ServiceNow CMDB CI relationship sync: faster, more complete →
Mods
GCP

Policy: GCP > IAM > Project User > Approved

Determine the action to take when a GCP IAM project user is not approved based on GCP > IAM > Project User > Approved > * policies.

The Approved control checks the status of the defined Approved sub-policies for the resource. If the resource is not approved according to any of these policies, this control raises an alarm and takes the defined enforcement action.

For any enforcement actions that specify if new, e.g., Enforce: Delete unapproved if new, this control will only take the enforcement actions for resources created within the last 60 minutes.

See Approved for more information.

Resource Types

This policy targets the following resource types:

Controls

Policy Packs

This policy setting is used by the following policy packs:

Policy Specification

Schema Type
string
Default
Skip
Valid Values [YAML]
  • Skip
    
  • Check: Approved
    
  • Enforce: Delete unapproved if new
    
Examples [YAML]
  • Check: Approved
    

Category

In Your Workspace

Developers