检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
package GET /v1/resource-manager/domains/{domain_id}/conformance-packs/{conformance_pack_id} rms:conformancePacks:get - √ x Querying conformance packages GET /v1/resource-manager/domains/{domain_id}/conformance-packs rms:conformancePacks:list - √ x Deleting conformance packages DELETE
Deleting a rule You can delete a rule which is no longer needed. Noncompliant resources You can view and export information about all noncompliant resources.
Authorization RFS resource stacks need to be authorized to create, delete, and update resources in a conformance package. When you create a conformance package, you need to assign RFS a required agency.
Querying Organization Conformance Packages Querying an Organization Conformance Package Delete organization conformance packages.
If you create an organization conformance package using an account, you can only use the same account to delete the package. Members can only initiate resource evaluation and view evaluation results.
Solution Ensure that resources are in the specified region and delete unnecessary resources. Rule Logic If a resource is in the specified region, the resource is compliant. If a resource is not in the specified region, the resource is non-compliant. Parent topic: General Policies
Solution Delete the IPv6 shared bandwidth attached to the AS group. For details, see Deleting or Unsubscribing from a Shared Bandwidth. Rule Logic If an IPv6 shared bandwidth is not attached to an AS group, this AS group is compliant.
No one can delete the backups in their retention periods. Solution Enable backup locking. Rule Logic If backup locking is enabled for CBR vaults, the check result is compliant. If backup locking is not enabled for CBR vaults, the check result is non-compliant.
If the resource recorder is disabled, you can only view and delete organization rules. Procedure Log in to the management console. Click in the upper left corner of the page. Under Management & Governance, select Config.
Table 3 detail parameters Parameter Parameter Type Description resource_id String Resource ID. resource_type String Resource type. event_type Enum Event type (CREATE, UPDATE, DELETE) capture_time String Event capture time.
If the resource recorder is disabled, you can only view or delete conformance packages. For details, see Configuring the Resource Recorder. Procedure Log in to the management console. Click in the upper left corner of the page. Under Management & Governance, select Config.
The agency must contain required permissions for RFS to create, modify, and delete rules in a conformance package. For details about how to create an agency, see Creating an Agency (by a Delegating Party).
Solution You can delete or disable the additional access keys for noncompliant IAM users. For more details, see Managing Access Keys for an IAM User. Rule Logic If an IAM user is in the disabled state, this user is compliant.
If you do not, delete them. Rule Logic If an IAM policy has been attached to an IAM user, user group, or agency, this policy is compliant. If an IAM policy has not been attached to any IAM users, user groups, or agencies, this policy is noncompliant.
If you do not, delete them. Rule Logic If an IAM role has been attached to an IAM user, user group, or agency, this role is compliant. If an IAM role has not been attached to any IAM users, user groups, or agencies, this role is noncompliant.
Status Codes Normal Returned Value Description 200 OK The results of GET and PUT operations are returned as expected. 201 Created The results of the POST operation are returned as expected. 202 Accepted The request has been accepted for processing. 204 No Content The results of the DELETE
Solution You can delete non-root users from the admin user group. For more details, see Adding Users to or Removing Users from a User Group. Rule Logic If an IAM user is the root user, this user is compliant. If an IAM user is disabled, this user is compliant.
Solution Delete non-default ACLs for non-compliant OBS buckets based on Configuring a Bucket ACL and use bucket policies to grant access permissions based on Creating a Custom Bucket Policy (Visual Editor).
If you need to modify or delete resources, go to related service consoles. Parent topic: Advanced Queries
If the resource recorder is disabled, you can only view or delete organization conformance packages. For details, see Configuring the Resource Recorder. Procedure Log in to the management console as an organization administrator or a delegated administrator of Config.
