Conformance Package for Management and Regulatory Services
The following table describes the compliance rules and solutions in the sample template.
Rule |
Cloud Service |
Description |
---|---|---|
alarm-action-enabled-check |
ces |
If an alarm rule is not enabled, this rule is noncompliant. |
alarm-kms-disable-or-delete-key |
ces, kms |
If there are no alarm rules configured for disabling KMS or deleting keys, the result is noncompliant. |
alarm-obs-bucket-policy-change |
ces, obs |
If there are no alarm rules configured for OBS bucket policy changes, the result is noncompliant. |
alarm-vpc-change |
ces, vpc |
If no alarm rules are created for VPC changes, the result is noncompliant. |
cts-kms-encrypted-check |
cts |
If a CTS tracker is not encrypted using KMS, this tracker is noncompliant. |
cts-lts-enable |
cts |
If Transfer to LTS is not enabled for a CTS tracker, this tracker is noncompliant. |
cts-support-validate-check |
cts |
If Verify Trace File is not enabled for a CTS tracker, this tacker is noncompliant. |
cts-tracker-exists |
cts |
If there is no tracker in the current account, the result is noncompliant. |
tracker-config-enabled-check |
config |
If the resource recorder has not been enabled, the result is noncompliant. |
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot