From 537ebe709b39d62c642fd8831a1b6435f170cca5 Mon Sep 17 00:00:00 2001 From: nuhasha <103121513+nuhasha@users.noreply.github.com> Date: Tue, 4 Apr 2023 23:29:22 +0300 Subject: [PATCH] Add remediation steps for plugin: Dataset All Users Policy --- en/google/bigquery/dataset-all-users-policy.md | 12 +++++++++++- 1 file changed, 11 insertions(+), 1 deletion(-) diff --git a/en/google/bigquery/dataset-all-users-policy.md b/en/google/bigquery/dataset-all-users-policy.md index 60e8fd670..2d2bb330d 100644 --- a/en/google/bigquery/dataset-all-users-policy.md +++ b/en/google/bigquery/dataset-all-users-policy.md @@ -14,4 +14,14 @@ | **GOOGLE Link** | https://cloud.google.com/bigquery/docs/dataset-access-controls | | **Recommended Action** | Ensure that each dataset is configured so that no member is set to allUsers or allAuthenticatedUsers. | -## Detailed Remediation Steps \ No newline at end of file +## Detailed Remediation Steps +1. Log into the Google Cloud Platform Console. +2. Scroll down the left navigation panel and click on "BigQuery". +3. In the Explorer pane, expand your project and select a dataset that allows public access. +4. Click Sharing then Permissions. +5. Review each attached role to find allUsers and/or allAuthenticatedUsers Roles. +6. Click on the role associated with the allUsers and/or allAuthenticatedUsers member to expand the role configuration panel. +7. Click the delete icon for each member of allUsers or allAuthenticatedUsers. On the popup click Remove to confirm your action. +8. Click Close to return to the selected BigQuery dataset dashboard. +9. Repeat step no. 4 – 7 for each publicly accessible dataset created within the selected project. +10. Repeat steps no. 3 – 9 for each project deployed in your Google Cloud account.