Policy Settings
The Enforce GCP KMS Crypto Keys Are Not Publicly Accessible policy pack has 3 policy settings:
Policy | Setting | Note |
---|---|---|
GCP > KMS > Crypto Key > Policy > Trusted Access | Check: Trusted Access > * | |
GCP > KMS > Crypto Key > Policy > Trusted Access > All Authenticated | Do not allow allAuthenticatedUsers | |
GCP > KMS > Crypto Key > Policy > Trusted Access > All Users | Do not allow allUsers |