Loading controls...
Control: Enable device authorization
Description
New devices can be manually reviewed and approved by an Admin before they can join the network. This can be used to ensure only trusted devices, such as workplace-managed laptops and phones, can access a network.
Usage
Run the control in your terminal:
powerpipe control run tailscale_compliance.control.security_best_practices_device_authorization_enabledSnapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run tailscale_compliance.control.security_best_practices_device_authorization_enabled --shareSteampipe Tables
SQL
select id as resource, case when authorized then 'ok' else 'alarm' end as status, case when authorized then name || ' is authorized.' else name || ' is unauthorized.' end as reason, tailnet_namefrom tailscale_device;