检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn

不再显示此消息

  • Intl-English
    International
    • English
    • Bahasa Indonesia
    • Español
    • Português
    • Türkçe
    • عربي
    • ไทย
    • 简体中文
    • 日本語
    中国站
    • 简体中文
    Europe
    • English
    • Deutsch
    • Español
    • Français
    • Nederlands
  • Huawei Cloud
    • Activities
    • Products
    • Solutions
    • Pricing
    • KooGallery
    • Partners
    • Developers
    • Support
    • About Us
    Hot
    • Free Packages
    • Elastic Cloud Server (ECS)
    • Object Storage Service (OBS)
    • ModelArts
    • Cloud Container Engine (CCE)
      Show more results for “”
      • Contact Us
      • Documentation
      • Console
        • My Account
        • Billing & Costs
        • Service Tickets
        • Unread Messages
        • Console
        • Partner Center
        • Sign In Sign Up
      • Sign In
      • Sign Up
        • My Account Complete Sign Up
        • Billing & Costs
        • Service Tickets
        • Unread Messages
        • Console
        • Partner Center
        • Log Out
      Cancel
      Hot
      • Free Packages
      • Elastic Cloud Server (ECS)
      • Object Storage Service (OBS)
      • ModelArts
      • Cloud Container Engine (CCE)
        • All
        • Products
        • Solutions
        • Documentation
        • KooGallery
        • Developer
        • Learn
        • Others
        91 results found.
        AI智能搜索
        Product Selection
        Config
        All Product
        Elastic Cloud Server
        Huawei Cloud Flexus
        • Huawei Cloud Flexus L Instance
        • Huawei Cloud Flexus X Instance
        • Huawei Cloud Flexus RDS
        • Huawei Cloud Flexus Container Instance
        Bare Metal Server
        Auto Scaling
        Image Management Service
        Dedicated Host
        FunctionGraph
        Cloud Phone Host
        Huawei Cloud EulerOS
        Object Storage Service
        Elastic Volume Service
        Cloud Backup and Recovery
        Storage Disaster Recovery Service
        Scalable File Service Turbo
        Scalable File Service
        Volume Backup Service
        Cloud Server Backup Service
        Data Express Service
        Dedicated Distributed Storage Service
        Virtual Private Cloud
        Elastic IP
        Elastic Load Balance
        NAT Gateway
        Direct Connect
        Virtual Private Network
        VPC Endpoint
        Cloud Connect
        Enterprise Router
        Enterprise Switch
        Global Accelerator
        Cloud Container Engine
        • Autopilot
        SoftWare Repository for Container
        Application Service Mesh
        Ubiquitous Cloud Native Service
        Cloud Container Instance (CCI)
        • Cloud Container Instance 1.0 (CCI 1.0)
        Cloud Eye
        Identity and Access Management
        Cloud Trace Service
        Resource Formation Service
        Tag Management Service
        Log Tank Service
        Config
        OneAccess
        Resource Access Manager
        Simple Message Notification
        Application Performance Management
        Application Operations Management
        Organizations
        Optimization Advisor
        IAM Identity Center
        Cloud Operations Center
        Resource Governance Center
        Relational Database Service
        Document Database Service
        Data Admin Service
        Data Replication Service
        GeminiDB
        GaussDB
        Distributed Database Middleware
        Database and Application Migration UGO
        TaurusDB
        • Standard Edition
        Server Migration Service
        Object Storage Migration Service
        Cloud Data Migration
        Migration Center
        Distributed Cache Service
        API Gateway
        Distributed Message Service for Kafka
        Distributed Message Service for RabbitMQ
        Distributed Message Service for RocketMQ
        Cloud Service Engine
        Multi-Site High Availability Service
        EventGrid
        KooGallery
        Partner Center
        Dedicated Computing Cluster
        My Account
        Billing Center
        Cost Center
        Resource Center
        Enterprise Management
        Service Tickets
        HUAWEI CLOUD (International) FAQs
        ICP Filing
        Support Plans
        My Credentials
        Customer Operation Capabilities
        Partner Support Plans
        Professional Services
        Workspace
        ROMA Connect
        Message & SMS
        Domain Name Service
        Edge Data Center Management
        Meeting
        MapReduce Service
        • MRS on CCE
        Data Lake Insight
        CloudTable Service
        Cloud Search Service
        • KooSearch
        Data Lake Visualization
        Data Ingestion Service
        GaussDB(DWS)
        DataArts Studio
        Data Lake Factory
        DataArts Lake Formation
        DataArts Fabric
        Face Recognition Service
        Graph Engine Service
        Content Moderation
        Image Recognition
        Optical Character Recognition
        ModelArts
        ImageSearch
        Conversational Bot Service
        Speech Interaction Service
        Huawei HiLens
        Video Intelligent Analysis Service
        IoT Device Access
        Well-Architected Framework
        Cloud Adoption Framework
        SDK Developer Guide
        API Request Signing Guide
        Terraform
        Koo Command Line Interface
        Product Pricing Details
        System Permissions
        Console Quick Start
        Common FAQs
        Instructions for Associating with a HUAWEI CLOUD Partner
        Message Center
        Content Delivery Network
        Intelligent EdgeFabric
        CloudPond
        Intelligent EdgeCloud
        Security Technologies and Applications
        Web Application Firewall
        Host Security Service
        Cloud Firewall
        SecMaster
        Anti-DDoS Service
        Data Encryption Workshop
        Database Security Service
        Cloud Bastion Host
        Data Security Center
        Cloud Certificate Manager
        Edge Security
        SAP Cloud
        High Performance Computing
        Blockchain Service
        Web3 Node Engine Service
        Media Processing Center
        Video On Demand
        Live
        SparkRTC
        MetaStudio
        KooMessage
        KooPhone
        KooDrive
        ServiceStage
        CodeArts
        CodeArts PerfTest
        CodeArts Req
        CodeArts Pipeline
        CodeArts Build
        CodeArts Deploy
        CodeArts Artifact
        CodeArts TestPlan
        CodeArts Check
        CodeArts Repo
        Cloud Application Engine
        Huawei Cloud Astro Canvas
        Huawei Cloud Astro Zero
        CodeArts Governance
        No result is found. Please enter again.
        • Compute
        • Storage
        • Networking
        • Containers
        • Management & Governance
        • Databases
        • Migration
        • Middleware
        • Cloud Ecosystem
        • Dedicated Cloud
        • User Support
        • Business Applications
        • Analytics
        • AI
        • IoT
        • Cloud Transformation
        • Developer Tools
        • Others
        • Content Delivery & Edge Computing
        • Security & Compliance
        • Solutions
        • Blockchain
        • Media Services
        • MacroVerse aPaaS
        • Developer Services
        • Compute
          • Elastic Cloud Server
          • Huawei Cloud Flexus
            • Huawei Cloud Flexus L Instance
            • Huawei Cloud Flexus X Instance
            • Huawei Cloud Flexus RDS
            • Huawei Cloud Flexus Container Instance
          • Bare Metal Server
          • Auto Scaling
          • Image Management Service
          • Dedicated Host
          • FunctionGraph
          • Cloud Phone Host
          • Huawei Cloud EulerOS
        • Storage
          • Object Storage Service
          • Elastic Volume Service
          • Cloud Backup and Recovery
          • Storage Disaster Recovery Service
          • Scalable File Service Turbo
          • Scalable File Service
          • Volume Backup Service
          • Cloud Server Backup Service
          • Data Express Service
          • Dedicated Distributed Storage Service
        • Networking
          • Virtual Private Cloud
          • Elastic IP
          • Elastic Load Balance
          • NAT Gateway
          • Direct Connect
          • Virtual Private Network
          • VPC Endpoint
          • Cloud Connect
          • Enterprise Router
          • Enterprise Switch
          • Global Accelerator
        • Containers
          • Cloud Container Engine
            • Autopilot
          • SoftWare Repository for Container
          • Application Service Mesh
          • Ubiquitous Cloud Native Service
          • Cloud Container Instance (CCI)
            • Cloud Container Instance 1.0 (CCI 1.0)
        • Management & Governance
          • Cloud Eye
          • Identity and Access Management
          • Cloud Trace Service
          • Resource Formation Service
          • Tag Management Service
          • Log Tank Service
          • Config
          • OneAccess
          • Resource Access Manager
          • Simple Message Notification
          • Application Performance Management
          • Application Operations Management
          • Organizations
          • Optimization Advisor
          • IAM Identity Center
          • Cloud Operations Center
          • Resource Governance Center
        • Databases
          • Relational Database Service
          • Document Database Service
          • Data Admin Service
          • Data Replication Service
          • GeminiDB
          • GaussDB
          • Distributed Database Middleware
          • Database and Application Migration UGO
          • TaurusDB
            • Standard Edition
        • Migration
          • Server Migration Service
          • Object Storage Migration Service
          • Cloud Data Migration
          • Migration Center
        • Middleware
          • Distributed Cache Service
          • API Gateway
          • Distributed Message Service for Kafka
          • Distributed Message Service for RabbitMQ
          • Distributed Message Service for RocketMQ
          • Cloud Service Engine
          • Multi-Site High Availability Service
          • EventGrid
        • Cloud Ecosystem
          • KooGallery
          • Partner Center
        • Dedicated Cloud
          • Dedicated Computing Cluster
        • User Support
          • My Account
          • Billing Center
          • Cost Center
          • Resource Center
          • Enterprise Management
          • Service Tickets
          • HUAWEI CLOUD (International) FAQs
          • ICP Filing
          • Support Plans
          • My Credentials
          • Customer Operation Capabilities
          • Partner Support Plans
          • Professional Services
        • Business Applications
          • Workspace
          • ROMA Connect
          • Message & SMS
          • Domain Name Service
          • Edge Data Center Management
          • Meeting
        • Analytics
          • MapReduce Service
            • MRS on CCE
          • Data Lake Insight
          • CloudTable Service
          • Cloud Search Service
            • KooSearch
          • Data Lake Visualization
          • Data Ingestion Service
          • GaussDB(DWS)
          • DataArts Studio
          • Data Lake Factory
          • DataArts Lake Formation
          • DataArts Fabric
        • AI
          • Face Recognition Service
          • Graph Engine Service
          • Content Moderation
          • Image Recognition
          • Optical Character Recognition
          • ModelArts
          • ImageSearch
          • Conversational Bot Service
          • Speech Interaction Service
          • Huawei HiLens
          • Video Intelligent Analysis Service
        • IoT
          • IoT Device Access
        • Cloud Transformation
          • Well-Architected Framework
          • Cloud Adoption Framework
        • Developer Tools
          • SDK Developer Guide
          • API Request Signing Guide
          • Terraform
          • Koo Command Line Interface
        • Others
          • Product Pricing Details
          • System Permissions
          • Console Quick Start
          • Common FAQs
          • Instructions for Associating with a HUAWEI CLOUD Partner
          • Message Center
        • Content Delivery & Edge Computing
          • Content Delivery Network
          • Intelligent EdgeFabric
          • CloudPond
          • Intelligent EdgeCloud
        • Security & Compliance
          • Security Technologies and Applications
          • Web Application Firewall
          • Host Security Service
          • Cloud Firewall
          • SecMaster
          • Anti-DDoS Service
          • Data Encryption Workshop
          • Database Security Service
          • Cloud Bastion Host
          • Data Security Center
          • Cloud Certificate Manager
          • Edge Security
        • Solutions
          • SAP Cloud
          • High Performance Computing
        • Blockchain
          • Blockchain Service
          • Web3 Node Engine Service
        • Media Services
          • Media Processing Center
          • Video On Demand
          • Live
          • SparkRTC
          • MetaStudio
        • MacroVerse aPaaS
          • KooMessage
          • KooPhone
          • KooDrive
        • Developer Services
          • ServiceStage
          • CodeArts
          • CodeArts PerfTest
          • CodeArts Req
          • CodeArts Pipeline
          • CodeArts Build
          • CodeArts Deploy
          • CodeArts Artifact
          • CodeArts TestPlan
          • CodeArts Check
          • CodeArts Repo
          • Cloud Application Engine
          • Huawei Cloud Astro Canvas
          • Huawei Cloud Astro Zero
          • CodeArts Governance
        Product Selection
        Config
        在搜索结果页开启AI智能搜索
        开启
        Product Selection
        Cancel All Product
        Elastic Cloud Server
        Huawei Cloud Flexus
        • Huawei Cloud Flexus L Instance
        • Huawei Cloud Flexus X Instance
        • Huawei Cloud Flexus RDS
        • Huawei Cloud Flexus Container Instance
        Bare Metal Server
        Auto Scaling
        Image Management Service
        Dedicated Host
        FunctionGraph
        Cloud Phone Host
        Huawei Cloud EulerOS
        Object Storage Service
        Elastic Volume Service
        Cloud Backup and Recovery
        Storage Disaster Recovery Service
        Scalable File Service Turbo
        Scalable File Service
        Volume Backup Service
        Cloud Server Backup Service
        Data Express Service
        Dedicated Distributed Storage Service
        Virtual Private Cloud
        Elastic IP
        Elastic Load Balance
        NAT Gateway
        Direct Connect
        Virtual Private Network
        VPC Endpoint
        Cloud Connect
        Enterprise Router
        Enterprise Switch
        Global Accelerator
        Cloud Container Engine
        • Autopilot
        SoftWare Repository for Container
        Application Service Mesh
        Ubiquitous Cloud Native Service
        Cloud Container Instance (CCI)
        • Cloud Container Instance 1.0 (CCI 1.0)
        Cloud Eye
        Identity and Access Management
        Cloud Trace Service
        Resource Formation Service
        Tag Management Service
        Log Tank Service
        Config
        OneAccess
        Resource Access Manager
        Simple Message Notification
        Application Performance Management
        Application Operations Management
        Organizations
        Optimization Advisor
        IAM Identity Center
        Cloud Operations Center
        Resource Governance Center
        Relational Database Service
        Document Database Service
        Data Admin Service
        Data Replication Service
        GeminiDB
        GaussDB
        Distributed Database Middleware
        Database and Application Migration UGO
        TaurusDB
        • Standard Edition
        Server Migration Service
        Object Storage Migration Service
        Cloud Data Migration
        Migration Center
        Distributed Cache Service
        API Gateway
        Distributed Message Service for Kafka
        Distributed Message Service for RabbitMQ
        Distributed Message Service for RocketMQ
        Cloud Service Engine
        Multi-Site High Availability Service
        EventGrid
        KooGallery
        Partner Center
        Dedicated Computing Cluster
        My Account
        Billing Center
        Cost Center
        Resource Center
        Enterprise Management
        Service Tickets
        HUAWEI CLOUD (International) FAQs
        ICP Filing
        Support Plans
        My Credentials
        Customer Operation Capabilities
        Partner Support Plans
        Professional Services
        Workspace
        ROMA Connect
        Message & SMS
        Domain Name Service
        Edge Data Center Management
        Meeting
        MapReduce Service
        • MRS on CCE
        Data Lake Insight
        CloudTable Service
        Cloud Search Service
        • KooSearch
        Data Lake Visualization
        Data Ingestion Service
        GaussDB(DWS)
        DataArts Studio
        Data Lake Factory
        DataArts Lake Formation
        DataArts Fabric
        Face Recognition Service
        Graph Engine Service
        Content Moderation
        Image Recognition
        Optical Character Recognition
        ModelArts
        ImageSearch
        Conversational Bot Service
        Speech Interaction Service
        Huawei HiLens
        Video Intelligent Analysis Service
        IoT Device Access
        Well-Architected Framework
        Cloud Adoption Framework
        SDK Developer Guide
        API Request Signing Guide
        Terraform
        Koo Command Line Interface
        Product Pricing Details
        System Permissions
        Console Quick Start
        Common FAQs
        Instructions for Associating with a HUAWEI CLOUD Partner
        Message Center
        Content Delivery Network
        Intelligent EdgeFabric
        CloudPond
        Intelligent EdgeCloud
        Security Technologies and Applications
        Web Application Firewall
        Host Security Service
        Cloud Firewall
        SecMaster
        Anti-DDoS Service
        Data Encryption Workshop
        Database Security Service
        Cloud Bastion Host
        Data Security Center
        Cloud Certificate Manager
        Edge Security
        SAP Cloud
        High Performance Computing
        Blockchain Service
        Web3 Node Engine Service
        Media Processing Center
        Video On Demand
        Live
        SparkRTC
        MetaStudio
        KooMessage
        KooPhone
        KooDrive
        ServiceStage
        CodeArts
        CodeArts PerfTest
        CodeArts Req
        CodeArts Pipeline
        CodeArts Build
        CodeArts Deploy
        CodeArts Artifact
        CodeArts TestPlan
        CodeArts Check
        CodeArts Repo
        Cloud Application Engine
        Huawei Cloud Astro Canvas
        Huawei Cloud Astro Zero
        CodeArts Governance
        No result is found. Please enter again.
        • Compute
        • Storage
        • Networking
        • Containers
        • Management & Governance
        • Databases
        • Migration
        • Middleware
        • Cloud Ecosystem
        • Dedicated Cloud
        • User Support
        • Business Applications
        • Analytics
        • AI
        • IoT
        • Cloud Transformation
        • Developer Tools
        • Others
        • Content Delivery & Edge Computing
        • Security & Compliance
        • Solutions
        • Blockchain
        • Media Services
        • MacroVerse aPaaS
        • Developer Services
          • Elastic Cloud Server
          • Huawei Cloud Flexus
            • Huawei Cloud Flexus L Instance
            • Huawei Cloud Flexus X Instance
            • Huawei Cloud Flexus RDS
            • Huawei Cloud Flexus Container Instance
          • Bare Metal Server
          • Auto Scaling
          • Image Management Service
          • Dedicated Host
          • FunctionGraph
          • Cloud Phone Host
          • Huawei Cloud EulerOS
          • Object Storage Service
          • Elastic Volume Service
          • Cloud Backup and Recovery
          • Storage Disaster Recovery Service
          • Scalable File Service Turbo
          • Scalable File Service
          • Volume Backup Service
          • Cloud Server Backup Service
          • Data Express Service
          • Dedicated Distributed Storage Service
          • Virtual Private Cloud
          • Elastic IP
          • Elastic Load Balance
          • NAT Gateway
          • Direct Connect
          • Virtual Private Network
          • VPC Endpoint
          • Cloud Connect
          • Enterprise Router
          • Enterprise Switch
          • Global Accelerator
          • Cloud Container Engine
            • Autopilot
          • SoftWare Repository for Container
          • Application Service Mesh
          • Ubiquitous Cloud Native Service
          • Cloud Container Instance (CCI)
            • Cloud Container Instance 1.0 (CCI 1.0)
          • Cloud Eye
          • Identity and Access Management
          • Cloud Trace Service
          • Resource Formation Service
          • Tag Management Service
          • Log Tank Service
          • Config
          • OneAccess
          • Resource Access Manager
          • Simple Message Notification
          • Application Performance Management
          • Application Operations Management
          • Organizations
          • Optimization Advisor
          • IAM Identity Center
          • Cloud Operations Center
          • Resource Governance Center
          • Relational Database Service
          • Document Database Service
          • Data Admin Service
          • Data Replication Service
          • GeminiDB
          • GaussDB
          • Distributed Database Middleware
          • Database and Application Migration UGO
          • TaurusDB
            • Standard Edition
          • Server Migration Service
          • Object Storage Migration Service
          • Cloud Data Migration
          • Migration Center
          • Distributed Cache Service
          • API Gateway
          • Distributed Message Service for Kafka
          • Distributed Message Service for RabbitMQ
          • Distributed Message Service for RocketMQ
          • Cloud Service Engine
          • Multi-Site High Availability Service
          • EventGrid
          • KooGallery
          • Partner Center
          • Dedicated Computing Cluster
          • My Account
          • Billing Center
          • Cost Center
          • Resource Center
          • Enterprise Management
          • Service Tickets
          • HUAWEI CLOUD (International) FAQs
          • ICP Filing
          • Support Plans
          • My Credentials
          • Customer Operation Capabilities
          • Partner Support Plans
          • Professional Services
          • Workspace
          • ROMA Connect
          • Message & SMS
          • Domain Name Service
          • Edge Data Center Management
          • Meeting
          • MapReduce Service
            • MRS on CCE
          • Data Lake Insight
          • CloudTable Service
          • Cloud Search Service
            • KooSearch
          • Data Lake Visualization
          • Data Ingestion Service
          • GaussDB(DWS)
          • DataArts Studio
          • Data Lake Factory
          • DataArts Lake Formation
          • DataArts Fabric
          • Face Recognition Service
          • Graph Engine Service
          • Content Moderation
          • Image Recognition
          • Optical Character Recognition
          • ModelArts
          • ImageSearch
          • Conversational Bot Service
          • Speech Interaction Service
          • Huawei HiLens
          • Video Intelligent Analysis Service
          • IoT Device Access
          • Well-Architected Framework
          • Cloud Adoption Framework
          • SDK Developer Guide
          • API Request Signing Guide
          • Terraform
          • Koo Command Line Interface
          • Product Pricing Details
          • System Permissions
          • Console Quick Start
          • Common FAQs
          • Instructions for Associating with a HUAWEI CLOUD Partner
          • Message Center
          • Content Delivery Network
          • Intelligent EdgeFabric
          • CloudPond
          • Intelligent EdgeCloud
          • Security Technologies and Applications
          • Web Application Firewall
          • Host Security Service
          • Cloud Firewall
          • SecMaster
          • Anti-DDoS Service
          • Data Encryption Workshop
          • Database Security Service
          • Cloud Bastion Host
          • Data Security Center
          • Cloud Certificate Manager
          • Edge Security
          • SAP Cloud
          • High Performance Computing
          • Blockchain Service
          • Web3 Node Engine Service
          • Media Processing Center
          • Video On Demand
          • Live
          • SparkRTC
          • MetaStudio
          • KooMessage
          • KooPhone
          • KooDrive
          • ServiceStage
          • CodeArts
          • CodeArts PerfTest
          • CodeArts Req
          • CodeArts Pipeline
          • CodeArts Build
          • CodeArts Deploy
          • CodeArts Artifact
          • CodeArts TestPlan
          • CodeArts Check
          • CodeArts Repo
          • Cloud Application Engine
          • Huawei Cloud Astro Canvas
          • Huawei Cloud Astro Zero
          • CodeArts Governance
        • IAM Policies Do Not Allow Blocked Actions on KMS Keys - Config

          IAM Policies Do Not Allow Blocked Actions on KMS Keys - Config

          With this rule, you can detect IAM policies that allow blocked actions on KMS keys to prevent unintended data encryption and decryption. Solution You can modify noncompliant IAM policies based on the evaluation results.

          Help > Config > User Guide > Resource Compliance > Built-In Policies > Identity and Access Management
        • All IAM Roles Are in Use - Config

          All IAM Roles Are in Use - Config

          All IAM Roles Are in Use Rule Details Table 1 Rule details Parameter Description Rule Name iam-role-in-use Identifier iam-role-in-use Description If an IAM role has not been attached to any IAM users, user groups, or agencies, this role is noncompliant.

          Help > Config > User Guide > Resource Compliance > Built-In Policies > Identity and Access Management
        • All IAM Policies Are in Use - Config

          All IAM Policies Are in Use - Config

          All IAM Policies Are in Use Rule Details Table 1 Rule details Parameter Description Rule Name iam-policy-in-use Identifier iam-policy-in-use Description If an IAM policy has not been attached to any IAM users, user groups, or agencies, this policy is noncompliant.

          Help > Config > User Guide > Resource Compliance > Built-In Policies > Identity and Access Management
        • IAM Users Are in Specified User Groups - Config

          IAM Users Are in Specified User Groups - Config

          If an enabled IAM user has been added to at least one user group, and no user groups are specified, this IAM user is compliant. If an enabled IAM user has not been added to any user groups, and no user groups are specified, this IAM user is noncompliant.

          Help > Config > User Guide > Resource Compliance > Built-In Policies > Identity and Access Management
        • IAM Agencies Contain Specified Policies - Config

          IAM Agencies Contain Specified Policies - Config

          For more details, see Authorizing IAM Users to Manage Resources of an Account. Rule Logic If an IAM agency does not contain all the specified policies and roles, this agency is noncompliant.

          Help > Config > User Guide > Resource Compliance > Built-In Policies > Identity and Access Management
        • IAM Users Do Not Have Directly Assigned Policies or Permissions - Config

          IAM Users Do Not Have Directly Assigned Policies or Permissions - Config

          Rule Logic If an IAM user has any directly assigned policies or permissions, the IAM user is noncompliant. If an IAM user does not have directly assigned policies or permissions, the IAM user is compliant. Parent topic: Identity and Access Management

          Help > Config > User Guide > Resource Compliance > Built-In Policies > Identity and Access Management
        • ECSs Have IAM Agencies Attached - Config

          ECSs Have IAM Agencies Attached - Config

          ECSs Have IAM Agencies Attached Rule Details Table 1 Rule details Parameter Description Rule Name ecs-instance-agency-attach-iam-agency Identifier ecs-instance-agency-attach-iam-agency Description If an ECS does not have any IAM agencies attached, this ECS is noncompliant.

          Help > Config > User Guide > Resource Compliance > Built-In Policies > Elastic Cloud Server
        • Permissions - Config

          Permissions - Config

          To perform these operations, you need related IAM agencies. The following lists the details. To create IAM agencies, you need the iam:agencies:createAgency and iam:permissions:grantRoleToAgency permissions.

          Help > Config > Service Overview
        • Custom Policies Do Not Allow All Actions for a Service - Config

          Custom Policies Do Not Allow All Actions for a Service - Config

          Tag iam Trigger Type Configuration change Filter Type iam.roles, iam.policies Configure Rule Parameters None Applicable Scenario This rule allows you to ensure that your IAM users or agencies do not have unintended permissions attached.

          Help > Config > User Guide > Resource Compliance > Built-In Policies > Identity and Access Management
        • OBS Bucket Policies Do Not Allow Blacklisted Actions - Config

          OBS Bucket Policies Do Not Allow Blacklisted Actions - Config

          You can use bucket policies to control the access of IAM users or other account to your OBS buckets. You are advised to apply the least privilege principle to ensure that a bucket policy only grants necessary permissions for certain tasks.

          Help > Config > User Guide > Resource Compliance > Built-In Policies > Object Storage Service
        • A User Does Not have Multiple Active Access Keys - Config

          A User Does Not have Multiple Active Access Keys - Config

          Rule Logic If an IAM user is in the disabled state, this user is compliant. If an IAM user that is in the enabled state has only one active access key, this IAM user is compliant.

          Help > Config > User Guide > Resource Compliance > Built-In Policies > Identity and Access Management
        • Admin Permissions Check - Config

          Admin Permissions Check - Config

          An IAM policy with the action element set to *:*:*, *:*, or * is of high security risk. Solution The administrator can modify noncompliant IAM policies or roles. For more details, see Modifying or Deleting a Custom Policy.

          Help > Config > User Guide > Resource Compliance > Built-In Policies > Identity and Access Management
        • Unintended Policy Check - Config

          Unintended Policy Check - Config

          Applicable Scenario This rule allows you to ensure that only intended permissions are assigned to an IAM user, a user group, or an IAM agency. For more details, see Grant Least Privilege.

          Help > Config > User Guide > Resource Compliance > Built-In Policies > Identity and Access Management
        • Permissions Policies and Supported Actions - Config

          Permissions Policies and Supported Actions - Config

          For details about the differences between IAM and enterprise projects, see What Are the Differences Between IAM and Enterprise Management?

          Help > Config > API Reference > Permissions Policies and Supported Actions
        • Last Login Check - Config

          Last Login Check - Config

          Applicable Scenario This rule helps you identify idle IAM users to improve account security Solution You can use noncompliant IAM users to log in to Huawei Cloud console or delete these users as needed. For more details, see Logging In as an IAM User and Deleting an IAM User.

          Help > Config > User Guide > Resource Compliance > Built-In Policies > Identity and Access Management
        • Making an API Request - Config

          Making an API Request - Config

          IAM is a global service. You can create an IAM user using the endpoint of IAM in any region.

          Help > Config > API Reference > Calling APIs
        • Querying Details About Resource Relationships - Config

          Querying Details About Resource Relationships - Config

          An IAM user needs to have the rms:resources:getRelation permissions to call this API. Resource relationships depend on enabling resource recorder. Calling Method For details, see Calling APIs.

          Help > Config > API Reference > APIs > Resource Relationships
        • Access Mode Check - Config

          Access Mode Check - Config

          Solution You can allow IAM users to access cloud services either using programmatic methods or through the console. Ensure that an IAM user does not have both a password and an access key. Rule Logic If an IAM user is disabled, this user is compliant.

          Help > Config > User Guide > Resource Compliance > Built-In Policies > Identity and Access Management
        • Login Protection Check - Config

          Login Protection Check - Config

          Solution You can enable login protection for the noncompliant IAM users. For more details, see Login Protection. Rule Logic If an IAM user is in the disabled state, this user is compliant. If an IAM user that is enabled has MFA enabled, this user is compliant.

          Help > Config > User Guide > Resource Compliance > Built-In Policies > Identity and Access Management
        • Access Key Check - Config

          Access Key Check - Config

          the IAM user was created, this user is noncompliant.

          Help > Config > User Guide > Resource Compliance > Built-In Policies > Identity and Access Management
        Total results: 91
        • Previous
        • 1
        • 2
        • 3
        • 4
        • 5
        • Next
        • Go
        Load More
        Was this helpful?
        Feedbacks
        /200
        Submit Feedback Cancel
        Contact Sales After-Sales Self Service
        • Site Terms
        • Privacy Statement

        Explore Huawei Cloud

        Why Us Customer Stories Trust Center Legal Press Releases

        Featured Services

        Elastic Cloud Server (ECS) Elastic IP (EIP) RDS for MySQL Elastic Volume Service (EVS) MapReduce Service (MRS)

        Service and Support

        Documentation Contact Us Public Notices Support Plans Service Health Dashboard

        Account and Payment

        Top Up Invoices Billing Center My Account Payment Method

        Quick Links

        Huawei Corporate Huawei Enterprise Huawei Consumer Business Huawei Developers

        © 2025, Huawei Cloud Computing Technologies Co., Ltd. and/or its affiliates. All rights reserved.

        • Site Terms
        • Privacy Statement