Running Infrastructure Code using Least Privilege Access | C2C Community

Running Infrastructure Code using Least Privilege Access

  • 28 April 2023
  • 1 reply
  • 11 views

Userlevel 5
Badge +3

Excellent article posted last week on the google devops-sre blog -

https://cloud.google.com/blog/products/devops-sre/running-infrastructure-code-least-privilege-possible

This article focuses on strategies for running your infrastructure as code using least privilege principles to build greater security into the process. 

 

What steps are you taking to build security into your pipelines and infrastructure as code implementations?


1 reply

Userlevel 1
Badge

I’ve always loved any approach that removes the use of keys and Google Cloud did this so well by using impersonation. Speaking of keys specifically (or secrets for that matter), I am really fond of the use of Hashicorp Vault when using Terraform especially in a multi-cloud environment. Thanks for sharing this, Jenn!

Reply