How to resolve Sprinto check to restrict anonymous or public access to GCP BigQuery Datasets

About:

Sprinto check: Ensure That BigQuery Datasets Are Not Anonymously or Publicly Accessible

The above-mentioned sprinto check verifies that the GCP BigQuery Datasets are not accessible to anonymous or public internet.

Purpose:

The purpose of this check is to enforce the security of your BigQuery datasets by ensuring they are not anonymously or publicly accessible. Unauthorized access to datasets can lead to data breaches, privacy violations, and other security risks. By conducting this check, you can verify that appropriate access controls are in place, mitigating the potential for unauthorized data access or manipulation.

How to resolve this check:

Follow the below applicable steps to resolve this check:

Before you begin

Ensure you have the administrator privileges on the GCP account you wish to make the configuration changes.

Updating via. GCP control panel

Log in to the GCP Console using your credentials.
Navigate to the BigQuery service.
Select your desired dataset under Resources.
Click the Share option, and select the Permission tab.
Review each added role for permission.
Click the delete icon followed by Remove from the pop-up window for the following roles:
- allUsers
- allAuthenticatedUsers

Sprinto detects the configuration change, and set the check status to “Passing.”

Contact Sprinto support if you have any queries related to the check or need assistance.

PreviousHow to resolve Sprinto check to redirect traffic from http to https on AWS Application Load Balancer (ALB)NextHow to resolve Sprinto check to set the rotation period to be less than 90 days for GCP KMS encryption keys