- What's New
- Service Overview
- Getting Started
-
User Guide
- Permissions Management
- Managing Organizations
- Managing OUs
- Managing Accounts
-
Managing SCPs
- Overview of an SCP
- Enabling or Disabling the SCP Type
- Creating an SCP
- Modifying or Deleting an SCP
- Attaching or Detaching an SCP
- Example SCPs
- System-defined SCPs
- Cloud Services for Using SCPs
- Regions for Using SCPs
-
Actions Supported by SCP-based Authorization
- Compute
- Storage
- Networking
- Containers
- Analytics
- Content Delivery & Edge Computing
- Databases
- Security & Compliance
- Internet of Things
- Middleware
- Developer Services
- Business Applications
-
Management & Governance
- Simple Message Notification (SMN)
- Log Tank Service (LTS)
- Identity and Access Management (IAM)
- Security Token Service (STS)
- Resource Formation Service (RFS)
- IAM Identity Center
- Organizations
- Resource Access Manager (RAM)
- Enterprise Project Management Service (EPS)
- Tag Management Service (TMS)
- Config
- IAM Access Analyzer
- Cloud Trace Service (CTS)
- Resource Governance Center (RGC)
- Application Operations Management (AOM)
- Cloud Eye (CES)
- IAM Identity Broker
- User Support
- Migration
- Managing Tag Policies
- Managing Trusted Services
- Managing Tags
- CTS Auditing
- Adjusting Quotas
-
API Reference
- Before You Start
- API Overview
- Calling APIs
-
APIs
- Managing Organizations
- Managing OUs
-
Managing Accounts
- Creating an Account
- Listing Accounts in an Organization
- Closing an Account
- Getting Account Information
- Updating an Account
- Removing the Specified Account
- Moving an Account
- Inviting an Account to Join an Organization
- Querying Account Creation Requests in Specified State
- Querying Account Creation Status
- Querying CloseAccount Requests in Specified State
- Managing Invitations
- Managing Trusted Services
- Managing Delegated Administrators
- Managing Policies
-
Managing Tags
- Listing Tags for the Specified Resource
- Adding Tags to the Specified Resource
- Removing Tags from the Specified Resource
- Listing Tags for the Specified Resource Type
- Adding Tags to the Specified Resource Type
- Deleting Tags with the Specified Key from the Specified Resource Type
- Querying Resource Instances by Resource Type and Tag
- Querying Number of Resource Instances by Resource Type and Tag
- Querying Resource Tags
- Others
- Permissions and Supported Actions
- Appendixes
- Change History
- FAQs
- General Reference
Show all
Copied.
Creating a Tag Policy
To standardize the usage of tags in your organization, you can create a tag policy to formulate tag rules.
You can create a tag policy from the organization administrator, but not from any delegated administrator.
Procedure
- Log in to the management console as the organization administrator or using the management account, and navigate to the Organizations console.
- Access the Policies page, and click Tag policies.
Figure 1 Accessing the Tag policies page
- Click Create Policy.
- Edit the policy name. The policy name is automatically generated when you create a policy, but you can change the policy name if needed. Ensure that you are entering a unique policy name. It must be different from any other existing policy.
(Optional) You can also enter a description for the policy.
- Edit the policy content. Currently, you can edit the policy content using the visual editor or JSON.
- Visual editor: When you use the visual editor to edit a policy, you do not need to understand the JSON syntax. After you edit in the visual editor, the new policy is generated automatically. The procedure is as follows:
- Enter the key for the tag you want to define in the tag policy.
- Use the capitalization you specified above for the tag key.
If you select this option, the capitalization you specified for Tag Key is used for checking compliance. If you do not select this option, tag keys in all lowercase characters are considered compliant even if Tag Key contains uppercase characters. For example, when you enter CostCenter for Tag Key, if you select this option, CostCenter will be the standard for compliance check; if you do not select this option, costcenter will be the standard.
- Specify allowed values for this tag key.
If you select this option and click Specify Values to specify one or more allowed values for the tag key, only those values you specified are considered compliant. If you do not select this option or you select this option but do not specify any values, any value (including no value at all) is considered compliant.
Figure 2 Specifying allowed values for this tag key - Specify resource types to enforce the tag policy.
Select the Prevent noncompliant operations on this tag. option and click Specify Resource Types. In the displayed dialog box, read and confirm the effects of using tag policies. Then, select resource types and click OK.
NOTE:
If you do not specify any services or resource types, the tag policy will not apply to any resources.
Figure 3 Specifying resource types - Click Add Tag Key to add another tag key to this tag policy.
- JSON: When using JSON syntax, you can edit the policy text by referring to Tag Policy Syntax. The system automatically verifies the syntax. If the syntax is incorrect, modify it as prompted.
Figure 4 Editing a policy using JSON
- Visual editor: When you use the visual editor to edit a policy, you do not need to understand the JSON syntax. After you edit in the visual editor, the new policy is generated automatically. The procedure is as follows:
- (Optional) Add one or more tags. Enter a tag key and a tag value, and click Add.
Figure 5 Adding a tag
- Click Save in the lower right corner. If the tag policy is created successfully, it will be added to the list.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot