This implementation automates reporting to verify compliance with GC Cloud Guardrails. SSC and TBS review the results. Cette mise en œuvre automatise la production de rapports afin de vérifier la conformité aux mesures de sécurité infonuagique du GC. SPC et SCT examinent les résultats.
Describe the bug
After creating a device filter with a conditional access policy to satisfy the conditions the control had two errors and no longer showed up in the workbook. (See GR3 Test Policy CAP in 163cspm dev for all CAP config settings.)
To Reproduce
Steps to reproduce the behavior:
Go to 163cspmdev
Click on main runbook
Review errors
See error
Expected behavior
A clear and concise description of what you expected to happen.
Screenshots
Error
End signature block : Failed to invoke the module execution script for module 'Check-AdminAccess', script '' with error: Exception calling "Invoke" with "0" argument(s): "Cannot compare "@{id=b94b9160-d2fd-4705-97cf-82b7a91d1557; templateId=; displayName=GR3TestPolicy; createdDateTime=2024-10-17T19:37:15.56838Z; modifiedDateTime=; state=enabled; sessionControls=; conditions=; grantControls=}" to "0" because the objects are not the same type or the object "@{id=b94b9160-d2fd-4705-97cf-82b7a91d1557; templateId=; displayName=GR3TestPolicy; createdDateTime=2024-10-17T19:37:15.56838Z; modifiedDateTime=; state=enabled; sessionControls=; conditions=; grantControls=}" does not implement "IComparable"." + CategoryInfo : NotSpecified: (:) [Write-Error], WriteErrorException + FullyQualifiedErrorId : Microsoft.PowerShell.Commands.WriteErrorException
Question
For the user scope; is it that the minimum users that need to be included are admins and that the department could also pass if the CAP applied to All Users? Context- trying to see what flexibility we can offer or if there are limitations.
Describe the bug After creating a device filter with a conditional access policy to satisfy the conditions the control had two errors and no longer showed up in the workbook. (See GR3 Test Policy CAP in 163cspm dev for all CAP config settings.)
To Reproduce Steps to reproduce the behavior:
Expected behavior A clear and concise description of what you expected to happen.
Screenshots
Error
End signature block : Failed to invoke the module execution script for module 'Check-AdminAccess', script '' with error: Exception calling "Invoke" with "0" argument(s): "Cannot compare "@{id=b94b9160-d2fd-4705-97cf-82b7a91d1557; templateId=; displayName=GR3TestPolicy; createdDateTime=2024-10-17T19:37:15.56838Z; modifiedDateTime=; state=enabled; sessionControls=; conditions=; grantControls=}" to "0" because the objects are not the same type or the object "@{id=b94b9160-d2fd-4705-97cf-82b7a91d1557; templateId=; displayName=GR3TestPolicy; createdDateTime=2024-10-17T19:37:15.56838Z; modifiedDateTime=; state=enabled; sessionControls=; conditions=; grantControls=}" does not implement "IComparable"." + CategoryInfo : NotSpecified: (:) [Write-Error], WriteErrorException + FullyQualifiedErrorId : Microsoft.PowerShell.Commands.WriteErrorException
Question
For the user scope; is it that the minimum users that need to be included are admins and that the department could also pass if the CAP applied to All Users? Context- trying to see what flexibility we can offer or if there are limitations.