Help Center/ Cloud Bastion Host/ User Guide/ Policy/ Password Rules/ Querying and Editing a Password Rule
Updated on 2024-09-30 GMT+08:00

Querying and Editing a Password Rule

You can edit password rules to meet your changed O&M requirements. For example, you can edit when and how a password rule is executed and which accounts, account groups, and resources a password rule is used for.

A modified database rule takes effect the instant its status changes to Enabled.

Prerequisites

You have the operation permissions for the Password Rules module.

Querying and Editing Rule Configurations

  1. Log in to your bastion host.
  2. Choose Policy > Password Rules > Password Rule.
  3. Query password rules.

    • Quick search

      Enter a keyword in the search box to quickly query password change rules by rule name, resource name, and account,

    • Advanced search

      Enter keywords in the corresponding attribute search boxes to search for database rules in exact mode.

  4. Click the name of the rule that you want to edit or click Manage in the row of the rule in the Operation column. The details page of the rule is displayed.
  5. View and edit basic information.

    In the Basic Info area, click Edit. In the displayed dialog box, edit the database rule details.

    • You can edit Rule Name, Timing, Method, and Options.
    • The Department cannot be modified.

  6. View and edit accounts related to the database rule.

    • To relate an account to the rule or remove a related account, click Edit in the Account area and complete modifications in the displayed dialog box.
    • To only remove a related account, click Remove in the row of the related account. The rule becomes invalid for the deleted account.

  7. View and edit account groups related to the rule.

    • To relate an account group to the rule or remove a related account group, click Edit in the Account Group area and complete modifications in the displayed dialog box.
    • To only remove a related account group, click Remove in the row of the related account group. The rule becomes invalid for all accounts in the deleted account group.