Resource Compliance
Permission |
API |
Action |
Dependencies |
IAM Project |
Enterprise Project |
|---|---|---|---|---|---|
Querying all built-in policies |
GET /v1/resource-manager/policyDefinitions |
rms:policyDefinitions:get |
- |
√ |
N/A |
Querying a built-in policy |
GET /v1/resource-manager/policy-definitions/{policy_definition_id} |
rms:policyDefinitions:get |
- |
√ |
N/A |
Modifying an assignment |
PUT /v1/resource-manager/domains/{domain_id}/policy-assignments/{policy_assignment_id} |
rms:policyAssignments:update |
- |
√ |
N/A |
Enabling an assignment |
POST /v1/resource-manager/domains/{domain_id}/policy-assignments/{policy_assignment_id}/enable |
rms:policyAssignments:update |
- |
√ |
N/A |
Disabling an assignment |
POST /v1/resource-manager/domains/{domain_id}/policy-assignments/{policy_assignment_id}/disable |
rms:policyAssignments:update |
- |
√ |
N/A |
Adding an assignment |
PUT /v1/resource-manager/domains/{domain_id}/policy-assignments |
rms:policyAssignments:create |
- |
√ |
N/A |
Querying all assignments |
GET /v1/resource-manager/domains/{domain_id}/policy-assignments |
rms:policyAssignments:get |
- |
√ |
N/A |
Querying an assignment |
GET /v1/resource-manager/domains/{domain_id}/policy-assignments/{policy_assignment_id} |
rms:policyAssignments:get |
- |
√ |
N/A |
Deleting an assignment |
DELETE /v1/resource-manager/domains/{domain_id}/policy-assignments/{policy_assignment_id} |
rms:policyAssignments:delete |
- |
√ |
N/A |
Querying the evaluation status of an assignment |
GET /v1/resource-manager/domains/{domain_id}/policy-states/evaluation-state |
rms:policyStates:get |
- |
√ |
N/A |
Querying the compliance result of a resource |
GET /v1/resource-manager/domains/{domain_id}/resources/{resource_id}/policy-states |
rms:policyStates:get |
- |
√ |
N/A |
Querying all compliance results of resources under a user |
GET /v1/resource-manager/domains/{domain_id}/policy-states |
rms:policyStates:get |
- |
√ |
N/A |
Querying all compliance results of resources evaluated by an assignment |
GET /v1/resource-manager/domains/{domain_id}/policy-assignments/{policy_assignment_id}/policy-states |
rms:policyStates:get |
- |
√ |
N/A |
Running a resource compliance evaluation |
POST /v1/resource-manager/domains/{domain_id}/policy-states/run-evaluation |
rms:policyStates:runEvaluation |
- |
√ |
N/A |
Updating the compliance evaluation result |
GET /v1/resource-manager/domains/{domain_id}/policy-states |
rms:policyStates:update |
- |
√ |
N/A |
Creating or updating an organization assignment |
PUT /v1/resource-manager/organizations/{organization_id}/policy-assignments |
rms:organizationPolicyAssignments:put |
|
√ |
N/A |
Querying organization assignments |
GET /v1/resource-manager/organizations/{organization_id}/policy-assignments |
rms:organizationPolicyAssignments:list |
organizations:organizations:get |
√ |
N/A |
Querying a specific organization assignment |
GET /v1/resource-manager/organizations/{organization_id}/policy-assignments/{organization_policy_assignment_id} |
rms:organizationPolicyAssignments:get |
organizations:organizations:get |
√ |
N/A |
Querying statuses of organization assignments |
GET /v1/resource-manager/organizations/{organization_id}/policy-assignment-statuses |
rms:organizationPolicyAssignments:list |
organizations:organizations:get |
√ |
N/A |
Querying details about rule deployment for each member account in an organization |
GET /v1/resource-manager/organizations/{organization_id}/policy-assignment-detailed-status |
rms:organizationPolicyAssignments:list |
organizations:organizations:get |
√ |
N/A |
Deleting an organization assignment |
DELETE /v1/resource-manager/organizations/{organization_id}/policy-assignments/{organization_policy_assignment_id} |
rms:organizationPolicyAssignments:delete |
organizations:organizations:get |
√ |
N/A |
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot
