After setting up a Google Cloud Platform (GCP) Service account so that Cloud Discovery & Visibility (CDV) has the appropriate permissions (see Setting up GCP roles and permissions for Organization-level jobs), you can set up and run Organization-level discovery and visibility on GCP infrastructures (running it on some or all projects in the Organization).
To set up Organization-level discovery and visibility:
Within CDV, when creating a new Discovery, go to the GCP service account section.
In the GCP service account section, tick the Discovery for Organization checkbox.
CDV will check permissions for the current Service Account that CDV uses. If more permissions are needed for Organization-level discovery and visibility, CDV displays an error message listing the missing permissions.
For a list of needed permissions, see GCP role permissions for Organization-level discovery and visibility.
In Discovery options, configure the details of what you want to discover and from where. (Discovery options are available only if you are using Advanced setup.)
For more details, see GCP job settings: Discovery options.
In Monitoring options, configure how you want CDV to monitor changes to GCP network resources. This can be either through Scheduled updates (for Discovery) or Real time updates (for Visibility).
For more details, see GCP job settings: Monitoring options.
When you're done, click Create new discovery.
CDV will start discovery or visibility using the selected criteria.
Tip: In the Discovery and Visibility pages, Organization-level Schedule managers and Visibility managers will appear in the tables with a "true" in the Organization column.