Compute Engine Firestore default service account
Overview
Critical
0High
0Medium
2Low
2Informational
0Security issues (4)
| Severity | Non-Compliance | Issue | Remediation | Read more | Action |
|---|---|---|---|---|---|
| Medium | CIS 1.11 | Service account has KMS admin role and a CryptoKey role at the same time. | Ensure that separation of duties is enforced for all service account roles. | More info | |
| Medium | CIS 1.11 | User account has both Service Account User and Service Account Admin roles attached. | Ensure that separation of duties is enforced for all service account roles. | More info | |
| Low | CIS 1.6 | User account has a Service Account Token Creator role. | For best security practices, ensure that no IAM users have Service Account Token Creator role | More info | |
| Low | — | User account has a Service Account User role. | It is not recommended to have Service Account User role attached to your service accounts, as that role enables access to all service accounts within the project. | More info |