Azure and GCP Perimeter Security, CIS Updates, and Enhanced Plugins →
Powerpipe Hub 
Hub
Mods
turbot/steampipe-mod-azure-compliance
Overview
15Dashboards
1471Benchmarks
461Queries
8Variables
GitHub

Benchmark: 2.1.1.2.1 Ensure Critical Data is Encrypted with Customer Managed Keys (CMK)

Description

Customer Managed Keys introduce additional depth to security by providing a means to manage access control for encryption keys.

Usage

Install the mod:

mkdir dashboards
cd dashboards
powerpipe mod init
powerpipe mod install github.com/turbot/steampipe-mod-azure-compliance

Start the Powerpipe server:

steampipe service start
powerpipe server

Open http://localhost:9033 in your browser and select 2.1.1.2.1 Ensure Critical Data is Encrypted with Customer Managed Keys (CMK).

Run this benchmark in your terminal:

powerpipe benchmark run azure_compliance.benchmark.cis_v400_2_1_1_2_1

Snapshot and share results via Turbot Pipes:

powerpipe benchmark run azure_compliance.benchmark.cis_v400_2_1_1_2_1 --share

Controls

Tags

category = Compliance
cis = true
cis_item_id = 2.1.1.2.1
cis_level = 2
cis_section_id = 2.1.1.2
cis_type = manual
cis_version = v4.0.0
plugin = azure
service = Azure