IAM misconfigurations

Policy with users that don’t belong to the corporate domains

Platform(s)
Compliance Frameworks

Description

Fully-managed corporate Google accounts can be used for increased visibility, auditing, and controlling access to Cloud Platform resources. Email accounts based outside of the user's organization, such as personal accounts, should not be used for business purposes. It was detected that the IAM policy '{GcpIamPolicy}' contains users with non corporate emails: {GcpIamPolicy.PolicyBindings.Users}.
Need help?

Get a free Security Risk Assessment. Start today

Orca Security Demo Demo the Orca Platform-> In just 10 minutes, you’ll see how Orca Security can revolutionize your cloud security strategy. Watch a recorded demo from a cloud security expert now.