Best practices

GCP Secret Manager secret has more regions than recommended

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

GCP Secret Manager can store, manage and access secrets, with the appropriate permissions, you can view its content. We detected that the secret '{GcpSecretManagerSecret}' is configured with 'userManaged' policy with more than five regions, this can cause a decrease in the availability of adding a secret version.

  • Recommended Mitigation

    It is recommended to configure 'userManaged' policy secrets with at least two and not more than five regions. For more information see: <a href="https://cloud.google.com/secret-manager/docs/choosing-replication" target="_blank" rel="noopener noreferrer">https://cloud.google.com/secret-manager/docs/choosing-replication</a>

Need help?

Get a free Security Risk Assessment. Start today

See Orca in action See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.