Skip to main content

Create Google Cloud diagrams

This page describes how to create a diagram of your Google Cloud environment in the DoiT console.

Choose your learning path

Read the content below or check out the ▶️ interactive demo for a visual walkthrough.

Import a Google Cloud organization

To import a Google Cloud organization:

  1. Sign in to the DoiT console, select Automation and operations from the top navigation mega menu, and then select Cloud Diagrams.

  2. If this is your first diagram, select Create first diagram, otherwise select Create diagram.

  3. Choose Google Cloud and select Next. The console loads your Google Cloud organizations and projects.

    Select your Google Cloud organizations or projects

  4. Select the organizations and projects to diagram:

    • To select all eligible organizations and projects at once, select the All orgs/projects checkbox at the top of the list.

    • To select specific organizations, select the checkbox next to each organization. If you select an organization, a diagram is created for each project in the organization.

    • To select individual projects, expand an organization and select the projects you want. A diagram is created for each project that you select.

    Note

    Cloud Diagrams are static snapshots and do not automatically update. If you subsequently add new projects to the organization, you must create a new diagram for each newly added project. Similarly, if a project is deleted, you must manually delete the corresponding diagram.

  5. Organizations and projects that are greyed out are missing the required permissions. Select Add missing permissions next to the organization or project and follow the steps in Add missing permissions.

  6. Select Import. Once your diagrams are created, you are redirected to the Cloud Diagrams dashboard, where you can find your newly created diagrams.

Add missing permissions

When an organization or project is missing the permissions required for Cloud Diagrams, you can add them as part of the onboarding flow. The DoiT service account associated with the organization requires specific permissions.

  1. Next to the organization or project with missing permissions, select Add missing permissions. A dialog opens with the gcloud commands you need to run.

    Check permissions

  2. Select Open Google Cloud Shell to open a terminal session in your browser.

  3. If you are updating permissions for an organization, in Find your Organization ID, copy the provided code block and run it in Cloud Shell. This retrieves a list of your Google Cloud organizations and their IDs.

  4. Depending on whether you are granting permissions for an organization or a project, copy the provided code block.

    • Organization: Copy the provided code block in Update custom role.

    • Project: Copy the provided code block in Update custom role for project.

  5. Paste the command in Cloud Shell. If the command contains ORGANIZATION_ID, replace it with the ID of the organization you you retrieved in step 2.

  6. Run the command.

  7. Go back to the DoiT console and select Check permissions status. The console verifies your permissions, which may take a few minutes.

    • If the check succeeds, the organization or project becomes selectable and you can continue with the import.

    • If DoiT Cloud Intelligence is unable to load permissions, select Try again to retry, or select Contact an expert to open an expert inquiry.

      Permissions check fails

▶️Interactive demo

Try out our interactive demo for a hands-on walk-through experience.

If the demo doesn't display properly, try expanding your browser window or opening the demo in a new tab.

Last updated on