检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
If you create an organization conformance package using an account, you can only use the same account to delete the package. Members can only initiate resource evaluation and view evaluation results.
resource-instances/count rms:resources:listResourcesByTag - √ x Batch adding resource tags POST /v1/resource-manager/{resource_type}/{resource_id}/tags/create rms:resources:tagResource - √ x Batch deleting resource tags POST /v1/resource-manager/{resource_type}/{resource_id}/tags/delete
You can also disable or delete these users if you do not need them any longer. Rule Logic If an IAM user is disabled, this user is compliant. If an enabled IAM user has been added to at least one user group, and no user groups are specified, this IAM user is compliant.
If the network ACL is no longer required, delete it. If the network ACL is still required, associate a subnet with the network ACL. For details, see Deleting a Network ACL and Associating Subnets with a Network ACL.
The agency must contain required permissions for RFS to create, modify, and delete rules in a conformance package. Creating a Conformance Package You can use IAM to control user access to Config.
Delete the security group rules whose policy is Allow in the default security group. Rule Logic All non-default security groups are compliant. If a default security group denies all inbound or outbound traffic, it is considered compliant.
If a security group is no longer used, delete it. For details, see Deleting a Security Group. Rule Logic If a custom VPC security group is not attached to an elastic network interface, the check result is non-compliant.
If the resource recorder is disabled, you can only view, disable, and delete rules. To evaluate resources with rules, you need to enable the resource recorder.
DELETE Requests the server to delete specified resources, for example, an object. HEAD Same as GET except that the server must return only the response header. PATCH Requests the server to update partial content of a specified resource.
Select target non-compliant resources and click Delete above the list. In the displayed dialog box, click OK. Figure 2 Deleting a remediation exception Parent topic: Configuring Remediation for Compliance Rules
They cannot modify, disable, or delete an organization rule. Deployment Statuses of Organization Rules Table 1 Deployment statuses of organization rules Value Status Description CREATE_IN_PROGRESS Deploying An organization rule is being created.
If you need to modify or delete resources, go to related service consoles.
If the resource recorder is disabled, you can only view, disable, and delete rules.
Before using the key element, delete single-byte character (SBC) spaces before and after the value. Minimum: 1 Maximum: 128 values Array of strings Tag values. A key can contain up to 255 Unicode characters.
If the resource recorder is disabled, you can only view, disable, and delete rules. To evaluate resources with rules, you need to enable the resource recorder.
If the resource recorder is disabled, you can only view and delete organization rules. The Organization Rules tab is inaccessible for an account that is not associated any organizations.
Table 2 detail parameters Parameter Type Description resource_id String Resource ID. resource_type String Resource type. event_type Enum Event type (CREATE, UPDATE, DELETE) capture_time String The event capture time.
If the resource recorder is disabled, you can only view and delete organization rules. The Organization Rules tab is inaccessible for an account that is not associated any organizations.
If the resource recorder is disabled, you can only view, disable, and delete rules. To evaluate resources with rules, you need to enable the resource recorder.
Before using the key element, delete single-byte character (SBC) spaces before and after the value. Minimum: 1 Maximum: 128 values Yes Array of strings Tag values. A key can contain up to 255 Unicode characters.
