Control: Use tags in ACLs

Description

Use tags to manage devices. Using tags allows you to define access to devices based on purpose, rather than based on owner.

Usage

Run the control in your terminal:

powerpipe control run tailscale_compliance.control.security_best_practices_tailnet_acl_tags_used

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run tailscale_compliance.control.security_best_practices_tailnet_acl_tags_used --share

Steampipe Tables

tailscale_device

SQL

select
  name as resource,
  case
    when tags is not null then 'ok'
    else 'alarm'
  end as status,
  case
    when tags is not null then name || ' uses ACL tags.'
    else name || ' does not use ACL tags.'
  end as reason,
  tailnet_name
from
  tailscale_device;