select All, to scan all data. Or select Last X Days to limit the scan to the specified time period. 
  • Buckets. 
    • All Buckets. Scan all storage accounts.
    • Include Specific Buckets. To include specific buckets for scan, manually enter them in a comma-separated list in the text box below. 
    • Exclude Specific Buckets. To exclude specific buckets for scan, manually enter them in a comma-separated list in the text box below. 
  • Projects.
    • All Projects. Scan all projects. 
    • Include Specific Projects. To include only specific projects, click Edit and select specific projects from the list. 
    • Exclude Specific Projects. To exclude only specific projects, click Edit and select specific projects from the list. 
  1. Click Next
  2. On the Schedule Scan page, select the schedule for your scan to run:
    • None (On-Demand Only). Run the scan once now.
    • Daily. Run the scan once a day. Configure the time and time zone. 
    • Weekly. Run the scan once a week. Configure the day, time, and time zone. clipboard_ebb80aa014c239e71048708fda2ad9a25.png
  3. Click Next
  4. On the Review & Activate page, review your settings for the On-Demand Scan, and click Save. Or click Back to make changes. 
    clipboard_e50a7df0dffe2cfdca7c24003f61e35a6.png

Once the setup is complete, to run a scan, on the Policy > On-Demand Scan page, select a Scan Name. Under the Actions column for that scan, click Start. You can view all the policy incident violations on the Policy Incidents page. clipboard_e45b79d62f5ee71c64d2f149c02f2da5c.png

 

  • Was this article helpful?