Lacework

Access helpful articles and other FAQs on Lacework

Article Id 334408

Description

You see many projects listed in your Google compliance project list. This occurs in Lacework environments with GCP integrated and set to integrate with all projects.

The Google app scripts creates projects under its own folder using the syntax of sys-0000xxxx

If these are ingested into Lacework then it will give you a lot of potential unwanted data.
To mitigate this, please use the folders to exclude option using Terraform

https://registry.terraform.io/modules/lacework/audit-log/gcp/latest/examples/organization-level-audi...

https://registry.terraform.io/modules/lacework/audit-log/gcp/latest/examples/organization-level-audi...

Scope

Integrate a Google Cloud Organization with Lacework for Configuration Assessment Excluding Folder(s)

The following provides an example of integrating a Google Cloud Organization with Lacework for Cloud Resource configuration assessment, excluding specific folders.

Solution

The fields required for this example are:

Name	Description	Type
org_integration	Set this to true to configure an organization level integration.	bool
organization_id	The id of the GCP Organization to integrate with.	string
project_id	The id of a Project, which will be used to deploy required resources for the integration. Note: if this is var is not explicitly set, the provider will check for the presence of the GOOGLE_PROJECT env var	string
folders_to_exclude	List of root folders to exclude in an organization-level integration. Format is 'folders/1234567890'	set(string)

40

Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Copyright 2025 Fortinet, Inc. All Rights Reserved.