Skip to main content

πŸ’Ό 3.10 Use Identity Aware Proxy (IAP) to Ensure Only Traffic From Google IP Addresses are 'Allowed' - Level 2 (Manual)

  • Contextual name: πŸ’Ό 3.10 Use Identity Aware Proxy (IAP) to Ensure Only Traffic From Google IP Addresses are 'Allowed' - Level 2 (Manual)
  • ID: /frameworks/cis-gcp-v1.3.0/03/10
  • Located in: πŸ’Ό 3 Networking

Description​

IAP authenticates the user requests to your apps via a Google single sign in. You can then manage these users with permissions to control access. It is recommended to use both IAP permissions and firewalls to restrict this access to your apps with sensitive information.

Similar​

  • Sections
    • /frameworks/cis-gcp-v2.0.0/03/10
  • Internal
    • ID: dec-c-c41e29b0

Similar Sections (Take Policies From)​

SectionSub SectionsInternal RulesPoliciesFlags
πŸ’Ό CIS GCP v2.0.0 β†’ πŸ’Ό 3.10 Use Identity Aware Proxy (IAP) to Ensure Only Traffic From Google IP Addresses are 'Allowed' - Level 2 (Manual)1

Similar Sections (Give Policies To)​

SectionSub SectionsInternal RulesPoliciesFlags
πŸ’Ό CIS GCP v2.0.0 β†’ πŸ’Ό 3.10 Use Identity Aware Proxy (IAP) to Ensure Only Traffic From Google IP Addresses are 'Allowed' - Level 2 (Manual)1

Sub Sections​

SectionSub SectionsInternal RulesPoliciesFlags

Policies (1)​

PolicyLogic CountFlags
πŸ“ Google Identity Aware Proxy (IAP) is not used to enforce access controls 🟒🟒 x3