Managing Emergency Policies

Scenario

This topic describes how to manage emergency policies, including Viewing Emergency Policies, Editing an Emergency Policy, and Deleting an Emergency Policy.

Viewing Emergency Policies

Log in to the management console.
Click in the upper left corner of the management console and select a region or project.
Click in the upper left corner of the page and choose Security & Compliance > SecMaster.
In the navigation pane on the left, choose Workspaces > Management. In the workspace list, click the name of the target workspace.

Figure 1 Workspace management page
In the navigation pane on the left, choose Risk Prevention > Security Policies. Then, go to the emergency policy page.

On the Emergency Policies page, view emergency policy details.

**Table 1** Parameters of emergency policies
Parameter	Description
Delivered Policies	Shows how many policies that have been applied over the last week.
Top 3 Operation Connections	The 3 operation connections that have blocked the most IP addresses over the last week.
Top 5 Blocking Areas	The 5 regions blocked the most times over the last week.
Emergency policy list	In the emergency policy list, you can view the blocked objects, blocking type, and number of delivered policies. In the list, you can edit, block, cancel blocking, and delete a policy. To view details about an emergency policy, select the policy and click Selected: xxx in the lower part of the page to open the details page. On the details page, you can block, cancel blocking, and delete a policy, and view historical records of the policy.

Editing an Emergency Policy

Once an emergency policy is added, its blocked object type and blocked objects, such as IP addresses, IP address ranges, or IAM user names, cannot be modified.

Log in to the management console.
Click in the upper left corner of the management console and select a region or project.
Click in the upper left corner of the page and choose Security & Compliance > SecMaster.
In the navigation pane on the left, choose Workspaces > Management. In the workspace list, click the name of the target workspace.

Figure 2 Workspace management page
In the navigation pane on the left, choose Risk Prevention > Security Policies. Then, go to the emergency policy page.
On the emergency policy management page, locate the row that contains the policy you want to edit and click Edit in the Operation column.

On the edit policy page, modify the policy information.

**Table 2** Parameters for editing an emergency policy
Parameter	Description
Blocked Object Type	After an emergency policy is added, this parameter cannot be modified.
Block Object	After an emergency policy is added, this parameter cannot be modified.
Label	Label of the custom emergency policy.
Operation Connection	Select the operation connections for the policy.
Block Aging	The time the block action expires. If you select Yes, set the aging time of the policy. For example, if you set the aging time to 180 days, the policy is valid within 180 days after the setting. After 180 days, the IP address/range or the IAM user will not be blocked. If you select No, the policy is always valid and blocks the specified IP address/range or the IAM user.
Reason Description	Description of the custom policy.

Click OK.

Deleting an Emergency Policy

Log in to the management console.
Click in the upper left corner of the management console and select a region or project.
Click in the upper left corner of the page and choose Security & Compliance > SecMaster.
In the navigation pane on the left, choose Workspaces > Management. In the workspace list, click the name of the target workspace.

Figure 3 Workspace management page
In the navigation pane on the left, choose Risk Prevention > Security Policies. Then, go to the emergency policy page.
On the Emergency Policies tab, locate the row that contains the policy you want to delete and click Delete in the Operation column.

To delete multiple policies, select the target policies and click Batch Delete above the list.
In the displayed confirmation dialog box, click Confirm.