Real-Time Enforcer comes with default policies for specific Google Cloud Platform (GCP) resources.
This page lists the current resources and policies that are provided by Real-Time Enforcer.
- Enable logging
- Enable versioning
- Remove allUsers/allAuthenticatedUsers from bucket IAM policy
- Enable automated backups
- Enable require SSL for all connections
- Remove 0.0.0.0/0 from the list of permitted IPs
- Remove alUsers/allAuthenticatedUsers from dataset IAM policy