LinkedIn
Twitter
Hi Team,
I have created an instance with custom service account attaching the custom role with the permissions as below and my vm i having the latest ops agent of 2.9.1 in windows one. But it's showing agent is not detected in the monitoring console. Please suggest me on this.
- compute.instanceSettings.get
- compute.instanceSettings.update
- compute.instances.addAccessConfig
- compute.instances.addResourcePolicies
- compute.instances.attachDisk
- compute.instances.create
- compute.instances.createTagBinding
- compute.instances.delete
- compute.instances.deleteAccessConfig
- compute.instances.deleteTagBinding
- compute.instances.detachDisk
- compute.instances.get
- compute.instances.getEffectiveFirewalls
- compute.instances.getIamPolicy
- compute.instances.getScreenshot
- compute.instances.getSerialPortOutput
- compute.instances.getShieldedInstanceIdentity
- compute.instances.getShieldedVmIdentity
- compute.instances.list
- compute.instances.listEffectiveTags
- compute.instances.listReferrers
- compute.instances.listTagBindings
- compute.instances.osAdminLogin
- compute.instances.osLogin
- compute.instances.pscInterfaceCreate
- compute.instances.removeResourcePolicies
- compute.instances.reset
- compute.instances.resume
- compute.instances.sendDiagnosticInterrupt
- compute.instances.setDiskAutoDelete
- compute.instances.setIamPolicy
- compute.instances.setLabels
- compute.instances.setMachineResources
- compute.instances.setMachineType
- compute.instances.setMetadata
- compute.instances.setMinCpuPlatform
- compute.instances.setName
- compute.instances.setScheduling
- compute.instances.setSecurityPolicy
- compute.instances.setServiceAccount
- compute.instances.setShieldedInstanceIntegrityPolicy
- compute.instances.setShieldedVmIntegrityPolicy
- compute.instances.setTags
- compute.instances.simulateMaintenanceEvent
- compute.instances.start
- compute.instances.startWithEncryptionKey
- compute.instances.stop
- compute.instances.suspend
- compute.instances.update
- compute.instances.updateAccessConfig
- compute.instances.updateDisplayDevice
- compute.instances.updateNetworkInterface
- compute.instances.updateSecurity
- compute.instances.updateShieldedInstanceConfig
- compute.instances.updateShieldedVmConfig
- compute.instances.use
- compute.instances.useReadOnly
- logging.buckets.copyLogEntries
- logging.buckets.create
- logging.buckets.delete
- logging.buckets.get
- logging.buckets.list
- logging.buckets.undelete
- logging.buckets.update
- logging.buckets.write
- logging.exclusions.create
- logging.exclusions.delete
- logging.exclusions.get
- logging.exclusions.list
- logging.exclusions.update
- logging.fields.access
- logging.googleapis.com/settings.get
- logging.googleapis.com/settings.update
- logging.links.create
- logging.links.delete
- logging.links.get
- logging.links.list
- logging.locations.get
- logging.locations.list
- logging.logEntries.create
- logging.logEntries.download
- logging.logEntries.list
- logging.logEntries.route
- logging.logMetrics.create
- logging.logMetrics.delete
- logging.logMetrics.get
- logging.logMetrics.list
- logging.logMetrics.update
- logging.logServiceIndexes.list
- logging.logServices.list
- logging.logs.delete
- logging.logs.list
- logging.notificationRules.create
- logging.notificationRules.delete
- logging.notificationRules.get
- logging.notificationRules.list
- logging.notificationRules.update
- logging.operations.cancel
- logging.operations.get
- logging.operations.list
- logging.privateLogEntries.list
- logging.queries.create
- logging.queries.delete
- logging.queries.get
- logging.queries.list
- logging.queries.listShared
- logging.queries.share
- logging.queries.update
- logging.queries.updateShared
- logging.settings.get
- logging.settings.update
- logging.sinks.create
- logging.sinks.delete
- logging.sinks.get
- logging.sinks.list
- logging.sinks.update
- logging.usage.get
- logging.views.access
- logging.views.create
- logging.views.delete
- logging.views.get
- logging.views.list
- logging.views.listLogs
- logging.views.listResourceKeys
- logging.views.listResourceValues
- logging.views.update
- monitoring.alertPolicies.create
- monitoring.alertPolicies.delete
- monitoring.alertPolicies.get
- monitoring.alertPolicies.list
- monitoring.alertPolicies.update
- monitoring.dashboards.create
- monitoring.dashboards.delete
- monitoring.dashboards.get
- monitoring.dashboards.list
- monitoring.dashboards.update
- monitoring.groups.create
- monitoring.groups.delete
- monitoring.groups.get
- monitoring.groups.list
- monitoring.groups.update
- monitoring.metricDescriptors.create
- monitoring.metricDescriptors.delete
- monitoring.metricDescriptors.get
- monitoring.metricDescriptors.list
- monitoring.metricsScopes.link
- monitoring.monitoredResourceDescriptors.get
- monitoring.monitoredResourceDescriptors.list
- monitoring.publicWidgets.create
- monitoring.publicWidgets.delete
- monitoring.publicWidgets.get
- monitoring.publicWidgets.list
- monitoring.publicWidgets.update
- monitoring.services.create
- monitoring.services.delete
- monitoring.services.get
- monitoring.services.list
- monitoring.services.update
- monitoring.slos.create
- monitoring.slos.delete
- monitoring.slos.get
- monitoring.slos.list
- monitoring.slos.update
- monitoring.snoozes.create
- monitoring.snoozes.get
- monitoring.snoozes.list
- monitoring.snoozes.update
- monitoring.timeSeries.create
- monitoring.timeSeries.list
- monitoring.uptimeCheckConfigs.create
- monitoring.uptimeCheckConfigs.delete
- monitoring.uptimeCheckConfigs.get
- monitoring.uptimeCheckConfigs.list
- monitoring.uptimeCheckConfigs.update
- opsconfigmonitoring.resourceMetadata.list
- opsconfigmonitoring.resourceMetadata.write
- osconfig.osPolicyAssignmentReports.get
- osconfig.osPolicyAssignmentReports.list
- osconfig.osPolicyAssignmentReports.searchSummaries
- osconfig.osPolicyAssignments.create
- osconfig.osPolicyAssignments.delete
- osconfig.osPolicyAssignments.get
- osconfig.osPolicyAssignments.list
- osconfig.osPolicyAssignments.searchPolicies
- osconfig.osPolicyAssignments.update
- stackdriver.projects.get
- stackdriver.resourceMetadata.list
- stackdriver.resourceMetadata.write
Hi,
Service account i having the valid roles and permissions mapped. Pelase find the screen shot.
I have tried to run the health check script as well. Got the below details.
Please find the output of the health check script.
"Script version 0.7 run at 03/13/2024 12:54:21"
===============================================================================
METADATA
===============================================================================
zone: us-central1-a
project_name: 8888888
project_id: 888888888
instance_name: windows
instance_id: 6880693067676701372
image: projects/windows-cloud/global/images/windows-server-2022-dc-v20240214
Trying to connect to logging.googleapis.com ...
Connected OK
Trying to connect to monitoring.googleapis.com ...
Connected OK
Using service account compute-admin@neural-sunup-416408.iam.gserviceaccount.com.
It looks like it is authorized using service account attached to resource.
===============================================================================
OPS AGENT
===============================================================================
===== VERSION =====
Installed packages matching "google-cloud-ops-agent": google-cloud-ops-agent.x86_64 2.9.1@1
===== STATUS =====
@{Name=google-cloud-ops-agent; DisplayName=Google Cloud Ops Agent; StartType=Automatic; Status=Running}
===== PORTS STATUS =====
Metrics Agent self metrics port '20201' usage Logging Agent self metrics port '20202' usage
> TCP 0.0.0.0:20202 0.0.0.0:0 LISTENING
[fluent-bit.exe]
> TCP 127.0.0.1:20202 127.0.0.1:53413 TIME_WAIT
> TCP 127.0.0.1:20202 127.0.0.1:53445 TIME_WAIT
TCP 127.0.0.1:51930 127.0.0.1:51931 ESTABLISHED
Please let me know if any additional api's i need to enable.
so far the below api's are enabled for this job.
