检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
package GET /v1/resource-manager/domains/{domain_id}/conformance-packs/{conformance_pack_id} rms:conformancePacks:get - √ x Querying conformance packages GET /v1/resource-manager/domains/{domain_id}/conformance-packs rms:conformancePacks:list - √ x Deleting conformance packages DELETE
Deleting a rule You can delete a rule which is no longer needed. Noncompliant resources You can view and export information about all noncompliant resources.
Authorization RFS resource stacks need to be authorized to create, delete, and update resources in a conformance package. When you create a conformance package, you need to assign RFS a required agency.
Querying Organization Conformance Packages Querying an Organization Conformance Package Delete organization conformance packages.
If you create an organization conformance package using an account, you can only use the same account to delete the package. Members can only initiate resource evaluation and view evaluation results.
If the resource recorder is disabled, you can only view or delete conformance packages. For details, see Configuring the Resource Recorder. Procedure Log in to the Config console. On the left navigation pane, choose Conformance Package.
Solution Ensure that resources are in the specified region and delete unnecessary resources. Rule Logic If a resource is in the specified region, the resource is compliant. If a resource is not in the specified region, the resource is non-compliant. Parent topic: General Policies
If the resource recorder is disabled, you can only view and delete organization rules. Procedure Log in to the Config console as the organization account used to create the organization rule. In the navigation pane on the left, choose Resource Compliance.
Solution Delete the IPv6 shared bandwidth attached to the AS group. For details, see Deleting or Unsubscribing from a Shared Bandwidth. Rule Logic If an IPv6 shared bandwidth is not attached to an AS group, this AS group is compliant.
No one can delete the backups in their retention periods. Solution Enable backup locking. Rule Logic If backup locking is enabled for CBR vaults, the check result is compliant. If backup locking is not enabled for CBR vaults, the check result is non-compliant.
The agency must contain required permissions for RFS to create, modify, and delete rules in a conformance package. For details about how to create an agency, see Creating an Agency (by a Delegating Party).
Table 3 detail parameters Parameter Parameter Type Description resource_id String Resource ID. resource_type String Resource type. event_type Enum Event type (CREATE, UPDATE, DELETE) capture_time String Event capture time.
To delete a rule, you need to delete the remediation action assigned and disable the rule.
Solution You can delete or disable the additional access keys for noncompliant IAM users. For more details, see Managing Access Keys for an IAM User. Rule Logic If an IAM user is in the disabled state, this user is compliant.
If you do not, delete them. Rule Logic If an IAM policy has been attached to an IAM user, user group, or agency, this policy is compliant. If an IAM policy has not been attached to any IAM users, user groups, or agencies, this policy is noncompliant.
If you do not, delete them. Rule Logic If an IAM role has been attached to an IAM user, user group, or agency, this role is compliant. If an IAM role has not been attached to any IAM users, user groups, or agencies, this role is noncompliant.
If the resource recorder is disabled, you can only view or delete organization conformance packages. For details, see Configuring the Resource Recorder. Procedure Log in to the Config console as the organization account used to create the organization rule package.
Status Codes Normal Returned Value Description 200 OK The results of GET and PUT operations are returned as expected. 201 Created The results of the POST operation are returned as expected. 202 Accepted The request has been accepted for processing. 204 No Content The results of the DELETE
/{resource_type}/resource-instances/count rms::listResourcesByTag - √ x Batch adding resource tags POST /v1/resource-manager/{resource_type}/{resource_id}/tags/create rms::tagResource - √ x Batch deleting resource tags POST /v1/resource-manager/{resource_type}/{resource_id}/tags/delete
Solution You can delete non-root users from the admin user group. For more details, see Adding Users to or Removing Users from a User Group. Rule Logic If an IAM user is the root user, this user is compliant. If an IAM user is disabled, this user is compliant.
