GCP-cloud-storage-bucket-with-uniform-bucket-level-access-disabled

Owned by naveen
Nov 02, 2021
1 min read

Severity: Medium

Description: This control identifies GCP storage buckets for which the uniform bucket-level access is disabled. Enabling uniform bucket-level access guarantees that if a Storage bucket is not publicly accessible, no object in the bucket is publicly accessible either. It is recommended that uniform bucket-level access is enabled on Cloud Storage buckets.

Remediation Steps:

Perform following to enable uniform bucket level access :

  1. log in to GCP Console.

  2. Navigate to Storage.

  3. Click on Browser to get the list of storage buckets.

  4. Search for the alerted bucket and click on the bucket name.

  5. From the top menu go to PERMISSION tab.

  6. Under the section Access control, click on SWITCH TO UNIFORM.

  7. On the pop-up window select uniform.

  8. Click on Save.

Important:

Reference:

https://cloud.google.com/storage/docs/using-uniform-bucket-level-access#enable

Blue Hexagon Proprietary