💼 4 Virtual Machines

• Contextual name: 💼 4 Virtual Machines
• ID: /frameworks/cis-gcp-v1.2.0/04
• Located in: 💼 CIS GCP v1.2.0

Description

This section covers recommendations addressing virtual machines on Google Cloud Platform.

Similar

• Internal
  • ID: dec-b-e8215080

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags
💼 4.1 Ensure that instances are not configured to use the default service account - Level 1 (Automated)
💼 4.2 Ensure that instances are not configured to use the default service account with full access to all Cloud APIs - Level 1 (Automated)
💼 4.3 Ensure "Block Project-wide SSH keys" is enabled for VM instances - Level 1 (Automated)
💼 4.4 Ensure oslogin is enabled for a Project - Level 1 (Automated)
💼 4.5 Ensure 'Enable connecting to serial ports' is not enabled for VM Instance - Level 1 (Automated)
💼 4.6 Ensure that IP forwarding is not enabled on Instances - Level 1 (Automated)
💼 4.7 Ensure VM disks for critical VMs are encrypted with Customer-Supplied Encryption Keys (CSEK) - Level 2 (Automated)
💼 4.8 Ensure Compute instances are launched with Shielded VM enabled - Level 2 (Automated)
💼 4.9 Ensure that Compute instances do not have public IP addresses - Level 2 (Automated)
💼 4.10 Ensure that App Engine applications enforce HTTPS connections - Level 2 (Manual _ Not supported, requires a manual assessment)
💼 4.11 Ensure that Compute instances have Confidential Computing enabled - Level 2 (Automated)