Control: Ensure Master authorized networks is set to Enabled on Kubernetes Engine Clusters
Usage
Run the control in your terminal:
powerpipe control run gcp_compliance.control.enable_gke_master_authorized_networks
Snapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run gcp_compliance.control.enable_gke_master_authorized_networks --share
SQL
This control uses a named query:
select self_link resource, case when master_authorized_networks_config -> 'enabled' = 'true' then 'ok' else 'alarm' end as status, case when master_authorized_networks_config -> 'enabled' = 'true' then title || ' master authorized networks is enabled.' else title || ' master authorized networks is disabled.' end as reason , location as location, project as projectfrom gcp_kubernetes_cluster;