SCC Error Findings
Security Command Center configuration errors
SCC Error findings from Google Cloud Security Command Center, identifying problems in the configuration of Security Command Center or one of its services that prevent Security Command Center from detecting security issues.
Overview
SCC Error findings identify problems in the configuration of Security Command Center or one of its services that prevent Security Command Center from detecting security issues in your Google Cloud environment. These errors must be resolved to ensure proper security monitoring.
When Generated:
- Security scanner fails to access resources due to insufficient permissions
- API authentication fails when attempting to scan resources
- Resource is deleted or moved during scan operation
- Scan operation exceeds time limit
- Organization quota for security scans has been exceeded
- Invalid scanner configuration is detected
Security Relevance:
HighCompliance:
Frequency Notes:
SCC Error findings are generated when Security Command Center services encounter configuration or operational issues. Frequency is typically low but can spike during misconfigurations or when service quotas are exceeded. These errors should be resolved promptly to restore security monitoring capabilities.
Resources
Documentation
- Finding Classes - SCC Error official
- Overview of Security Command Center Errors official
- Configuration Error Findings official
- Remediate Configuration Error Findings official
Generation Configuration
Field Definitions
Complete field reference for this event type with data types, descriptions, and example values.
| Field Name | Type | Required | Format | Description | Example | Possible Values |
|---|---|---|---|---|---|---|
|
name
Source: Constructed with 'error-' prefix
|
String | Required |
organizations/{org_id}/sources/{source_id}/locations/global/findings/error-{finding_id}
|
Full resource name of the SCC error finding |
organizations/123456789/sources/9732761411165682985/locations/global/findings/error-abc123...
|
— |
|
category
|
String | Required | — | SCC error category |
SCANNER_ERROR
|
SCANNER_ERROR
— Security scanner encountered an error
API_ERROR
— API call failed
CONFIGURATION_ERROR
— Invalid configuration detected
PERMISSION_ERROR
— Insufficient permissions for operation
RESOURCE_ERROR
— Resource access or availability error
|
|
sourceProperties.error
Source: Object with errorType, errorCode, errorMessage, affectedService, errorTime, retryCount, and lastRetryTime
|
Object | Required | — | Error details | — | — |
|
sourceProperties.error.errorType
|
String | Required | — | Type of error encountered |
SCANNER_FAILURE
|
SCANNER_FAILURE
— Security scanner failed to complete scan
API_AUTHENTICATION_FAILURE
— API authentication failed
RESOURCE_ACCESS_DENIED
— Access to resource was denied
CONFIGURATION_MISMATCH
— Configuration mismatch detected
TIMEOUT
— Operation timed out
QUOTA_EXCEEDED
— Service quota exceeded
|
|
sourceProperties.error.errorCode
|
String | Required | — | Specific error code |
ERROR_SCANNER_DISABLED
|
ERROR_SCANNER_DISABLED
— Scanner is disabled
ERROR_PERMISSION_DENIED
— Permission denied
ERROR_RESOURCE_NOT_FOUND
— Resource not found
ERROR_QUOTA_EXCEEDED
— Quota exceeded
ERROR_TIMEOUT
— Operation timeout
ERROR_INVALID_CONFIGURATION
— Invalid configuration
|
|
severity
Source: random_weighted favoring MEDIUM (50%)
|
String | Required | — | SCC error severity level |
MEDIUM
|
CRITICAL
— Critical error preventing security monitoring
HIGH
— High severity error
MEDIUM
— Medium severity error
LOW
— Low severity error
|
|
findingClass
Source: Static 'SCC_ERROR'
|
String | Required | — | Finding class identifier |
SCC_ERROR
|
— |