User with Administrative Privileges within Resource Scope

IAM misconfigurations

User with Administrative Privileges within Resource Scope

Risk Level

Informational (4)

Platform(s)

Compliance Frameworks

Brazilian General Data Protection (LGPD)
CCM-CSA
CCPA
cis_8
CPRA
Data Security Posture Management (DSPM) Best Practices
essential_8_au
GDPR
HITRUST
ISO/IEC 27001
Mitre ATT&CK
New Zealand Information Security Manual
NIST 800-171
NIST 800-53
PDPA
UK Cyber Essentials

Description

The User '{GcpUser}' was granted an administrative role ({GcpUser.PolicyBindings.Role}) at the resource level ({GcpUser.PolicyBindings.Policy.Scope}). This role allows the user to perform all actions on the resource. Users should be provided only with the permissions they require. If the user does not require all actions, this role should be replaced with a less privileged one

Recommended Mitigation

It is recommended to provide a user with only the necessary permissions. Evaluate the user's permissions and consider removing the binding to {GcpUser.PolicyBindings.Role}

User with Administrative Privileges within Resource Scope

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS