Help Center/ Virtual Private Cloud/ FAQs/ Security/ How Do I Know the Instances Associated with a Security Group?
Updated on 2025-08-01 GMT+08:00

How Do I Know the Instances Associated with a Security Group?

When you create an instance, such as ECS, cloud container, or database, you need to add the instance to a security group. You can perform the following operations to view the instances associated with a security group:

  1. In the security group list, locate the row that contains the target security group and click Manage Instance in the Operation column.

    On the Associated Instances tab, you can view the instances associated with the security group, such as servers and extended network interfaces.

    On the Others tab, if there are resources of the Others (as shown in part 2) type in the Resource Type column, the resource type is unknown. In this case, copy and record the resource ID (for example, 3946cd5a-4656-4370-bff5-72940f311389), and perform the following operations to check the associated resource.

  2. In the upper right corner of the management console, choose Resources > My Resources. On the displayed page, specify as below and search for resources by resource ID:
    • Service: All is selected by default.
    • Region: Select the region where the security group is located.
    • Search box: Click the filter Resource ID and enter the recorded resource ID.

    If the target resource is found, you can directly view the resource details. The task is complete.

    If no target resource is found, the resource type may not be included on this page. In this case, perform the following operations:

  3. In the same region as the security group, go to the console of each type of resource listed in Table 1 to check whether the resource is associated with the security group.

    The table lists some common resources that can be associated with security groups. If you have other resources, check them one by one.

    A security group is associated with various instances through ports. You can call the APIs to query the ports and then use the ID of the target security group to search for the target ports. Then you will get the required information, including name (port name), device_id (ID of the device to which the port belongs), device_owner (device owner), instance_id (ID of the instance), and instance_type (type of the instance to which the port belongs). The port information helps you check the resources associated with the security group.

    If the resources that may be associated with the security group are still not found after the check, submit a service ticket.

    Table 1 Instances that can be associated with a security group

    Product Category

    Product/Instance

    Databases

    GaussDB

    Relational Database Service (RDS)

    Document Database Service (DDS)

    GaussDB NoSQL

    Distributed Database Middleware (DDM)

    Applications

    Distributed Cache Service (DCS)
    • Redis instance
    • Memcached instance
    Distributed Message Service (DMS)
    • Kafka instance
    • RabbitMQ instance

    API Gateway

    EI

    MapReduce Service (MRS)

    Data Warehouse Service (DWS)

    Cloud Search Service (CSS)