Viewing an Organization Conformance Package

Scenario

An organization administrator or a delegated administrator of Config can only view organization conformance packages created by themselves.

Each member can view organization packages that are deployed to their accounts in the conformance package list. If you create an organization conformance package using an account, you can only use the same account to delete the package. Members can only initiate resource evaluation and view evaluation results.

This section mainly contains Viewing an Organization Conformance Package (for Administrators) and Viewing an Organization Conformance Package (for Organization Members).

Viewing an Organization Conformance Package (for Administrators)

1. Log in to the management console as an organization administrator or a delegated administrator of Config.
2. Click in the upper left corner. Under Management & Governance, click Config.
3. On the left navigation pane, choose Conformance Package.
4. Select the Organization Conformance Package tab to view all created organization conformance packages and their deployment statuses.
5. Click the name of a target organization conformance package to view details.

   On the left, view deployed and excluded member accounts. On the right, view package details.

   Figure 1 Organization details of an organization conformance package
   
   

   The deployment status of an organization conformance package may be:

   • Deployed: A conformance package has been deployed.
   • Deploying: A conformance package is being deployed.
   • Abnormal: Conformance package deployment failed.
   • Rolled back: Some rules in a conformance package failed to be created and were rolled back, and other created rules were deleted.
   • Rolling back: Some rules in a conformance package failed to be created and were rolled back, and other created rules were being deleted.
   • Rollback failed: Some rules in a conformance package failed to be created and to be rolled back. You can access RFS to check out the reasons.
   • Deleting: Rules in a conformance package and the package are being deleted.
   • Exception: Deleting a conformance package failed.
   • Updated: A compliance package is updated.
   • Updating: A compliance package is being updated.
   • Updating: A compliance package update is in progress.

Viewing an Organization Conformance Package (for Organization Members)

1. Log in to the management console as an organization member.
2. Click in the upper left corner. Under Management & Governance, click Config.
3. On the left navigation pane, choose Conformance Package.
4. On the Conformance Packages tab, click the name of a target organization conformance package in the list to view details.

   On the details page, view package basic information, configurations, rules included, and the evaluation result of each rule.

   Locate a target rule and click the rule name to go to the details page. Non-compliant resources evaluated using the rule are displayed by default.

   Figure 2 Viewing an organization conformance package (for organization members)
   
   

   A deployed organization conformance package will be displayed in the rule list of every member in the organization. The system automatically adds the Org field before the name of an organization conformance package.

   Members can only trigger rules in an organization conformance package and view the evaluation results. They cannot delete an organization conformance package.