Vulnerabilities
Misconfiguration
Runtime Security
Compliance
Google > Storage >

Storage Bucket Retention Policy

MEDIUM
Source
CloudSploit
ID
storage-bucket-retention-policy
management console

Storage Bucket Retention Policy

Ensures bucket retention policy is set and locked to prevent deleting or updating of bucket objects or retention policy.

Configuring retention policy for bucket prevents accidental deletion as well as modification of bucket objects. This retention policy should also be locked to prevent policy deletion.

Follow the appropriate remediation steps below to resolve the issue.

  1. Log into the Google Cloud Platform Console.

  2. Scroll down the left navigation panel and choose “Cloud Storage” to select the “Buckets” option.

  3. On the “Buckets” page, select the bucket which you want to configure by clicking on its name.Step

  4. Select the “PROTECTION” tab to access the protection configuration defined for selected bucket.Step

  5. Scroll down to “Bucket retention policy” configuration and click on “SET RETENTION POLICY” to add the retention policy to the selected bucketStep

  6. A popup panel will appear, select the desired retention period and click on “save” to save the retention policy.Step

  7. Repeat steps number 4-6 to add retention policy to all other buckets in the project.

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.
Copyright © 2024 Aqua Security Software Ltd.   Privacy Policy | Terms of Use