bigquery/WARN/2022_002

Product: BigQuery
Rule class: WARN - Something that is possibly wrong

Description

BigQuery provides fine-grained access to sensitive columns using policy tags. Using BigQuery column-level security, you can create policies that check, at query time, whether a user has proper access.

Remediation

The Data Catalog Fine-Grained Reader role is required for users who need access to data in secured columns. You can find who violates the access permission by taking a look the “authenticationInfo” from Cloud Logging and grant proper role to the user if needed.

Further information

• Introduction to column-level access control
• Data Catalog IAM