---
names: 
  full: "Google GCE Instance Block Project-Wide SSH Keys is not enabled"
  contextual: "Instance Block Project-Wide SSH Keys is not enabled"
description: "It is recommended to use Instance specific SSH key(s) instead of using common/shared \
 project-wide SSH key(s) to access Instances. "
type: COMPLIANCE_POLICY
categories:
  - "SECURITY"
frameworkMappings:
  - /frameworks/cis-gcp-v4.0.0/04/03
  - /frameworks/cloudaware/resource-security/secure-access
  - /frameworks/nist-sp-800-53-r5/ac/17
  - /frameworks/nist-sp-800-53-r5/ia/05
  - /frameworks/nist-sp-800-53-r5/sc/08
  - /frameworks/pci-dss-v4.0/02/02/07
  - /frameworks/pci-dss-v4.0/04/01/01
  - /frameworks/pci-dss-v4.0/04/02/01
  - /frameworks/pci-dss-v4.0/04/02/01/02
  - /frameworks/pci-dss-v4.0/04/02/02
  - /frameworks/pci-dss-v4.0/08/03/02
  - /frameworks/iso-iec-27001-2022/05/14
  - /frameworks/nist-csf-v1.1/pr-ds/02
  - /frameworks/soc-2/cc6/01/11
  - /frameworks/soc-2/cc6/01/03
  - /frameworks/soc-2/cc6/01/08
  - /frameworks/soc-2/cc6/07/02
similarPolicies:
  cloudConformity:
    - url: "https://www.trendmicro.com/cloudoneconformity-staging/knowledge-base/gcp/ComputeEngine/enable-block-project-wide-ssh-keys.html"
      name: "Enable 'Block Project-Wide SSH Keys' Security Feature"