检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
Private NAT Private Gateways Are in Specified VPCs Rule Details Table 1 Rule details Parameter Description Rule Name private-nat-gateway-authorized-vpc-only Identifier private-nat-gateway-authorized-vpc-only Description If a private NAT gateway is not in a specified VPC, this gateway
of API authentication configured, this APIG gateway is noncompliant.
Dedicated API Gateways Have Logging Enabled Rule Details Table 1 Rule details Parameter Description Rule Name apig-instances-execution-logging-enabled Identifier apig-instances-execution-logging-enabled Description If logging is not enabled for a dedicated APIG gateway, this gateway
Dedicated API Gateways Use SSL certificates Rule Details Table 1 Rule details Parameter Description Rule Name apig-instances-ssl-enabled Identifier apig-instances-ssl-enabled Description If no SSL certificates are attached to a dedicated APIG gateway, this gateway is considered noncompliant
If a private NAT gateway is not in a specified VPC, this gateway is noncompliant. rds-instance-enable-backup rds If backup is not enabled for an RDS instance, this instance is noncompliant. rds-instance-multi-az-support rds If an RDS instance does not support multi-AZ deployment,
If a private NAT gateway is not in a specified VPC, this gateway is noncompliant. vpc-sg-restricted-common-ports vpc If a security group allows all IPv4 and IPv6 traffic (with the source address set to 0.0.0.0/0 or ::/0) to the specified ports, this security group is noncompliant
If a private NAT gateway is not in a specified VPC, this gateway is noncompliant. rds-instance-multi-az-support rds If an RDS instance does not support multi-AZ deployment, this RDS instance is noncompliant. rds-instance-no-public-ip rds If an RDS instance has an EIP attached, this
NAT Gateway Private NAT Private Gateways Are in Specified VPCs Parent topic: Built-In Policies
If a private NAT gateway is not in a specified VPC, this gateway is noncompliant. rds-instance-enable-backup rds If backup is not enabled for an RDS instance, this instance is noncompliant. rds-instance-multi-az-support rds If an RDS instance does not support multi-AZ deployment,
Table 1 Conformance package description Rule Identifier Cloud Service Description apig-instances-execution-logging-enabled apig If logging is not enabled for a dedicated APIG gateway, this gateway is considered non-compliant. as-group-elb-healthcheck-required as If an AS group is
If not, the VPCs are considered non-compliant. 8.5 apig-instances-execution-logging-enabled apig If logging is not enabled for a dedicated APIG gateway, this gateway is considered non-compliant. 8.5 cts-lts-enable cts If a CTS tracker does not have trace transfer to LTS enabled, this
Gateway Public NAT Gateways (nat.natGateways) Private NAT Gateways (nat.privateNatGateways) Cloud Backup and Recovery (CBR) Vaults (cbr.vault) Data Encryption Workshop (DEW) keys (kms.keys) Cloud Container Engine (CCE) Clusters (cce.clusters) GaussDB Instances (gaussdb.instances)
If a private NAT gateway is not in a specified VPC, this gateway is noncompliant. rds-instance-multi-az-support rds If an RDS instance does not support multi-AZ deployment, this RDS instance is noncompliant. rds-instance-no-public-ip rds If an RDS instance has an EIP attached, this
Gateway Public NAT gateway EVS Volume Contains Cloud Backup and Recovery Vaults isAttachedTo ECS Cloud server BMS Cloud server Cloud Backup and Recovery Vaults HECS HECS IMS Image isAssociatedWith ECS Cloud server BMS Cloud server HECS HECS NAT Gateway Public NAT gateway isAttachedTo
The service is unavailable. 504 Gateway Timeout A gateway timeout error occurred. Parent Topic: Appendixes
Gateway Private NAT Private Gateways Are in Specified VPCs Configuration change nat.privateNatGateways VPC Endpoint (VPCEP) VPC Endpoint Check for Specified Services Periodic Account Web Application Firewall (WAF) WAF Instances Have Protection Policies Attached Configuration change
Built-In Policies Predefined Policy List General Policies API Gateway CodeArts Deploy MapReduce Service NAT Gateway VPC Endpoint Web Application Firewall Elastic Load Balance Elastic IP Auto Scaling Scalable File Service Turbo (SFS Turbo) Elastic Cloud Server Distributed Cache Service
Table 1 Conformance package description Rule Identifier Cloud Service Description alarm-action-enabled-check ces If an alarm rule is not enabled, this rule is noncompliant. apig-instances-execution-logging-enabled apig If logging is not enabled for a dedicated APIG gateway, this gateway
API Gateway Dedicated API Gateways Have an Authorization Type Set Dedicated API Gateways Have Logging Enabled Dedicated API Gateways Use SSL certificates Parent topic: Built-In Policies
If logging is not enabled for a dedicated APIG gateway, this gateway is considered non-compliant. apig-instances-ssl-enabled apig If no SSL certificates are attached to a dedicated APIG gateway, this gateway is considered noncompliant.
