Steampipe mods are now Powerpipe →
Powerpipe Hub 
Hub
Mods
turbot/zoom_compliance
Overview
1Dashboards
171Controls
1Queries
0Variables
GitHub
Loading controls...

Control: 1.1.3.7 Ensure require encryption for 3rd party endpoints (SIP/H.323) is set to enabled (Manual)

Description

By default, Zoom requires encryption for all data transferred between the Zoom cloud, Zoom client, and Zoom Room. Turn on this setting to require encryption for 3rd party endpoints (SIP/H.323) as well.

Usage

Run the control in your terminal:

powerpipe control run zoom_compliance.control.cis_v100_1_1_3_7

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run zoom_compliance.control.cis_v100_1_1_3_7 --share

Steampipe Tables

zoom_account_settings
Zoom plugin

SQL

select
  -- Required Columns
  account_id as resource,
  case
    when (in_meeting -> 'e2e_encryption') :: bool then 'ok'
    else 'alarm'
  end as status,
  'Encryption for 3rd party endpoints is ' || case
    when (in_meeting -> 'e2e_encryption') :: bool then 'enabled'
    else 'disabled'
  end || '.' as reason
from
  zoom_account_settings

Tags

category = Compliance
cis = true
cis_item_id = 1.1.3.7
cis_level = 1
cis_section_id = 1.1.3
cis_type = manual
cis_version = v1.0.0
plugin = zoom
service = Zoom