Ensure GCP DataFusion has stack driver logging enabled
Error: GCP DataFusion does not have stack driver logging enabled
Bridgecrew Policy ID: BC_GCP_GENERAL_40
Checkov Check ID: CKV_GCP_104
Severity: LOW
GCP DataFusion does not have stack driver logging enabled
Description
It is recommended to have a proper logging process for GCP DataFusion stack driver in order to track configuration changes conducted manually and programmatically and trace back unapproved changes.
Fix - Runtime
Fix - Buildtime
Terraform
resource "google_data_fusion_instance" "pass" {
project = "examplea"
provider = google-beta
name = "my-instance"
description = "My Data Fusion instance"
region = "us-central1"
type = "BASIC"
enable_stackdriver_logging = true
enable_stackdriver_monitoring = true
labels = {
example_key = "example_value"
}
//private_instance = false
network_config {
network = "default"
ip_allocation = "10.89.48.0/22"
}
version = "6.3.0"
dataproc_service_account = data.google_app_engine_default_service_account.default.email
}
Updated 3 months ago