Turbot Guardrails Hub 
Hub
  • Mods
  • Policy Packs
  • Docs
  • Home
ModsPolicy PacksDocsHome
Policy Packs
GCP CIS v2.0.0 - Section 1 - Identity and Access Management
  • GCP > Dataproc > Cluster > Approved
  • GCP > Dataproc > Cluster > Approved > Custom
  • GCP > IAM > API Key > Active
  • GCP > IAM > API Key > Active > Age
  • GCP > IAM > API Key > Approved
  • GCP > IAM > API Key > Approved > Custom
  • GCP > IAM > Project User > Approved
  • GCP > IAM > Project User > Approved > Custom
  • GCP > IAM > Service Account > Approved
  • GCP > IAM > Service Account > Approved > Custom
  • GCP > IAM > Service Account Key > Active
  • GCP > IAM > Service Account Key > Active > Age
  • GCP > IAM > Service Account Key > Approved
  • GCP > IAM > Service Account Key > Approved > Custom
  • GCP > KMS > Crypto Key > Approved
  • GCP > KMS > Crypto Key > Approved > Custom
  • GCP > KMS > Crypto Key > Policy > Trusted Access
  • GCP > KMS > Crypto Key > Policy > Trusted Access > All Authenticated
  • GCP > KMS > Crypto Key > Policy > Trusted Access > All Users

Policy Settings

The GCP CIS v2.0.0 - Section 1 - Identity and Access Management policy pack has 19 policy settings:

PolicySettingNote
GCP > Dataproc > Cluster > ApprovedCheck: ApprovedGCP CIS v2.0.0 - Control: 1.17
GCP > Dataproc > Cluster > Approved > CustomCalculatedGCP CIS v2.0.0 - Control: 1.17
GCP > IAM > API Key > ActiveCheck: ActiveGCP CIS v2.0.0 - Control: 1.15
GCP > IAM > API Key > Active > AgeForce inactive if age > 90 daysGCP CIS v2.0.0 - Control: 1.15
GCP > IAM > API Key > ApprovedCheck: ApprovedGCP CIS v2.0.0 - Control: 1.12, 1.13, 1.14
GCP > IAM > API Key > Approved > CustomCalculatedGCP CIS v2.0.0 - Control: 1.12, 1.13 and 1.14
GCP > IAM > Project User > ApprovedCheck: ApprovedGCP CIS v2.0.0 - Control: 1.6, 1.8 and 1.11
GCP > IAM > Project User > Approved > CustomCalculatedGCP CIS v2.0.0 - Control: 1.6, 1.8 and 1.11
GCP > IAM > Service Account > ApprovedCheck: ApprovedGCP CIS v2.0.0 - Control: 1.5
GCP > IAM > Service Account > Approved > CustomCalculatedGCP CIS v2.0.0 - Control: 1.5
GCP > IAM > Service Account Key > ActiveCheck: ActiveGCP CIS v2.0.0 - Control: 1.7
GCP > IAM > Service Account Key > Active > AgeForce inactive if age > 90 daysGCP CIS v2.0.0 - Control: 1.7
GCP > IAM > Service Account Key > ApprovedCheck: ApprovedGCP CIS v2.0.0 - Control: 1.4
GCP > IAM > Service Account Key > Approved > CustomCalculatedGCP CIS v2.0.0 - Control: 1.4
GCP > KMS > Crypto Key > ApprovedCheck: ApprovedGCP CIS v2.0.0 - Control: 1.10
GCP > KMS > Crypto Key > Approved > CustomCalculatedGCP CIS v2.0.0 - Control: 1.10
GCP > KMS > Crypto Key > Policy > Trusted AccessCheck: Trusted Access > *GCP CIS v2.0.0 - Control: 1.9
GCP > KMS > Crypto Key > Policy > Trusted Access > All AuthenticatedDo not allow allAuthenticatedUsersGCP CIS v2.0.0 - Control: 1.9
GCP > KMS > Crypto Key > Policy > Trusted Access > All UsersDo not allow allUsersGCP CIS v2.0.0 - Control: 1.9
Guardrails
Guardrails Hub
  • Hub
  • Docs
  • Blog
  • Changelog
Products
  • GuardrailsGuardrails
  • PipesPipes
  • SteampipeSteampipe
  • PowerpipePowerpipe
  • FlowpipeFlowpipe
  • TailpipeTailpipe
Turbot
  • Home
  • About us
  • We're hiring!
  • Contact us
Community

Our community of practitioners love to discuss cloud governance & security.

Slack logoJoin us on Slack →

System StatusLegalSecurity
Terms of UseSecurityPrivacy