Resource Type: GCP > DNS > Managed Zone
Managed Zone resource in GCP DNS service.
Resource Context
Managed Zone is a part of the DNS service.
Each Managed Zone lives under a Project.
Controls
The primary controls for GCP > DNS > Managed Zone are:
It is also targeted by these controls:
- GCP > CIS v1 > 3 Networking > 3.03 Ensure that DNSSEC is enabled for Cloud DNS (Not Scored)
- GCP > CIS v1 > 3 Networking > 3.04 Ensure that RSASHA1 is not used for key-signing key in Cloud DNS DNSSEC (Not Scored)
- GCP > CIS v1 > 3 Networking > 3.05 Ensure that RSASHA1 is not used for zone-signing key in Cloud DNS DNSSEC (Not Scored)
- GCP > CIS v2.0 > 3 - Networking > 3.03 - Ensure That DNSSEC Is Enabled for Cloud DNS
- GCP > CIS v2.0 > 3 - Networking > 3.04 - Ensure That RSASHA1 Is Not Used for the Key-Signing Key in Cloud DNS DNSSEC
- GCP > CIS v2.0 > 3 - Networking > 3.05 - Ensure That RSASHA1 Is Not Used for the Zone-Signing Key in Cloud DNS DNSSEC
Category
In Your Workspace
- Controls by Resource Type report
- Policy Settings by Resource Type report
- Resources by Resource Type report
Developers
- tmod:@turbot/gcp-dns#/resource/types/managedZone
- tmod:@turbot/turbot#/resource/categories/contentDelivery
- turbot graphql resource --id "tmod:@turbot/gcp-dns#/resource/types/managedZone"
Get Resource- select * from guardrails_resource where resource_type_uri = 'tmod:@turbot/gcp-dns#/resource/types/managedZone';
- select * from guardrails_policy_setting where filter = 'resourceTypeId:"tmod:@turbot/gcp-dns#/resource/types/managedZone"';
- select * from guardrails_notification where resource_type_uri = 'tmod:@turbot/gcp-dns#/resource/types/managedZone' and notification_type in ('resource_updated', 'resource_created');
Get ResourceGet Policy Settings (By Resource ID)Get Resource Notification
Resource Type URI
Category URI
GraphQL
CLI
Steampipe Query