User with an Administrative Primitive Role (Owner/Editor)

IAM misconfigurations

User with an Administrative Primitive Role (Owner/Editor)

Platform(s)

Compliance Frameworks

Brazilian General Data Protection (LGPD)
CCM-CSA
CCPA
cis_8
CPRA
Data Security Posture Management (DSPM) Best Practices
essential_8_au
GDPR
HITRUST
iso_27001_2022
iso_27002_2022
Mitre ATT&CK
New Zealand Information Security Manual
NIST 800-171
NIST 800-53
PDPA
pipeda
UK Cyber Essentials

Description

Primitive roles are roles that existed prior to the introduction of IAM in GCP. These roles are very powerful, and include a large number of permissions across all Google Cloud services. The user {GcpUser} was found with the primitive administrative role ""{GcpUser.PolicyBindings.Role}"", this role allow the user broad administrative permissions on the {GcpUser.PolicyBindings.Policy.Scope} level.

User with an Administrative Primitive Role (Owner/Editor)

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS