Policy: GCP > CIS v2.0 > 4 - Virtual Machines > 4.05 - Ensure 'Enable Connecting to Serial Ports' Is Not Enabled for VM Instance

Configures auditing against a CIS Benchmark item.

Level: 1

Interacting with a serial port is often referred to as the serial console, which is similar to using a terminal window, in that input and output is entirely in text mode and there is no graphical interface or mouse support.

If you enable the interactive serial console on an instance, clients can attempt to connect to that instance from any IP address. Therefore interactive serial console support should be disabled.

Resource Types

This policy targets the following resource types:

GCP > Compute Engine > Instance

Primary Policy

This policy is used with the following primary policy:

GCP > CIS v2.0 > 4 - Virtual Machines

Controls

Policy Specification

Schema Type	`string`
Default	`Per GCP > CIS v2.0 > 4 - Virtual Machines`
Valid Values [YAML]	`Per GCP > CIS v2.0 > 4 - Virtual Machines` `Skip` `Check: Benchmark`

In Your Workspace

Policy Settings by Type report

Developers

Category URI

tmod:@turbot/cis#/control/categories/v070902

Policy Type URI

tmod:@turbot/gcp-cisv2-0#/policy/types/r0405

GraphQL

query policyType(id: "tmod:@turbot/gcp-cisv2-0#/policy/types/r0405") { … }

query policySettings(filter: "policyTypeId:'tmod:@turbot/gcp-cisv2-0#/policy/types/r0405'") { … }

query policyValues(filter: "policyTypeId:'tmod:@turbot/gcp-cisv2-0#/policy/types/r0405'") { … }

CLI

Get Policy Type

turbot graphql policy-type --id "tmod:@turbot/gcp-cisv2-0#/policy/types/r0405"

Get Policy Settings

turbot graphql policy-settings --filter "policyTypeId:tmod:@turbot/gcp-cisv2-0#/policy/types/r0405"