AliCloud Account ReportAliCloud ECS Disk Age ReportAliCloud ECS Disk DashboardAliCloud ECS Disk DetailAliCloud ECS Disk Encryption ReportAliCloud ECS Instance Age ReportAliCloud ECS Instance DashboardAliCloud ECS Instance DetailAliCloud ECS Instance Public Access ReportAliCloud ECS Security Group DashboardAliCloud ECS Security Group DetailAliCloud ECS Snapshot Age ReportAliCloud ECS Snapshot DashboardAliCloud ECS Snapshot DetailAliCloud Key Age ReportAliCloud Key DetailAliCloud KMS CMK Lifecycle ReportAliCloud KMS Key DashboardAliCloud OSS Bucket Age ReportAliCloud OSS Bucket DashboardAliCloud OSS Bucket DetailAliCloud OSS Bucket Encryption ReportAliCloud OSS Bucket Lifecycle ReportAliCloud OSS Bucket Logging ReportAliCloud OSS Bucket Public Access ReportAliCloud RAM Access Key Age ReportAliCloud RAM Credential ReportAliCloud RAM Group Age ReportAliCloud RAM Group DashboardAliCloud RAM Group DetailAliCloud RAM Policy DetailAliCloud RAM Role Age ReportAliCloud RAM Role DashboardAliCloud RAM Role DetailAliCloud RAM User Age ReportAliCloud RAM User DashboardAliCloud RAM User DetailAliCloud RAM User MFA ReportAliCloud RDS Instance Age ReportAliCloud RDS Instance DashboardAliCloud RDS Instance DetailAliCloud RDS Instance Public Access ReportAliCloud VPC DashboardAliCloud VPC DetailAliCloud VPC vSwitch Detail
Dashboard: AliCloud OSS Bucket Encryption Report
This report answers the following questions:
- How many buckets do not have HTTPS enabled to protect data in transit?
- Are my buckets encrypted at rest?
- What type of encryption is used?
- What KMS keys are used for encryption?
This dashboard contains 5 cards and 1 table.
Usage
Install the mod:
mkdir dashboardscd dashboardspowerpipe mod initpowerpipe mod install github.com/turbot/steampipe-mod-alicloud-insights
Start the Powerpipe server:
steampipe service startpowerpipe server
Open http://localhost:9033 in your browser and select AliCloud OSS Bucket Encryption Report dashboard.
You could also snapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe dashboard run alicloud_insights.dashboard.oss_bucket_encryption_report --share
Queries
The dashboard uses the named queries:
- oss_bucket_count
- oss_bucket_encrypted_with_byok_count
- oss_bucket_encrypted_with_servcie_key_count
- oss_bucket_encryption_table
- oss_bucket_ssl_not_enforced_count
- oss_bucket_unencrypted_count