Sprinto Dashboard

How to resolve Sprinto check for restricting public access from GCP cloud storage buckets

About:

Sprinto check: Ensure That Cloud Storage Bucket Is Not Anonymously or Publicly Accessible The following Sprinto check gets activated when any of your cloud storage buckets that you classified as "Production" on your Sprinto account have open public access. To resolve this check, you need to remove public access to such cloud storage buckets. Once updated, Sprinto detects the changes and sets the check status to "Passing" on your Sprinto app.

Purpose:

This Sprinto check aims to safeguard the integrity and confidentiality of data stored in cloud storage buckets by configuring access permissions appropriately.

How to resolve this check:

Follow the below applicable steps to resolve this check:

Before you begin

  • Ensure you have administrator privileges on the GCP account where you wish to make configuration changes.

Updating via. GCP control panel

  1. Log in to GCP Console using your credentials.

  2. Navigate to the Cloud Storage service.

  3. Select any bucket from the list and select the Permission tab.

  4. Use the filter fields "Principal: allUsers" and "Principal:allAuthenticatedUsers" to find any bucket with public access.

  5. If you find any result from the above filters, click the delete icon and remove the assigned roles.

Sprinto will detect the configuration change and set the check status to "Passing."

Contact Sprinto support if you have any queries related to the check or need assistance.

PreviousHow to resolve Sprinto check for resolving vulnerability within the SLANextHow to resolve Sprinto check for restricting public access on Azure storage accounts