Configuration of Cloud Marketplaces
Restrict Third-Party CSP Marketplace software to GC-approved products.
- Only GC approved cloud marketplace products are to be consumed. Turning on the commercial marketplace is prohibited.
- Submit requests to add third-party products to marketplace to SSC Cloud Broker.
- Confirm that third-party marketplace restrictions have been implemented.
Applicable Service Models
- IaaS, PaaS, SaaS
- SPIN 2017-01, subsection 6.2.5
- Refer to GCconnex for current list of approved marketplace products.
- Related security controls: CM‑2, CM‑3, CM‑4, CM‑5, CM‑8, SA‑22