企业主机安全 HSS
云服务在IAM预置了常用授权项,称为系统身份策略。如果IAM系统身份策略无法满足授权要求,管理员可以根据各服务支持的授权项,创建IAM自定义身份策略来进行精细的访问控制,IAM自定义身份策略是对系统身份策略的扩展和补充。
除IAM服务外,Organizations服务中的服务控制策略(Service Control Policy,以下简称SCP)也可以使用这些授权项元素设置访问控制策略。
SCP不直接进行授权,只划定权限边界。将SCP绑定到组织单元或者成员账号时,并没有直接对组织单元或成员账号授予操作权限,而是规定了成员账号或组织单元包含的成员账号的授权范围。IAM身份策略授予权限的有效性受SCP限制,只有在SCP允许范围内的权限才能生效。
IAM服务与Organizations服务在使用这些元素进行访问控制时,存在着一些区别,详情请参见:IAM服务与Organizations服务权限访问控制的区别。
本章节介绍IAM服务身份策略授权场景中自定义身份策略和组织服务中SCP使用的元素,这些元素包含了操作(Action)、资源(Resource)和条件(Condition)。
操作(Action)
操作(Action)即为身份策略中支持的授权项。
- “访问级别”列描述如何对操作进行分类(list、read和write等)。此分类可帮助您了解在身份策略中相应操作对应的访问级别。
- “资源类型”列指每个操作是否支持资源级权限。
- 资源类型支持通配符号*表示所有。如果此列没有值(-),则必须在身份策略语句的Resource元素中指定所有资源类型(“*”)。
- 如果该列包含资源类型,则必须在具有该操作的语句中指定该资源的URN。
- 资源类型列中必需资源在表中用星号(*)标识,表示使用此操作必须指定该资源类型。
关于HSS定义的资源类型的详细信息请参见资源类型(Resource)。
- “条件键”列包括了可以在身份策略语句的Condition元素中支持指定的键值。
- 如果该授权项资源类型列存在值,则表示条件键仅对列举的资源类型生效。
- 如果该授权项资源类型列没有值(-),则表示条件键对整个授权项生效。
- 如果此列条件键没有值(-),表示此操作不支持指定条件键。
关于HSS定义的条件键的详细信息请参见条件(Condition)。
- “别名”列包括了可以在身份策略中配置的策略授权项。通过这些授权项,可以控制支持策略授权的API访问。详细信息请参见身份策略兼容性说明。
授权项 | 描述 | 访问级别 | 资源类型(*为必须) | 条件键 | 别名 |
|---|---|---|---|---|---|
hss:host:addHostsGroup | 授予权限以创建服务器组。 | Write | host * |
| |
hss:ars:addPWLPolicyHost | 授予权限以进行白名单策略添加主机。 | Write | host * |
| |
hss:rasp:addRaspPolicy | 授予权限以添加防护策略。 | Write | - |
| |
hss:safetyReport:addSecurityReport | 授予权限以创建或复制新报告。 | Write | - |
| |
hss:wtp:addTimingOffConfigInfo | 授予权限以添加定时关闭防护配置。 | Write | host * |
| |
hss:wtp:addWtpHostProtectDirInfo | 授予权限以增加防护目录。 | Write | host * |
| |
hss:wtp:addWtpPrivilegedProcessInfo | 授予权限以添加特权进程。 | Write | host * |
| |
hss:setting:changeAutoKillVirusStatus | 授予权限以开启或关闭程序自动隔离查杀。 | Write | - |
| |
hss:event:changeBlockedIp | 授予权限以解除拦截。 | Write | host * |
| |
hss:setting:changeMalwareCollectStatus | 授予权限以开启或关闭恶意软件云查样本收集配置。 | Write | - |
| |
hss:ars:changePWLPolicy | 授予权限以修改白名单策略。 | Write | - |
| |
hss:ars:changePWLPolicyProcessStatus | 授予权限以标记进程白名单策略识别进程。 | Write | - |
| |
hss:safetyReport:changeSecurityReport | 授予权限以修改报告。 | Write | - |
| |
hss:ars:createPWLPolicy | 授予权限以创建白名单策略。 | Write | host * | - |
|
- | |||||
hss:ars:deletePWLPolicy | 授予权限以删除白名单策略。 | Write | - |
| |
hss:ars:deletePWLPolicyHost | 授予权限以进行白名单策略删除主机。 | Write | host * |
| |
hss:antiransomware:deleteRansomwareDuplicationInfo | 授予权限以删除备份副本。 | Write | - |
| |
hss:antiransomware:deleteRansomwareProtectionPolicy | 授予权限以删除防护策略。 | Write | - |
| |
hss:rasp:deleteRaspPolicy | 授予权限以删除防护策略。 | Write | - |
| |
hss:safetyReport:deleteSecurityReport | 授予权限以删除报告。 | Write | - |
| |
hss:wtp:deleteTimingOffConfigInfo | 授予权限以删除定时关闭防护配置。 | Write | host * |
| |
hss:wtp:deleteWtpBackupHostInfo | 授予权限以删除远端备份服务器。 | Write | host * |
| |
hss:wtp:deleteWtpHostProtectDirInfo | 授予权限以删除防护目录。 | Write | host * |
| |
hss:wtp:deleteWtpPrivilegedProcessInfo | 授予权限以删除特权进程。 | Write | host * |
| |
hss:setting:getAgentInstallScript | 授予权限以查询agent安装脚本。 | Read | - |
| |
hss:setting:getAlarmConfig | 授予权限以查询告警配置。 | Read | - |
| |
hss:rasp:getAppRaspSwitchStatus | 授予权限以查询应用防护开启状态。 | Read | host * |
| |
hss:setting:getAutoKillVirusStatus | 授予权限以查询程序自动隔离查杀状态。 | Read | - |
| |
hss:container:getContainerNodeStatistics | 授予权限以查询容器节点防护总览数据。 | Read | - |
| |
hss:keyfile:getFileStatistic | 授予权限以获取服务器文件统计信息。 | Read | - |
| |
hss:setting:getMalwareCollectStatus | 授予权限以查询恶意软件云查样本收集配置开关状态。 | Read | - |
| |
hss:setting:getMalwareReminders | 授予权限以获取提示信息配置。 | Read | - |
| |
hss:securitycheck:getManualSecurityCheckStatus | 授予权限以查询手动体检状态和进度。 | Read | - |
| |
hss:overview:getOverviewAssetGroupsStatistics | 授予权限以获取业务组分布统计,并识别一般资产、重要资产、核心资产。 | Read | - |
| |
hss:overview:getOverviewAssetOsStatistics | 授予权限以获取操作系统分布统计。 | Read | - |
| |
hss:overview:getOverviewAssetStatistics | 授予权限以获取资产统计,包含主机、容器、镜像。 | Read | - |
| |
hss:overview:getOverviewAttckMitre | 授予权限以调查响应-ATT&CK攻击路径矩阵。 | Read | - |
| |
hss:overview:getOverviewDefenseStatistics | 授予权限以获取主动防御统计。 | Read | - |
| |
hss:overview:getOverviewProtectionStatusStatistics | 授予权限以查询当前云负载的防护状态。 | Read | - |
| |
hss:overview:getOverviewQuotaStatistics | 授予权限以获取主机安全统计。 | Read | - |
| |
hss:overview:getOverviewRiskLists | 授予权限以查询风险列表。 | Read | - |
| |
hss:overview:getOverviewRiskManageStatistics | 授予权限以获取风险管理,包含风险趋势和类型统计。 | Read | - |
| |
hss:overview:getOverviewRiskScore | 授予权限以查询风险评分结果。 | Read | - |
| |
hss:overview:getOverviewRiskStatistics | 授予权限以查询风险统计,安全风险、安全告警、主动防御。 | Read | - |
| |
hss:overview:getOverviewTrialsStatistics | 授予权限以试用主机风险统计。 | Read | - |
| |
hss:antiransomware:getRansomwareBackupInfoByBackupId | 授予权限以查询指定备份信息。 | Read | - |
| |
hss:antiransomware:getRansomwareHSSBackupPolicyInfo | 授予权限以查询备份策略信息。 | Read | - |
| |
hss:antiransomware:getRansomwareBackupStatistics | 授予权限以查询备份统计信息。 | Read | - |
| |
hss:antiransomware:getRansomwareProtectionStatistics | 授予权限以查询防护统计信息。 | Read | - |
| |
hss:antiransomware:getRansomwareVaultInfo | 授予权限以查询备份存储库信息。 | Read | - |
| |
hss:rasp:getRaspPolicyDetail | 授予权限以查询防护策略详情。 | Read | - |
| |
hss:rasp:getRaspProtectStatistics | 授予权限以获取防护数据统计。 | Read | - |
| |
hss:wtp:getRaspSwitchStatus | 授予权限以查询动态网页防篡改开启状态。 | Read | host * |
| |
hss:securitycheck:getSecurityCheckConfig | 授予权限以查询安全体检定时配置信息。 | Read | - |
| |
hss:securitycheck:getSecurityCheckHostReport | 授予权限以查询指定服务器的安全体检报告。 | Read | host * |
| |
hss:securitycheck:getSecurityCheckOverview | 授予权限以查询安全体检概览信息。 | Read | - |
| |
hss:securitycheck:getSecurityCheckStatistic | 授予权限以查询安全体检统计信息。 | Read | - |
| |
hss:safetyReport:getSecurityReport | 授予权限以查询安全报告内容。 | Read | - |
| |
hss:safetyReport:getSecurityReportSubscription | 授予权限以查询报告订阅的内容。 | Read | - |
| |
hss:wtp:getTimingOffStatusInfo | 授予权限以查询定时关闭防护开关状态。 | Read | host * |
| |
hss:wtp:getWtpDashboardProtectStatistics | 授予权限以查询防护数据统计。 | Read | - |
| |
hss:wtp:getWtpDirectory | 授予权限以查询动态网页防篡改的Tomcat bin目录。 | Read | host * |
| |
hss:wtp:getWtpDirectoryMonitorOnlyStatus | 授予权限以查询只监控不修复开关状态。 | Read | host * |
| |
hss:wtp:getWtpPrivilegedProcessesChildStatus | 授予权限以展示特权进程子进程可信状态。 | Read | host * |
| |
hss:wtp:getWtpRemoteBackupHostInfo | 授予权限以查询远端备份服务器信息。 | Read | host * |
| |
hss:setting:listAgentVersion | 授予权限以查询agent版本信息列表。 | List | - |
| |
hss:container:listContainerNodes | 授予权限以查询容器节点列表。 | List | - |
| |
hss:keyfile:listFileEvents | 授予权限以获取变更文件列表。 | List | - |
| |
hss:keyfile:listFileHostEventDetails | 授予权限以获取某个服务器变更文件信息。 | List | host * |
| |
hss:keyfile:listFileHosts | 授予权限以获取云服务器变更列表。 | List | - |
| |
hss:host:listHostGroups | 授予权限以查询服务器组列表。 | List | - |
| |
hss:setting:listLoginCommonIp | 授予权限以查询常用登录IP信息。 | List | - |
| |
hss:setting:listLoginCommonLocation | 授予权限以查询常用登录地信息。 | List | - |
| |
hss:setting:listLoginWhiteIp | 授予权限以查询登录IP白名单。 | List | - |
| |
hss:policy:listPolicyGroup | 授予权限以查询策略组列表。 | List | - |
| |
hss:asset:listPortHost | 授予权限以查询资产指纹-端口-服务器列表。 | List | - |
| |
hss:asset:listProcessesHost | 授予权限以查询资产指纹-进程-服务器列表。 | List | - |
| |
hss:ars:listPWLEvent | 授予权限以查询进程白名单事件。 | List | - |
| |
hss:ars:listPwlPolicy | 授予权限以查询进程白名单策略列表。 | List | - |
| |
hss:ars:listPwlPolicyHost | 授予权限以查询进程白名单策略关联主机列表。 | List | - |
| |
hss:ars:listPwlPolicyProcess | 授予权限以查询进程白名单策略识别进程。 | List | - |
| |
hss:antiransomware:listRansomwareBackedupByHostId | 授予权限以查询备份列表。 | List | host * |
| |
hss:antiransomware:listRansomwareOperationLogsByVaultName | 授予权限以查询备份恢复任务列表。 | List | - |
| |
hss:antiransomware:listRansomwareProtectionOptionalServer | 授予权限以查询可选防护服务器列表。 | List | - |
| |
hss:antiransomware:listRansomwareProtectionPolicy | 授予权限以查询防护策略列表。 | List | - |
| |
hss:antiransomware:listRansomwareProtectionServer | 授予权限以查询勒索防护服务器列表。 | List | - |
| |
hss:rasp:listRaspCheckFeatureRule | 授予权限以查询检测规则列表。 | List | - |
| |
hss:rasp:listRaspEvents | 授予权限以查询应用防护事件列表。 | List | - |
| |
hss:rasp:listRaspPolicies | 授予权限以查询防护策略列表。 | List | - |
| |
hss:rasp:listRaspProtectionServers | 授予权限以查询防护服务器列表。 | List | - |
| |
hss:securitycheck:listSecurityCheckHostReportHistory | 授予权限以查询指定服务器的安全体检历史报告列表。 | List | host * |
| |
hss:securitycheck:listSecurityCheckHostResult | 授予权限以查询多服务器的安全体检结果列表。 | List | - |
| |
hss:safetyReport:listSecurityReport | 授予权限以查询报告总览页列表。 | List | - |
| |
hss:safetyReport:listSecurityReportHistoryPeriod | 授予权限以查询历史报告统计周期列表。 | List | - |
| |
hss:safetyReport:listSecurityReportSendingRecord | 授予权限以查询报告发送记录列表。 | List | - |
| |
hss:wtp:listTimingOffConfigInfo | 授予权限以查询定时关闭防护配置列表。 | List | host * |
| |
hss:setting:listTwoFactorLoginHost | 授予权限以查询双因子主机列表。 | List | - |
| |
hss:wtp:listWtpBackupHostsInfo | 授予权限以查询远端备份服务器。 | List | - |
| |
hss:wtp:listWtpHostProtectDirInfo | 授予权限以查询主机防护目录。 | List | host * |
| |
hss:wtp:listWtpHostProtectHistoryInfo | 授予权限以查询主机静态网页防篡改防护动态。 | List | - |
| |
hss:wtp:listWtpHostRaspProtectHistoryInfo | 授予权限以查询主机动态网页防篡改防护动态。 | List | - |
| |
hss:wtp:listWtpPrivilegedProcessesInfo | 授予权限以查询特权进程配置。 | List | host * |
| |
hss:wtp:listWtpProtectHost | 授予权限以查询防护列表。 | List | - |
| |
hss:setting:modifyLoginCommonIp | 授予权限以添加、编辑或删除常用登录IP地址。 | Write | host * |
| |
hss:setting:modifyLoginCommonLocation | 授予权限以添加、编辑或删除常用登录地。 | Write | host * |
| |
hss:setting:modifyLoginWhiteIp | 授予权限以添加、编辑或删除登录IP白名单。 | Write | host * |
| |
hss:ars:operatePWLEvent | 授予权限以处理事件。 | Write | - |
| |
hss:ars:relearnPWLPolicy | 授予权限以进行白名单策略重新学习。 | Write | host * |
| |
hss:overview:resetOverviewRiskScore | 授予权限以重置风险评分,重新体检。 | Write | - |
| |
hss:antiransomware:restoreRansomwareDuplicationInfo | 授予权限以备份恢复。 | Write | - |
| |
hss:safetyReport:sendSecurityReport | 授予权限以发送安全报告。 | Write | - |
| |
hss:setting:setAlarmConfig | 授予权限以设置提示信息配置。 | Write | - |
| |
hss:setting:setMalwareReminders | 授予权限以设置提示信息配置。 | Write | - |
| |
hss:wtp:setRemoteWtpBackupInfo | 授予权限以开启关闭远端备份。 | Write | host * |
| |
hss:wtp:setTimingOffSwitchInfo | 授予权限以设置定时关闭防护开关状态。 | Write | host * |
| |
hss:setting:setTwoFactorLoginConfig | 授予权限以设置双因子登录配置。 | Write | host * |
| |
hss:wtp:setWtpDirectoryMonitorOnlyStatus | 授予权限以设置只监控不修复开关状态。 | Write | host * |
| |
hss:wtp:setWtpPrivilegedProcessesChildStatus | 授予权限以设置特权进程子进程可信状态。 | Write | host * |
| |
hss:wtp:setWtpProtectionStatusInfo | 授予权限以开启关闭网页防篡改防护。 | Write | host * |
| |
hss:wtp:setWtpProtectSwitch | 授予权限以开启/关闭动态网页防篡改防护。 | Write | host * |
| |
hss:wtp:setWtpScheduledProtectionDateOffConfigInfo | 授予权限以设置自动关闭防护的频率周期。 | Write | host * |
| |
hss:securitycheck:startManualSecurityCheck | 授予权限以启动手动体检。 | Write | - |
| |
hss:antiransomware:startRansomwareBackupSingle | 授予权限以开启单台服务器备份功能。 | Write | host * |
| |
hss:antiransomware:startRansomwareProtection | 授予权限以开启勒索病毒防护。 | Write | host * |
| |
hss:antiransomware:startRansomwareProtectionSingle | 授予权限以开启单台服务器勒索防护。 | Write | host * |
| |
hss:securitycheck:stopManualSecurityCheck | 授予权限以取消手动体检。 | Write | - |
| |
hss:antiransomware:stopRansomwareProtection | 授予权限以关闭勒索病毒防护。 | Write | host * |
| |
hss:container:switchContainerProtectStatus | 授予权限以切换防护状态。 | Write | host * |
| |
hss:ars:switchPWLPolicyHost | 授予权限以开启/关闭主机白名单策略。 | Write | host * |
| |
hss:rasp:switchRasp | 授予权限以开启/关闭应用防护。 | Write | host * |
| |
hss:safetyReport:switchSecurityReportStatus | 授予权限以修改安全报告开关。 | Write | - |
| |
hss:wtp:switchWtpHostProtectDirInfo | 授予权限以开启/关闭目录防护。 | Write | host * |
| |
hss:host:uninstallAgents | 授予权限以卸载Agent。 | Write | host * |
| |
hss:setting:updateAlarmConfig | 授予权限以设置告警配置。 | Write | - |
| |
hss:antiransomware:updateRansomwareBackupPolicyInfo | 授予权限以修改备份策略。 | Write | - |
| |
hss:antiransomware:updateRansomwareProtectionPolicy | 授予权限以修改防护策略。 | Write | - |
| |
hss:rasp:updateRaspPolicy | 授予权限以修改防护策略。 | Write | - |
| |
hss:securitycheck:updateSecurityCheckConfig | 授予权限以修改安全体检定时配置信息。 | Write | - |
| |
hss:wtp:updateTimingOffConfigInfo | 授予权限以修改定时关闭防护配置。 | Write | host * |
| |
hss:wtp:updateWtpBackupHostInfo | 授予权限以添加或修改远端备份服务器。 | Write | host * |
| |
hss:wtp:updateWtpDirectoryInfo | 授予权限以修改动态网页防篡改的Tomcat bin目录。 | Write | host * |
| |
hss:wtp:updateWtpHostProtectDirInfo | 授予权限以修改防护目录。 | Write | host * |
| |
hss:wtp:updateWtpPrivilegedProcessInfo | 授予权限以修改特权进程。 | Write | host * |
| |
hss:asset:addValuesLevel | 授予权限以关联资产管理-主机管理-资产重要性。 | Write | host * |
| |
hss:asset:batchModifyPortStatus | 授予权限以修改端口状态。 | Write | host * |
| |
hss:asset:deleteToolConditionHistory | 授予权限以清除工具的搜索记录(运营工具)。 | Write | - |
| |
hss:asset:executeTool | 授予权限以工具执行搜索(运营工具)。 | Write | - |
| |
hss:asset:getAccountTop | 授予权限以获取资产管理-概览-账户Top。 | Read | - |
| |
hss:asset:getAgentStatisticsStatus | 授予权限以获取资产管理-概览-资产状态-主机Agent状态。 | Read | - |
| |
hss:asset:getAssetStatistic | 授予权限以获取资产统计信息,账号、端口、进程等。 | Read | - |
| |
hss:asset:getAssetType | 授予权限以获取资产管理-概览-资产状态-资产分布。 | Read | - |
| |
hss:asset:getAutoLaunchTop | 授予权限以获取资产管理-概览-自启动项Top。 | Read | - |
| |
hss:asset:getCommonPort | 授予权限以呈现某一端口详细信息。 | Read | - |
| |
hss:asset:getContainerProtectionStatus | 授予权限以获取资产管理-概览-资产状态-容器节点防护状态。 | Read | - |
| |
hss:asset:getCoreConfFileTop | 授予权限以获取资产管理-概览-关键配置Top。 | Read | - |
| |
hss:asset:getEnvironmentTop | 授予权限以获取资产管理-概览-环境变量Top。 | Read | - |
| |
hss:asset:getHostAssetManualCollectStatus | 授予权限以获取单主机资产指纹立即采集接口的运行状态。 | Read | host * |
| |
hss:asset:getHostProtectionStatus | 授予权限以获取资产管理-概览-资产状态-Agent状态。 | Read | - |
| |
hss:asset:getJarPackageTop | 授予权限以获取资产管理-概览-jar包Top。 | Read | - |
| |
hss:asset:getKernelModuleTop | 授予权限以获取资产管理-概览-内核模块Top。 | Read | - |
| |
hss:asset:getOsStatisticsInfo | 授予权限以获取资产管理-概览-资产状态-操作系统统计信息。 | Read | - |
| |
hss:asset:getProcessTop | 授予权限以获取资产管理-概览-进程Top。 | Read | - |
| |
hss:asset:getPortTop | 授予权限以获取资产管理-概览-端口Top。 | Read | - |
| |
hss:asset:getQuotaStatisticsInfo | 授予权限以获取资产管理-概览-资产状态-防护配额统计信息。 | Read | - |
| |
hss:asset:getSoftwareTop | 授予权限以获取资产管理-概览-软件Top。 | Read | - |
| |
hss:asset:getWebAppAndServiceTop | 授予权限以获取资产管理-概览-WebAppAndServiceTop。 | Read | - |
| |
hss:asset:getWebAppTop | 授予权限以获取资产管理-概览-Web应用Top。 | Read | - |
| |
hss:asset:getWebFrameworkTop | 授予权限以获取资产管理-概览-Web框架Top。 | Read | - |
| |
hss:asset:getWebServiceTop | 授予权限以获取资产管理-概览-Web服务Top。 | Read | - |
| |
hss:asset:getWebSiteTop | 授予权限以获取资产管理-概览-Web站点Top。 | Read | - |
| |
hss:asset:listAppChangeHistories | 授予权限以获取资产指纹-软件信息-历史变动记录。 | List | - |
| |
hss:asset:listApps | 授予权限以获取单主机资产指纹-软件。 | List | - |
| |
hss:asset:listAppStatistics | 授予权限以获取资产指纹-软件信息。 | List | - |
| |
hss:asset:listAutoLaunchChangeHistories | 授予权限以获取资产指纹-自启动项-历史变动记录。 | List | - |
| |
hss:asset:listAutoLaunchs | 授予权限以获取单主机资产指纹-自启动项。 | List | - |
| |
hss:asset:listAutoLaunchStatistics | 授予权限以获取资产指纹-自启动项信息。 | List | - |
| |
hss:asset:listCoreConfFileHostInfo | 授予权限以获取资产管理-资产指纹-系统关键配置文件的服务器列表。 | List | - |
| |
hss:asset:listCoreConfFileInfo | 授予权限以获取资产管理-主机管理-指纹类型-关键配置。 | List | host * |
| |
hss:asset:listCoreConfFileStatistics | 授予权限以获取资产管理-资产指纹-系统关键配置文件左侧树。 | List | - |
| |
hss:asset:listEnvironmentHostInfo | 授予权限以获取资产管理-资产指纹-环境变量的服务器列表(资产指纹右侧服务器列表)。 | List | - |
| |
hss:asset:listEnvironmentInfo | 授予权限以获取资产管理-主机管理-指纹类型-环境变量。 | List | host * |
| |
hss:asset:listEnvironmentStatistics | 授予权限以获取资产管理-资产指纹-环境变量文件左侧树。 | List | - |
| |
hss:asset:listJarPackageHostInfo | 授予权限以获取资产管理-资产指纹-Jar包的服务器列表。 | List | - |
| |
hss:asset:listJarPackageInfo | 授予权限以获取资产管理-主机管理-指纹类型-Jar包。 | List | host * |
| |
hss:asset:listJarPackageStatistics | 授予权限以获取资产管理-资产指纹-Jar包左侧树。 | List | - |
| |
hss:asset:listKernelModuleHostInfo | 授予权限以获取资产管理-资产指纹-内核模块的服务器列表。 | List | - |
| |
hss:asset:listKernelModuleInfo | 授予权限以获取资产管理-主机管理-指纹类型-内核模块。 | List | host * |
| |
hss:asset:listKernelModuleStatistics | 授予权限以获取资产管理-资产指纹-内核模块左侧树。 | List | - |
| |
hss:asset:listPorts | 授予权限以获取单主机资产指纹-开放端口信息。 | List | host * |
| |
hss:asset:listPortStatistics | 授予权限以获取资产指纹-开放端口信息。 | List | - |
| |
hss:asset:listProcesses | 授予权限以获取进程列表。 | List | host * |
| |
hss:asset:listProcessStatistics | 授予权限以获取资产指纹-进程信息。 | List | - |
| |
hss:asset:listResult | 授予权限以获取执行结果(运营工具)。 | List | - |
| |
hss:asset:listTool | 授予权限以获取工具列表(运营工具)。 | List | - |
| |
hss:asset:listToolConditionHistory | 授予权限以获取工具的搜索记录(运营工具)。 | List | - |
| |
hss:asset:listUserChangeHistories | 授予权限以获取账户变动历史记录信息。 | List | - |
| |
hss:asset:listUserGroup | 授予权限以获取用户组列表。 | List | - |
| |
hss:asset:listUsers | 授予权限以获取资产的账号列表。 | List | - |
| |
hss:asset:listUserStatistics | 授予权限以获取资产指纹-账号信息。 | List | - |
| |
hss:asset:listWebAppAndServices | 授予权限以获取资产管理-资产指纹-右侧WebAppAndService资产信息。 | List | - |
| |
hss:asset:listWebAppAndServiceStatistics | 授予权限以获取资产管理-资产指纹-左侧WebAppAndService名称树信息。 | List | - |
| |
hss:asset:listWebAppHostInfo | 授予权限以获取资产管理-资产指纹-Web应用的服务器列表。 | List | - |
| |
hss:asset:listWebAppInfo | 授予权限以获取资产管理-主机管理-指纹类型-Web应用。 | List | host * |
| |
hss:asset:listWebAppStatistics | 授予权限以获取资产管理-资产指纹-Web应用左侧树。 | List | - |
| |
hss:asset:listWebFrameworkHostInfo | 授予权限以获取资产管理-资产指纹-Web框架的服务器列表。 | List | - |
| |
hss:asset:listWebFrameworkInfo | 授予权限以获取资产管理-主机管理-指纹类型-Web框架。 | List | host * |
| |
hss:asset:listWebFrameworkStatistics | 授予权限以获取资产管理-资产指纹-Web框架左侧树。 | List | - |
| |
hss:asset:listWebServiceHostInfo | 授予权限以获取资产管理-资产指纹-Web服务的服务器列表。 | List | - |
| |
hss:asset:listWebServiceInfo | 授予权限以获取资产管理-主机管理-指纹类型-Web服务。 | List | host * |
| |
hss:asset:listWebServiceStatistics | 授予权限以获取资产管理-资产指纹-Web服务左侧树。 | List | - |
| |
hss:asset:listWebSiteHostInfo | 授予权限以获取资产管理-资产指纹-Web站点的服务器列表。 | List | - |
| |
hss:asset:listWebSiteInfo | 授予权限以获取资产管理-主机管理-指纹类型-Web站点。 | List | host * |
| |
hss:asset:listWebSiteStatistics | 授予权限以获取资产管理-资产指纹-Web站点左侧树。 | List | - |
| |
hss:asset:runHostAssetManualCollect | 授予权限以立即采集单主机资产指纹。 | Write | host * |
| |
hss:baseline:addSecurityCheckPolicyGroup | 授予权限以新建配置检测策略信息。 | Write | - |
| |
hss:baseline:changeCheckRuleState | 授予权限以对未通过的配置检查项进行忽略/取消忽略/修复/验证操作。 | Write | baseline * |
| |
hss:baseline:deleteSecurityCheckPolicyGroup | 授予权限以删除指定配置检测策略信息。 | Write | - |
| |
hss:baseline:exportSecurityCheckReport | 授予权限以按查询结果导出配置检测报告。 | List | - |
| |
hss:baseline:getBaselineOverview | 授予权限以查询基线检查的统计数据信息。 | Read | - |
| |
hss:baseline:getBaselineScanStatus | 授予权限以查询基线检查任务进度。 | Read | - |
| |
hss:baseline:getBaselineStatistic | 授予权限以查询基线检查的统计数据信息,包括弱口令,口令复杂度,配置检测。 | Read | - |
| |
hss:baseline:getCheckRuleDetail | 授予权限以查询配置检查项检测报告。 | Read | baseline * |
| |
hss:baseline:getCheckRuleFixFailDetail | 授予权限以查询检查项修复失败原因。 | Read | baseline * |
| |
hss:baseline:getDefaultSecurityCheckPolicy | 授予权限以查询配置检测策略的默认基线信息。 | Read | - |
| |
hss:baseline:getDefaultSecurityCheckPolicyDetails | 授予权限以查询基线的详细检查项。 | Read | - |
| |
hss:baseline:getRiskConfigDetail | 授予权限以查询指定安全配置项的检查结果。 | Read | - |
| |
hss:baseline:listCheckRuleHost | 授予权限以查询配置检查项影响到的服务器列表。 | List | baseline * |
| |
hss:baseline:listPasswordComplexity | 授予权限以查询口令复杂度策略检测报告。 | List | - |
| |
hss:baseline:listRiskConfigCheckRules | 授予权限以查询指定安全配置项的检查项列表。 | List | - |
| |
hss:baseline:listRiskConfigHosts | 授予权限以查询指定安全配置项的受影响服务器列表。 | List | - |
| |
hss:baseline:listRiskConfigs | 授予权限以查询租户的服务器安全配置检测结果列表。 | List | - |
| |
hss:baseline:listSecurityCheckPolicyGroup | 授予权限以查询配置检测策略组列表。 | List | - |
| |
hss:baseline:listWeakPasswordUsers | 授予权限以查询弱口令检测结果列表。 | List | - |
| |
hss:baseline:runBaselineDetect | 授予权限以手动检测:对策略中选择的主机,进行配置检测和弱口令检测。 | Write | - |
| |
hss:baseline:updateSecurityCheckPolicyGroup | 授予权限以修改指定配置检测策略信息。 | Write | - |
| |
hss:event:addLoginWhiteList | 授予权限以添加登录白名单。 | Write | - |
| |
hss:event:batchChangeEvent | 授予权限以批量处理告警事件。 | Write | - |
| |
hss:event:changeEvent | 授予权限以处理告警事件。 | Write | event * |
| |
hss:event:changeIsolatedFile | 授予权限以恢复已隔离文件。 | Write | host * |
| |
hss:event:exportAlarmWhiteList | 授予权限以导出告警白名单。 | List | - |
| |
hss:event:exportEmergency | 授予权限以导出应急恶意程序接口。 | List | - |
| |
hss:event:getEmergencyStatistics | 授予权限以获取应急事件统计信息。 | Read | - |
| |
hss:event:getEventAttackTag | 授予权限以查询攻击标识分布统计列表。 | Read | - |
| |
hss:event:getEventSeverity | 授予权限以查询威胁等级统计列表。 | Read | - |
| |
hss:event:getEventStatistics | 授予权限以查询告警事件统计。 | Read | - |
| |
hss:event:getMalwareInfo | 授予权限以获取突发恶意程序详情列表。 | Read | event * |
| |
hss:event:handleMalwareEvent | 授予权限以处理恶意程序。 | Write | event * |
| |
hss:event:importAlarmWhiteList | 授予权限以导入告警白名单。 | Write | - |
| |
hss:event:isolateOperateEmergency | 授予权限以开启或关闭隔离箱。 | Write | - |
| |
hss:event:listAlarmWhiteList | 授予权限以查询告警白名单列表。 | List | - |
| |
hss:event:listBlockedIp | 授予权限以查询已拦截IP列表。 | List | - |
| |
hss:event:listEventOperates | 授予权限以查询事件支持的处理类型。 | List | - |
| |
hss:event:listEventTopRisk | 授予权限以查询TOP10事件类型统计列表。 | List | - |
| |
hss:event:listEventType | 授予权限以查询事件类型统计列表。 | List | - |
| |
hss:event:listFileIsolateList | 授予权限以获取突发恶意程序隔离文件列表。 | List | - |
| |
hss:event:listIsolatedFile | 授予权限以查询已隔离文件列表。 | List | - |
| |
hss:event:listLoginWhiteList | 授予权限以查询登录白名单列表。 | List | - |
| |
hss:event:listMalware | 授予权限以获取突发恶意程序事件列表。 | List | - |
| |
hss:event:listSecurityEvents | 授予权限以查入侵事件列表。 | List | - |
| |
hss:event:recoverIsolateFile | 授予权限以恢复文件隔离箱。 | Write | - |
| |
hss:event:removeAlarmWhiteList | 授予权限以删除告警白名单。 | Write | - |
| |
hss:event:removeLoginWhiteList | 授予权限以删除登录白名单。 | Write | - |
| |
hss:host:associateHostAssetValue | 授予权限以关联资产重要性。 | Write | host * |
| |
hss:host:associateHostsGroup | 授予权限以分配到组。 | Write | host * |
| |
hss:host:batchInstallAgent | 授予权限以批量安装agent。 | Write | host * |
| |
hss:host:changeHostsGroup | 授予权限以编辑服务器组。 | Write | - |
| |
hss:host:deleteHostsGroup | 授予权限以删除服务器组。 | Write | - |
| |
hss:host:getHostsStatistics | 授予权限以统计服务器数据。 | Read | - |
| |
hss:host:listFirewallStatus | 授予权限以查询主机是否开启防火墙。 | Read | host * |
| |
hss:host:listHostGroupAssetValue | 授予权限以查询资产重要性的服务器组列表。 | List | - |
| |
hss:host:listHostsRisk | 授予权限以获取ECS风险状况。 | Read | host * |
| |
hss:host:listHostStatus | 授予权限以查询云服务器列表。 | List | - |
| |
hss:host:listHostsUpgrade | 授予权限以获取主机的升级状态。 | Read | host * | - |
|
- | |||||
hss:host:manualCheckVul | 授予权限以手动检测漏洞。 | Write | - |
| |
hss:host:switchFirewallStatus | 授予权限以修改防火墙授权状态。 | Write | host * |
| |
hss:host:switchHostsProtectStatus | 授予权限以切换防护状态。 | Write | host * |
| |
hss:host:upgradeAgent | 授予权限以升级Agent1.0到2.0。 | Write | host * | - |
|
- | |||||
hss:host:upgradeAgents | 授予权限以升级Agent。 | Write | host * |
| |
hss:image:batchScanLocalImage | 授予权限以进行本地镜像扫描。 | Write | - |
| |
hss:image:batchScanPrivateImage | 授予权限以批量扫描私有镜像仓库镜像。 | Write | - |
| |
hss:image:getImageFilesStat | 授予权限以查询镜像文件统计信息。 | Read | - |
| |
hss:image:getImageLocalVulOverview | 授予权限以查询本地漏洞概览信息。 | Read | - |
| |
hss:image:getImageVulOverview | 授予权限以查询仓库漏洞概览信息。 | Read | - |
| |
hss:image:listCfgCheckAffectedImage | 授予权限以查询租户镜像未通过基线项所影响的镜像列表。 | List | - |
| |
hss:image:listGlobalCfgCheck | 授予权限以查询租户全量配置检测统计结果。 | List | - |
| |
hss:image:listGlobalMalware | 授予权限以查询租户恶意文件列表。 | List | - |
| |
hss:image:listGlobalVul | 授予权限以查询租户的漏洞信息。 | List | - |
| |
hss:image:listImageApps | 授予权限以查询镜像软件列表。 | List | - |
| |
hss:image:listImageAppVul | 授予权限以查询软件漏洞列表。 | List | - |
| |
hss:image:listImageCfgCheck | 授予权限以查询单个镜像的配置基线检测结果。 | List | - |
| |
hss:image:listImageFiles | 授予权限以查询镜像无归属文件列表。 | List | - |
| |
hss:image:listImageLocal | 授予权限以查询本地镜像列表。 | List | - |
| |
hss:image:listImageMalware | 授予权限以查询镜像恶意文件列表。 | List | - |
| |
hss:image:listImageNamespace | 授予权限以查询镜像namespace信息。 | List | - |
| |
hss:image:listImageRepository | 授予权限以查询私有镜像仓库镜像列表。 | List | - |
| |
hss:image:listImageVul | 授予权限以查询镜像的漏洞信息。 | List | - |
| |
hss:image:listInstanceImageVul | 授予权限以查询企业镜像的漏洞信息。 | List | - |
| |
hss:image:listLocalImageApp | 授予权限以查询本地镜像软件列表。 | List | - |
| |
hss:image:listLocalImageAppVuls | 授予权限以查询本地镜像某软件的软件漏洞列表。 | List | - |
| |
hss:image:listLocalImageContainers | 授予权限以查询本地镜像的容器信息。 | List | - |
| |
hss:image:listLocalImageHosts | 授予权限以查询本地镜像的主机信息。 | List | - |
| |
hss:image:listLocalImageMalware | 授予权限以查询本地镜像的恶意文件信息。 | List | - |
| |
hss:image:listLocalImageVuls | 授予权限以查询本地镜像的漏洞信息。 | List | - |
| |
hss:image:listLocalVulRepoImage | 授予权限以查询本地镜像漏洞影响的镜像和容器信息。 | List | - |
| |
hss:image:listPrivateImageRepository | 授予权限以查询私有镜像仓库镜像列表。 | List | - |
| |
hss:image:listSharedImageRepository | 授予权限以查询共享镜像仓库镜像列表。 | List | - |
| |
hss:image:listVulCve | 授予权限以查询漏洞对应cve信息。 | List | - |
| |
hss:image:listVulRepoImage | 授予权限以查询单个漏洞影响的镜像仓库中的镜像信息。 | List | - |
| |
hss:image:runImageScan | 授予权限以扫描镜像。 | Write | - |
| |
hss:image:runImageSynchronizeTask | 授予权限以从SWR服务同步自由镜像列表。 | Write | - |
| |
hss:image:runSwrImageScan | 授予权限以更新并扫描SWR镜像,提供swr访问。 | Write | - |
| |
hss:image:sharedImageSynchronization | 授予权限以从swr更新他人共享镜像。 | Write | - |
| |
hss:policy:addPolicyGroup | 授予权限以复制主机策略组。 | Write | policy * |
| |
hss:policy:associatePolicyGroup | 授予权限以部署策略。 | Write | policy * |
| |
host * | |||||
hss:policy:changePolicyDetail | 授予权限以修改策略内容。 | Write | policy * |
| |
hss:policy:changePolicyGroup | 授予权限以修改策略组相关内容。 | Write | policy * |
| |
hss:policy:deletePolicyGroup | 授予权限以删除策略组。 | Write | policy * |
| |
hss:policy:getPolicyDetail | 授予权限以查询指定策略详细信息。 | Read | policy * |
| |
hss:policy:listPolicyGroupDetail | 授予权限以查询策略组策略信息列表。 | List | policy * |
| |
hss:quota:addResourceInstanceTag | 授予权限以单个资源添加资源标签。 | Tagging | - |
| |
hss:quota:batchCreateTags | 授予权限以批量创建标签。 | Write | - |
| |
hss:quota:batchDeleteTags | 授予权限以批量删除标签。 | Write | - |
| |
hss:quota:cancelHostsQuota | 授予权限以解绑配额。 | Write | - | - |
|
hss:quota:changeTmsResourceTagInfo | 授予权限以批量添加删除资源标签。 | Write | - |
| |
hss:quota:countResourceInstances | 授予权限以通过标签过滤购买的资源数量。 | List | - |
| |
hss:quota:dealOrder | 授予权限以订购配额。 | Write | - | - |
|
hss:quota:deleteResourceInstanceTag | 授予权限以删除单个资源下的标签。 | Tagging | - |
| |
hss:quota:filterResourceInstanceList | 授予权限以通过标签过滤购买的资源列表。 | List | - |
| |
hss:quota:getResourceInstanceTag | 授予权限以查询单个资源的资源标签。 | Read | - | - |
|
hss:quota:getResourceQuotas | 授予权限以查询配额信息。 | Read | - | - |
|
hss:quota:getTmsResourceTagsInfo | 授予权限以查询资源标签。 | Read | - | - |
|
hss:quota:listProjectTags | 授予权限以查询租户当前项目下所有用过的标签。 | List | - | - |
|
hss:quota:listQuotasDetail | 授予权限以查询配额详情。 | List | - | - |
|
hss:quota:listResourceIds | 授予权限以批量查询配额ID信息。 | List | - | - |
|
hss:quota:listTmsResourceInstancesInfo | 授予权限以查询资源实例。 | List | - |
| |
hss:quota:upgradeOrder | 授予权限以变更规格。 | Write | - | - |
|
hss:vulnerability:changeVulStatus | 授予权限以修改漏洞的状态。 | Write | host * |
| |
hss:vulnerability:exportEmergencyVulnerabilities | 授予权限以导出应急漏洞。 | List | - |
| |
hss:vulnerability:exportVulsList | 授予权限以导出漏洞及漏洞影响的主机的相关信息。 | List | - |
| |
hss:vulnerability:getCmsVulDetail | 授予权限以查询webcms漏洞基本信息。 | Read | - |
| |
hss:vulnerability:getEmergencySummary | 授予权限以查询应急事件总览。 | Read | - |
| |
hss:vulnerability:getEmergencyVulDetail | 授予权限以查询应急事件漏洞详情。 | Read | - |
| |
hss:vulnerability:getLinuxVulDetail | 授予权限以查询linux漏洞基本信息。 | Read | - |
| |
hss:vulnerability:getVulCheckStatus | 授予权限以查询主机漏洞的扫描状态。 | Read | - |
| |
hss:vulnerability:getVulSummary | 授予权限以查询漏洞统计信息。 | Read | - |
| |
hss:vulnerability:getWindosVulDetail | 授予权限以查询windows漏洞基本信息。 | Read | - |
| |
hss:vulnerability:getWindowsVulNum | 授予权限以查询主机windows漏洞的数量。 | List | - |
| |
hss:vulnerability:listEmergencyVul | 授予权限以查询应急事件漏洞。 | List | - |
| |
hss:vulnerability:listHostVuls | 授予权限以查询单台服务器漏洞信息。 | List | host * |
| |
hss:vulnerability:listHostVulSummary | 授予权限以查询服务器统计信息和风险服务器TOP5。 | List | - |
| |
hss:vulnerability:listTopVulSummary | 授予权限以查询漏洞TOP5。 | List | - |
| |
hss:vulnerability:listVulHosts | 授予权限以查询单个漏洞影响的云服务器信息。 | List | - |
| |
hss:vulnerability:listVulnerabilities | 授予权限以查询漏洞列表。 | List | - |
| |
hss:vulnerability:listVulRepairFailedDetail | 授予权限以查询漏洞修复失败信息。 | List | host * |
| |
hss:vulnerability:listVulTypeSummary | 授予权限以查询漏洞类型分布。 | List | - |
| |
hss:vulnerability:operateEmergency | 授予权限以操作应急事件漏洞。 | Write | - |
| |
hss:host:getScanStatus | 授予权限以查询手动检测状态。 | Read | host * |
| |
hss:host:setManualDetect | 授予权限以下发手动检测。 | Write | host * |
| |
hss::getTrustServiceStatus | 授予权限以获取可信服务状态。 | Read | - | - | - |
hss::enableTrustService | 授予权限以开启可信服务。 | Permission_management | - | - | - |
hss::validateAdmin | 授予权限以校验当前账号是否是管理员账号(包含组织管理员和委托管理员)。 | Tagging | - | - | - |
hss::listAccounts | 授予权限以展示多账号列表。 | List | - | - | - |
hss::batchAddAccounts | 授予权限以批量添加账号。 | Write | - | - | - |
hss::deleteAccount | 授予权限以删除账号。 | Write | - | - | - |
hss::listOrganizationTree | 授予权限以展示多账号树形结构。 | List | - | - | - |
hss::listDelegatedAccounts | 授予权限以查询已委托账号树形结构。 | List | - | - | - |
hss:antiransomware:listBackupVaults | 授予权限以查询备份存储库列表。 | List | - |
| |
hss:antiransomware:listRansomwareProtectionNodes | 授予权限以查询勒索防护服务器列表。 | List | - |
| |
hss:antiransomware:getBackupsStatistics | 授予权限以查询备份统计信息。 | List | - |
| |
hss:antiransomware:startSingleBackup | 授予权限以开启单台服务器备份功能。 | Write | host * | - |
|
- | |||||
hss:antiransomware:getBackupPolicyInfo | 授予权限以查询单个备份策略信息。 | Read | - |
| |
hss:hostGroup:getOutsideGroupStatus | 授予权限以查询是否支持创建数据中心服务器组。 | Read | - |
| |
hss:hostGroup:getOutsideHostGroup | 授予权限以查询线下数据中心服务器组。 | Read | - |
| |
hss:hostGroup:addOutsideHostGroup | 授予权限以创建线下数据中心服务器组。 | Write | - |
| |
hss:hostGroup:changeOutsideHostGroup | 授予权限以编辑线下数据中心服务器组。 | Write | - |
| |
hss:images:listImageTag | 授予权限以查询镜像tag版本列表。 | List | - |
| |
hss:images:listImageSensitive | 授予权限以查询镜像的敏感信息。 | List | - |
| |
hss:images:getFilePathWhiteDetail | 授予权限以查询镜像的敏感信息文件路径白名单。 | Read | - |
| |
hss:images:changeFilePathWhiteDetail | 授予权限以修改镜像的敏感信息文件路径白名单。 | Write | - |
| |
hss:images:changeSensitiveInfo | 授予权限以操作处理敏感信息。 | Write | - |
| |
hss:event:listTopEventType | 授予权限以查询TOP5事件类型统计列表。 | List | - |
| |
hss:vulnerability:getVulScanPolicy | 授予权限以查询漏洞扫描策略。 | Read | - | - |
|
hss:vulnerability:changeVulScanPolicy | 授予权限以修改漏洞扫描策略。 | Write | host * | - |
|
hss:vulnerability:listVulWhiteList | 授予权限以查询漏洞白名单列表。 | List | - |
| |
hss:vulnerability:getVulWhiteListDetail | 授予权限以查询漏洞白名单详情。 | Read | - |
| |
hss:vulnerability:changeVulWhiteList | 授予权限以修改漏洞白名单。 | Write | host * | - |
|
- | |||||
hss:vulnerability:deleteVulWhiteList | 授予权限以删除漏洞白名单。 | Write | - | - |
|
hss:vulnerability:addVulWhiteList | 授予权限以添加漏洞白名单。 | Write | host * | - |
|
- | |||||
hss:vulnerability:listVulWhiteListVulOptions | 授予权限以查询添加白名单时的漏洞选项。 | List | - | - |
|
hss:vulnerability:listVulScanTask | 授予权限以查询漏洞扫描任务列表。 | List | - |
| |
hss:vulnerability:listVulScanTaskHost | 授予权限以查询漏洞扫描任务对应的主机列表。 | List | - |
| |
hss:vulnerability:rescanVulScanTask | 授予权限以重新扫描之前漏洞扫描任务中的主机。 | Write | host * | - |
|
- | |||||
hss:vulnerability:getVulScanTaskStatistics | 授予权限以查询漏洞扫描任务的统计数据。 | Read | - |
| |
hss:vulnerability:listHostVulStatistics | 授予权限以查询漏洞管理统计数据。 | List | - |
| |
hss:vulnerability:listVulHostApps | 授予权限以查询漏洞受影响服务器详情-软件列表。 | List | host * | - |
|
- | |||||
hss:vulnerability:listVulHostProcess | 授予权限以查询漏洞受影响服务器详情-进程列表。 | List | host * | - |
|
- | |||||
hss:vulnerability:listVulHandleHistory | 授予权限以查询漏洞历史处置记录。 | List | - |
| |
hss:vulnerability:listVulHostHosts | 授予权限以查询漏洞主机列表。 | List | - |
| |
hss:vulnerability:listVulHostVuls | 授予权限以查询紧急修复/未完成修复漏洞。 | List | - |
| |
hss:vulnerability:listVulHostHandleVuls | 授予权限以查询今日处理漏洞/累计处理漏洞。 | List | - |
| |
hss:image:listImageNonCompliantApp | 授予权限以查询镜像的不合规软件信息。 | List | - |
| |
hss:image:batchExportSWRVulList | 授予权限以swr镜像仓库漏洞批量导出。 | Write | - |
| |
hss:image:batchExportLocalVulList | 授予权限以本地镜像漏洞批量导出。 | Write | - |
| |
hss:image:getExtendedWeakPassword | 授予权限以查询镜像的自定义弱口令。 | List | - |
| |
hss:image:changeExtendedWeakPassword | 授予权限以修改镜像的自定义弱口令。 | Write | - |
| |
hss:image:listImageBasicImage | 授予权限以查询镜像的基础镜像信息。 | List | - |
| |
hss:image:listImagePwdComplexity | 授予权限以查询镜像口令复杂度策略检测报告。 | List | - |
| |
hss:image:listImageWeakPwdUsers | 授予权限以查询镜像弱口令检测结果列表。 | List | - |
| |
hss:image:listImageRiskConfigs | 授予权限以查询镜像安全配置检测结果列表。 | List | - |
| |
hss:image:listImageRiskConfigCheckRules | 授予权限以查询镜像指定安全配置项的检查项列表。 | List | - |
| |
hss:image:getImageRiskConfigDetail | 授予权限以查询镜像指定安全配置项的检查结果。 | Read | - |
| |
hss:image:getImageCheckRuleDetail | 授予权限以查询镜像配置检查项检测报告。 | Read | - |
| |
hss:image:getImageBaselineStatistic | 授予权限以查询基线检查的统计数据信息,包括弱口令,口令复杂度,配置检测。 | Read | - |
| |
hss:event:addSystemUserWhiteList | 授予权限以添加系统用户白名单。 | Write | - |
| |
hss:event:updateSystemUserWhiteList | 授予权限以修改系统用户白名单。 | Write | - |
| |
hss:event:listSystemUserWhiteList | 授予权限以查询系统用户白名单。 | List | - |
| |
hss:event:removeSystemUserWhiteList | 授予权限以删除系统用户白名单。 | Write | - |
| |
hss:container:saveClusters | 授予权限以同步集群信息。 | Write | - |
| |
hss:container:listClusterInfo | 授予权限以查询Kubernetes集群列表。 | List | - |
| |
hss:container:listPodInfo | 授予权限以查询pod基本信息列表。 | List | - |
| |
hss:container:showPodDetail | 授予权限以查询pod详细信息。 | Read | - |
| |
hss:container:listContainerInfo | 授予权限以查询容器基本信息列表。 | List | - |
| |
hss:container:showContainerDetail | 授予权限以查询容器详细信息。 | List | - |
| |
hss:container:listServiceInfo | 授予权限以查询Kubernetes服务列表。 | List | - |
| |
hss:container:showServiceDetail | 授予权限以查询Kubernetes服务详情。 | Read | - |
| |
hss:container:listEndpointInfo | 授予权限以查询kubernetes端点列表。 | List | - |
| |
hss:container:showEndpointDetail | 授予权限以查询Kubernetes端点详情。 | Read | - |
| |
hss:container:listDeployments | 授予权限以查询Kubernetes无状态负载列表。 | List | - |
| |
hss:container:listStatefulSets | 授予权限以查询Kubernetes有状态负载列表。 | List | - |
| |
hss:container:listDaemonSets | 授予权限以查询Kubernetes守护进程列表。 | List | - |
| |
hss:container:listJobs | 授予权限以查询kubernetes普通任务列表。 | List | - |
| |
hss:container:listCronJobs | 授予权限以查询Kubernetes定时任务列表。 | List | - |
| |
hss:vulnerability:showVulAffectedStatics | 授予权限以统计漏洞受影响服务器数量。 | List | - |
| |
hss:vulnerability:listVulHandleTask | 授予权限以查询漏洞处置任务列表。 | List | - |
| |
hss:vulnerability:listVulHandleTaskDetail | 授予权限以查询漏洞处置任务的详情列表。 | List | - |
| |
hss:container:isolateK8sContainer | 授予权限以修改容器的运行状态。 | Write | - |
| |
hss:container:getNetworkStatistics | 授予权限以查询容器防火墙统计状态。 | List | - |
| |
hss:container:getClusters | 授予权限以查询集群列表。 | List | - |
| |
hss:container:getClusterNetworkInfo | 授予权限以查询集群网络信息。 | Read | - |
| |
hss:container:getClusterPolicyList | 授予权限以查询容器网络策略列表。 | List | - |
| |
hss:container:deletePolicy | 授予权限以删除容器网络策略。 | Write | - |
| |
hss:container:createPolicy | 授予权限以创建容器网络策略。 | Write | - |
| |
hss:container:updatePolicy | 授予权限以更新容器网络策略。 | Write | - |
| |
hss:container:syncClusterPolicyList | 授予权限以同步容器网络策略。 | Read | - |
| |
hss:container:syncClusterList | 授予权限以同步集群命名空间信息。 | Read | - |
| |
hss:container:getNamespaceList | 授予权限以查询集群命名空间列表。 | List | - |
| |
hss:container:getNodeList | 授予权限以查询集群节点列表。 | List | - |
| |
hss:container:syncClusterNodeList | 授予权限以同步集群节点。 | Read | - |
| |
hss:vulnerability:getVulScanTaskEstimatedTime | 授予权限以查询漏洞扫描的预估时间。 | Read | - |
| |
hss:antiransomware:addRansomwareProtectionPolicy | 授予权限以添加勒索防护策略。 | Write | - |
| |
hss:antiransomware:associateBackupPolicy | 授予权限以将备份策略绑定存储库。 | Write | - |
| |
hss:antiransomware:listBackupPolicy | 授予权限以查询备份策略列表。 | List | - |
| |
hss:antiransomware:associateProtectionPolicy | 授予权限以切换勒索防护策略。 | Write | - |
| |
hss:antiransomware:batchStartProtection | 授予权限以开启勒索防护。 | Write | - |
| |
hss:event:getEventAttCk | 授予权限以查询ATT&CK攻击阶段统计列表。 | List | event * | - |
|
- | |||||
hss:event:downloadEventSourceFile | 授予权限以下载告警源文件。 | List | event * | - |
|
- | |||||
hss:overview:showSecurityScore | 授予权限以查询安全评分。 | List | - |
| |
hss:overview:listSecurityRisk | 授予权限以查询安全风险列表。 | List | - |
| |
hss:overview:showQuotaHostStatistics | 授予权限以查询主机配额统计信息。 | List | - |
| |
hss:overview:showAgentStatistics | 授予权限以查询agent待升级,在线离线数量。 | List | - |
| |
hss:overview:showHotInformation | 授予权限以查询热点资讯。 | List | - |
| |
hss:overview:showSecurityRisk | 授予权限以查询安全风险信息。 | List | - |
| |
hss:overview:showProtectStatistics | 授予权限以查询守护天数,病毒库更新时间,漏洞库更新时间,各模块累计次数。 | List | - |
| |
hss:overview:showStatistics | 授予权限以查询勒索病毒防治开启数量,应用防护开启数量,网页防篡改开启数量,双因子认证开启数量,支持双因子认证开启数量,隔离文件数量。 | List | - |
| |
hss:event:listEventHandleHistory | 授予权限以查询历史事件处置列表。 | List | event * | - |
|
- | |||||
hss:image:listSwrImageRepository | 授予权限以查询swr镜像仓库镜像列表。 | List | - |
| |
hss:image:batchScanSwrImage | 授予权限以镜像仓库镜像批量扫描。 | Write | - |
| |
hss:image:vulnerabilities | 授予权限以查询镜像的漏洞信息。 | List | - |
| |
hss:image:listVulnerabilityCve | 授予权限以漏洞对应cve信息。 | List | - |
| |
hss:image:listImageRiskConfigRules | 授予权限以查询镜像指定安全配置项的检查项列表。 | List | - |
| |
hss:image:runImageSynchronize | 授予权限以从SWR服务同步镜像列表。 | Write | - |
| |
hss:event:listEventForensic | 授予权限以查询事件取证信息。 | List | event * | - |
|
- | |||||
hss:event:listSimilarHandledEvents | 授予权限以查询相似已处置的告警记录。 | List | event * | - |
|
- | |||||
hss:event:listSameEvent | 授予权限以查询相同告警。 | List | event * | - |
|
- | |||||
hss:container:getPolicies | 授予权限以查询策略列表。 | List | - |
| |
hss:container:getPolicyDetail | 授予权限以查询策略详情。 | List | - |
| |
hss:container:getOverview | 授予权限以查询集群防护总览。 | List | - |
| |
hss:container:getProtectEvents | 授予权限以查询集群防护事件。 | List | - |
| |
hss:container:getProtectClusters | 授予权限以查询集群防护信息。 | List | - |
| |
hss:container:changeProtectStatus | 授予权限以改变集群防护状态。 | Write | - |
| |
hss:container:addWhiteImage | 授予权限以加入镜像白名单。 | Write | - |
| |
hss:container:listDefaultPolicy | 授予权限以查询默认策略模板。 | List | - |
| |
hss:container:listProtectionItem | 授予权限以查询防护范围。 | List | - |
| |
hss:vulnerability:getVulBackupStatistics | 授予权限以查询漏洞处理对应主机的备份相关统计信息。 | Read | - |
| |
hss:vulnerability:ListVulHostVaults | 授予权限以查询漏洞处理对应的主机存储库的列表。 | List | - |
| |
hss:vulnerability:ListVulHostBackups | 授予权限以查询可回滚的备份列表。 | List | host * |
| |
hss:vulnerability:RestoreVulHostBackup | 授予权限以用备份进行回滚。 | Write | - |
| |
hss:event:exportEvent | 授予权限以导出事件告警。 | Write | event * | - |
|
- | |||||
hss:event:queryExportTask | 授予权限以查询导出事件告警任务。 | Read | event * | - |
|
- | |||||
hss:event:downloadEvent | 授予权限以下载事件告警。 | Read | event * | - |
|
- | |||||
hss:ars:createAppWhitelistPolicy | 授予权限以创建应用进程白名单策略。 | Write | host * | - |
|
- | |||||
hss:ars:listAppWhitelistPolicy | 授予权限以查询应用进程白名单策略列表。 | List | - |
| |
hss:ars:changeAppWhitelistPolicy | 授予权限以修改应用进程白名单策略。 | Write | host * | - |
|
- | |||||
hss:ars:deleteAppWhitelistPolicy | 授予权限以删除应用进程白名单策略。 | Write | - |
| |
hss:ars:showAppWhitelistPolicy | 授予权限以查询应用进程白名单策略信息。 | List | - |
| |
hss:ars:switchAppWhitelistPolicyHost | 授予权限以修改应用进程白名单策略防护状态。 | Write | host * | - |
|
- | |||||
hss:ars:addAppWhitelistPolicyHost | 授予权限以添加主机到应用进程白名单策略。 | Write | host * | - |
|
- | |||||
hss:ars:listAppWhitelistPolicyHost | 授予权限以查询应用进程白名单策略的主机列表。 | List | - |
| |
hss:ars:deleteAppWhitelistPolicyHost | 授予权限以删除应用进程白名单策略的主机。 | Write | host * | - |
|
- | |||||
hss:ars:listAppWhitelistHostStatus | 授予权限以查询应用进程白名单策略的可选服务器列表。 | List | - |
| |
hss:ars:listAppWhitelistPolicyProcess | 授予权限以查询应用进程白名单策略的进程列表。 | List | - |
| |
hss:ars:changeAppWhitelistPolicyProcessStatus | 授予权限以修改应用进程白名单策略的进程可信状态。 | Write | - |
| |
hss:ars:addAppWhitelistPolicyProcess | 授予权限以添加进程到应用进程白名单策略。 | Write | host * | - |
|
- | |||||
hss:ars:listAppWhitelistPolicyProcessExtend | 授予权限以查询应用进程白名单策略的进程扩展列表。 | List | host * | - |
|
- | |||||
hss:ars:exportAppWhitelistPolicyProcess | 授予权限以导出应用进程白名单策略的进程列表。 | List | host * | - |
|
- | |||||
hss:ars:switchAppWhitelistPolicyLearnStatus | 授予权限以修改应用进程白名单策略学习状态。 | Write | host * | - |
|
- | |||||
hss:ars:showAppWhitelistAgentStatics | 授予权限以查询不支持应用进程控制功能的旗舰版主机数量。 | List | - |
| |
hss:ars:listAppWhitelistEvent | 授予权限以查询应用进程控制的可疑进程事件列表。 | List | - |
| |
hss:container:deleteSelfBuildK8sClusterDaemonsetInfo | 授予权限以删除询自建集群daemonset。 | Write | - |
| |
hss:container:saveSelfBuildK8sClusterDaemonsetInfo | 授予权限以保存自建集群daemonset。 | Write | - |
| |
hss:container:showSelfBuildK8sClusterDaemonsetInfo | 授予权限以查询自建集群daemonset。 | Read | - |
| |
hss:container:listSelfBuildK8sClusterInfo | 授予权限以查询自建Kubernetes集群列表。 | List | - |
| |
hss:container:createDaemonset | 授予权限以创建CCE集群daemonset。 | Write | - |
| |
hss:vulnerability:listVulRepairCmds | 授予权限以查询漏洞修复命令。 | List | - |
| |
hss:vulnerability:listUrgentVulnerabilities | 授予权限以查询应急漏洞列表。 | List | - |
| |
hss:antivirus:createAntivirusTask | 授予权限以创建病毒查杀任务。 | Write | host * | - |
|
- | |||||
hss:antivirus:listAntivirusTask | 授予权限以查询病毒查杀任务列表。 | List | - |
| |
hss:antivirus:switchAntivirusTask | 授予权限以取消病毒查杀任务。 | Write | host * | - |
|
- | |||||
hss:antivirus:listAntivirusHost | 授予权限以查询病毒查杀可选服务器列表。 | List | - |
| |
hss:antivirus:createAntivirusPolicy | 授予权限以创建自定义查杀策略。 | Write | host * | - |
|
- | |||||
hss:antivirus:listAntivirusPolicy | 授予权限以查询自定义查杀策略列表。 | List | - |
| |
hss:antivirus:listAntivirusResult | 授予权限以查询病毒查杀结果列表。 | List | - |
| |
hss:antivirus:operateAntivirusResult | 授予权限以处置病毒查杀结果。 | Write | - |
| |
hss:antivirus:exportAntivirusResult | 授予权限以导出病毒查杀结果。 | Write | - |
| |
hss:antivirus:showAntivirusStatistic | 授予权限以查询病毒查杀统计信息。 | List | - |
| |
hss:image:showImageFullScanProgress | 授予权限以查询镜像全量扫描进展。 | List | - |
| |
hss:host:changeHostIgnoreStatus | 授予权限以忽略或取消忽略主机。 | Write | host * | - |
|
- | |||||
hss:host:listIgnoreHosts | 授予权限以查询已忽略主机。 | List | host * | - |
|
- | |||||
hss:image:batchExportBaselineTask | 授予权限以导出镜像基线检查结果。 | Write | - |
| |
hss:image:showImageSecurityReportStatistic | 授予权限以查询镜像安全报告导出统计。 | Write | - |
| |
hss:vulnerability:exportVuls | 授予权限以创建漏洞导出任务。 | Write | - |
| |
hss:exportTask:queryExportTask | 授予权限以查询导出任务。 | List | - |
| |
hss:file:downloadExportedFile | 授予权限以下载文件。 | List | - |
| |
hss:image:listGlobalVulnerabilities | 授予权限以查询租户的漏洞信息。 | List | - |
| |
hss:image:listVulnerabilityImages | 授予权限以查询单个漏洞影响的镜像仓库中的镜像信息。 | List | - |
| |
hss:setting:getPluginInstallScript | 授予权限以查询服务器安装的插件信息。 | List | - |
| |
hss:setting:getPluginList | 授予权限以查询插件安装指南信息。 | List | - |
| |
hss:setting:getAutoOpenQuotaStatus | 授予权限以查询自动绑定配额开关状态。 | Read | - |
| |
hss:setting:changeAutoOpenQuotaStatus | 授予权限以修改自动绑定配额开关状态。 | Write | - |
| |
hss:image:batchExportSWRVulTask | 授予权限以导出swr镜像漏洞结果。 | Write | - |
| |
hss:image:batchExportLocalVulTask | 授予权限以导出本地镜像漏洞结果。 | Write | - |
| |
hss:vulnerability:exportVulReport | 授予权限以导出html格式的漏洞报告。 | List | - |
| |
hss:vulnerability:getVulReportData | 授予权限以获取pdf漏洞报告的数据。 | List | - |
| |
hss:setting:getAgentAutoUpgradeStatus | 授予权限以查询agent自动升级开关状态。 | Read | - |
| |
hss:setting:changeAgentAutoUpgradeStatus | 授予权限以修改agent自动升级开关状态。 | Write | - |
| |
hss:quota:showProductdataOfferingInfos | 授予权限以查询商品信息。 | List | - |
| |
hss:image:listLocalImageAppInfo | 授予权限以查询本地镜像软件列表。 | List | - |
| |
hss:image:listLocalImageAppVulnerabilities | 授予权限以查询本地镜像单个软件漏洞列表。 | List | - |
| |
hss:antiransomware:getRansomwareProtectionStatus | 授予权限以查询勒索防护状态。 | List | - |
| |
hss:antiransomware:getAutoDeployAgentList | 授予权限以查询自动开启勒索防护的主机。 | List | - | - |
|
hss:antiransomware:updateAutoDeployAgent | 授予权限以更新自动开启勒索防护的主机。 | Write | - | - |
|
hss:vulnerability:getVulIndividualStatistics | 授予权限以查询漏洞指定统计数据。 | Read | - |
| |
hss:vulnerability:getVulAffectInfo | 授予权限以查询漏洞影响的主机信息或主机下的漏洞信息。 | Read | - |
| |
hss:event:deleteIsolatedFile | 授予权限以删除隔离箱文件。 | Write | host * | - |
|
- | |||||
hss:antivirus:listAntivirusHandleHistory | 授予权限以查询病毒查杀历史处置记录。 | List | - |
| |
hss:decoyport:showStatistics | 授予权限以查看端口蜜罐防护的统计信息。 | Read | - |
| |
hss:decoyport:showAutoBind | 授予权限以查看端口蜜罐的自动绑定状态。 | Read | - |
| |
hss:decoyport:switchAutoBind | 授予权限以修改端口蜜罐的自动绑定状态。 | Write | - |
| |
hss:decoyport:showHostList | 授予权限以查看端口蜜罐策略的防护主机列表。 | List | - |
| |
hss:decoyport:listPolicy | 授予权限以查看端口蜜罐的策略列表。 | List | - |
| |
hss:decoyport:listAvailableHost | 授予权限以查看支持开启端口蜜罐的主机列表。 | List | - |
| |
hss:decoyport:switchHostPolicy | 授予权限以切换主机的端口蜜罐防护策略。 | Write | - |
| |
hss:decoyport:deleteHostPolicy | 授予权限以关闭主机的端口蜜罐防护策略。 | Write | - |
| |
hss:decoyport:createPolicy | 授予权限以新增端口蜜罐策略。 | Write | - |
| |
hss:decoyport:modifyPolicy | 授予权限以编辑端口蜜罐防护策略。 | Write | - |
| |
hss:decoyport:showPolicyDetails | 授予权限以查看端口蜜罐策略详情。 | Read | - |
| |
hss:decoyport:deletePolicy | 授予权限以删除端口蜜罐策略。 | Write | - |
| |
hss:decoyport:switchPolicy | 授予权限以启用或关闭端口蜜罐策略。 | Write | - |
| |
hss:exportTask:queryLatestExportTaskByType | 授予权限以查询最近导出任务。 | Read | - |
| |
hss:container:createSecurityGroupPolicy | 授予权限以创建安全组策略。 | Write | - |
| |
hss:container:updateSecurityGroupPolicy | 授予权限以更新安全组策略。 | Write | - |
| |
hss:container:getSecurityGroupPolicyList | 授予权限以查询安全组策略列表。 | List | - |
| |
hss:container:deleteSecurityGroupPolicy | 授予权限以删除安全组策略。 | Write | - |
| |
hss:container:syncSecurityGroupPolicy | 授予权限以同步集群下安全组策略。 | Read | - |
| |
hss:container:getWorkloadList | 授予权限以查询工作负载列表。 | List | - |
| |
hss:container:getSecurityGroupList | 授予权限以查询安全组列表。 | List | - |
|
HSS的API通常对应着一个或多个授权项。表2展示了API与授权项的关系,以及该API需要依赖的授权项。
API | 对应的授权项 | 依赖的授权项 |
|---|---|---|
POST /v5/{project_id}/host-management/groups | hss:host:addHostsGroup | eps:enterpriseProjects:list |
PUT /v5/{project_id}/pwl/{policy_id}/host | hss:ars:addPWLPolicyHost | eps:enterpriseProjects:list |
POST /v5/{project_id}/rasp/policy | hss:rasp:addRaspPolicy | eps:enterpriseProjects:list |
POST /v5/{project_id}/report/security-report | hss:safetyReport:addSecurityReport | eps:enterpriseProjects:list |
POST /v5/{project_id}/wtp/{host_id}/timing-off-config | hss:wtp:addTimingOffConfigInfo | eps:enterpriseProjects:list |
POST /v5/{project_id}/wtp/{host_id}/protect-directories | hss:wtp:addWtpHostProtectDirInfo | eps:enterpriseProjects:list |
POST /v5/{project_id}/wtp/{host_id}/privileged-process | hss:wtp:addWtpPrivilegedProcessInfo | eps:enterpriseProjects:list |
POST /v5/{project_id}/setting/virus-kill | hss:setting:changeAutoKillVirusStatus | eps:enterpriseProjects:list |
PUT /v5/{project_id}/event/blocked-ip | hss:event:changeBlockedIp | eps:enterpriseProjects:list |
PUT /v5/{project_id}/setting/malware/collect | hss:setting:changeMalwareCollectStatus | eps:enterpriseProjects:list |
POST /v5/{project_id}/pwl/policy | hss:ars:changePWLPolicy | eps:enterpriseProjects:list |
POST /v5/{project_id}/pwl/{policy_id}/process | hss:ars:changePWLPolicyProcessStatus | eps:enterpriseProjects:list |
PUT /v5/{project_id}/report/security-report | hss:safetyReport:changeSecurityReport | eps:enterpriseProjects:list |
PUT /v5/{project_id}/pwl/policy | hss:ars:createPWLPolicy | eps:enterpriseProjects:list |
DELETE /v5/{project_id}/pwl/policy | hss:ars:deletePWLPolicy | eps:enterpriseProjects:list |
DELETE /v5/{project_id}/pwl/{policy_id}/host | hss:ars:deletePWLPolicyHost | eps:enterpriseProjects:list |
DELETE /v5/{project_id}/ransomware/duplication/{backup_id} | hss:antiransomware:deleteRansomwareDuplicationInfo | eps:enterpriseProjects:list |
DELETE /v5/{project_id}/ransomware/protection/policy | hss:antiransomware:deleteRansomwareProtectionPolicy | eps:enterpriseProjects:list |
DELETE /v5/{project_id}/rasp/policy | hss:rasp:deleteRaspPolicy | eps:enterpriseProjects:list |
DELETE /v5/{project_id}/report/security-report | hss:safetyReport:deleteSecurityReport | eps:enterpriseProjects:list |
DELETE /v5/{project_id}/wtp/{host_id}/timing-off-config | hss:wtp:deleteTimingOffConfigInfo | eps:enterpriseProjects:list |
DELETE /v5/{project_id}/wtp/{host_id}/protect-directories | hss:wtp:deleteWtpHostProtectDirInfo | eps:enterpriseProjects:list |
DELETE /v5/{project_id}/wtp/{host_id}/privileged-process | hss:wtp:deleteWtpPrivilegedProcessInfo | eps:enterpriseProjects:list |
GET /v5/{project_id}/setting/agent-install-script | hss:setting:getAgentInstallScript | eps:enterpriseProjects:list |
GET /v5/{project_id}/setting/alarm-config | hss:setting:getAlarmConfig | eps:enterpriseProjects:list |
GET /v5/{project_id}/rasp/{host_id}/status | hss:rasp:getAppRaspSwitchStatus | eps:enterpriseProjects:list |
GET /v5/{project_id}/setting/virus-kill | hss:setting:getAutoKillVirusStatus | eps:enterpriseProjects:list |
GET /v5/{project_id}/container/node-statistics | hss:container:getContainerNodeStatistics | eps:enterpriseProjects:list |
GET /v5/{project_id}/files/statistic | hss:keyfile:getFileStatistic | eps:enterpriseProjects:list |
GET /v5/{project_id}/setting/malware/collect | hss:setting:getMalwareCollectStatus | eps:enterpriseProjects:list |
GET /v5/{project_id}/setting/malware/reminders | hss:setting:getMalwareReminders | eps:enterpriseProjects:list |
GET /v5/{project_id}/security-check/manual-check/status | hss:securitycheck:getManualSecurityCheckStatus | eps:enterpriseProjects:list |
GET /v5/{project_id}/overview/asset/groups/statistics | hss:overview:getOverviewAssetGroupsStatistics | eps:enterpriseProjects:list |
GET /v5/{project_id}/overview/asset/os/statistics | hss:overview:getOverviewAssetOsStatistics | eps:enterpriseProjects:list |
GET /v5/{project_id}/overview/asset/statistics | hss:overview:getOverviewAssetStatistics | eps:enterpriseProjects:list |
GET /v5/{project_id}/overview/risk/attck-mitre | hss:overview:getOverviewAttckMitre | eps:enterpriseProjects:list |
GET /v5/{project_id}/overview/risk/defense/statistics | hss:overview:getOverviewDefenseStatistics | eps:enterpriseProjects:list |
GET /v5/{project_id}/overview/risk/protection/statistics | hss:overview:getOverviewProtectionStatusStatistics | eps:enterpriseProjects:list |
GET /v5/{project_id}/overview/quota/statistics | hss:overview:getOverviewQuotaStatistics | eps:enterpriseProjects:list |
GET /v5/{project_id}/overview/risk/lists | hss:overview:getOverviewRiskLists | eps:enterpriseProjects:list |
GET /v5/{project_id}/overview/risk/manage/statistics | hss:overview:getOverviewRiskManageStatistics | eps:enterpriseProjects:list |
GET /v5/{project_id}/overview/risk/score | hss:overview:getOverviewRiskScore | eps:enterpriseProjects:list |
GET /v5/{project_id}/overview/risk/event/statistics | hss:overview:getOverviewRiskStatistics | eps:enterpriseProjects:list |
GET /v5/{project_id}/overview/trial/statistic | hss:overview:getOverviewTrialsStatistics | eps:enterpriseProjects:list |
GET /v5/{project_id}/ransomware/backup/{backup_id}/detail | hss:antiransomware:getRansomwareBackupInfoByBackupId | eps:enterpriseProjects:list |
GET /v5/{project_id}/backup/policy | hss:antiransomware:getRansomwareHSSBackupPolicyInfo | eps:enterpriseProjects:list |
GET /v5/{project_id}/ransomware/statistics/backup | hss:antiransomware:getRansomwareBackupStatistics | eps:enterpriseProjects:list |
GET /v5/{project_id}/ransomware/statistics/protection | hss:antiransomware:getRansomwareProtectionStatistics | eps:enterpriseProjects:list |
GET /v5/{project_id}/ransomware/backup/vault | hss:antiransomware:getRansomwareVaultInfo | eps:enterpriseProjects:list |
GET /v5/{project_id}/rasp/policy/detail | hss:rasp:getRaspPolicyDetail | eps:enterpriseProjects:list |
GET /v5/{project_id}/rasp/statistics | hss:rasp:getRaspProtectStatistics | eps:enterpriseProjects:list |
GET /v5/{project_id}/wtp/{host_id}/rasp/status | hss:wtp:getRaspSwitchStatus | eps:enterpriseProjects:list |
GET /v5/{project_id}/security-check/config | hss:securitycheck:getSecurityCheckConfig | eps:enterpriseProjects:list |
GET /v5/{project_id}/security-check/host-report/{host_id} | hss:securitycheck:getSecurityCheckHostReport | eps:enterpriseProjects:list |
GET /v5/{project_id}/security-check/overview | hss:securitycheck:getSecurityCheckOverview | eps:enterpriseProjects:list |
GET /v5/{project_id}/security-check/statistic | hss:securitycheck:getSecurityCheckStatistic | eps:enterpriseProjects:list |
GET /v5/{project_id}/report/security-report | hss:safetyReport:getSecurityReport | eps:enterpriseProjects:list |
GET /v5/{project_id}/report/report-subscription | hss:safetyReport:getSecurityReportSubscription | eps:enterpriseProjects:list |
GET /v5/{project_id}/wtp/{host_id}/timing-off/status | hss:wtp:getTimingOffStatusInfo | eps:enterpriseProjects:list |
GET /v5/{project_id}/wtp/statistics | hss:wtp:getWtpDashboardProtectStatistics | eps:enterpriseProjects:list |
GET /v5/{project_id}/wtp/{host_id}/rasp_path | hss:wtp:getWtpDirectory | eps:enterpriseProjects:list |
GET /v5/{project_id}/wtp/{host_id}/monitor-only/status | hss:wtp:getWtpDirectoryMonitorOnlyStatus | eps:enterpriseProjects:list |
GET /v5/{project_id}/webtamper/static/{host_id}/privileged-child/status | hss:wtp:getWtpPrivilegedProcessesChildStatus | eps:enterpriseProjects:list |
GET /v5/{project_id}/wtp/{host_id}/backup-host | hss:wtp:getWtpRemoteBackupHostInfo | eps:enterpriseProjects:list |
GET /v5/{project_id}/setting/agent-version | hss:setting:listAgentVersion | eps:enterpriseProjects:list |
GET /v5/{project_id}/container/nodes | hss:container:listContainerNodes | eps:enterpriseProjects:list |
GET /v5/{project_id}/files/change-files | hss:keyfile:listFileEvents | eps:enterpriseProjects:list |
GET /v5/{project_id}/{host_id}/files/change-files | hss:keyfile:listFileHostEventDetails | eps:enterpriseProjects:list |
GET /v5/{project_id}/files/change-host | hss:keyfile:listFileHosts | eps:enterpriseProjects:list |
GET /v5/{project_id}/host-management/groups | hss:host:listHostGroups | eps:enterpriseProjects:list |
GET /v5/{project_id}/setting/login-common-ip | hss:setting:listLoginCommonIp | eps:enterpriseProjects:list |
GET /v5/{project_id}/setting/login-common-location | hss:setting:listLoginCommonLocation | eps:enterpriseProjects:list |
GET /v5/{project_id}/setting/login-white-ip | hss:setting:listLoginWhiteIp | eps:enterpriseProjects:list |
GET /v5/{project_id}/policy/groups | hss:policy:listPolicyGroup | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/ports/detail | hss:asset:listPortHost | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/processes/detail | hss:asset:listProcessesHost | eps:enterpriseProjects:list |
GET /v5/{project_id}/pwl/event | hss:ars:listPWLEvent | eps:enterpriseProjects:list |
GET /v5/{project_id}/pwl/policy | hss:ars:listPwlPolicy | eps:enterpriseProjects:list |
GET /v5/{project_id}/pwl/{policy_id}/host | hss:ars:listPwlPolicyHost | eps:enterpriseProjects:list |
GET /v5/{project_id}/pwl/{policy_id}/process | hss:ars:listPwlPolicyProcess | eps:enterpriseProjects:list |
GET /v5/{project_id}/ransomware/backup/{host_id} | hss:antiransomware:listRansomwareBackedupByHostId | eps:enterpriseProjects:list |
GET /v5/{project_id}/ransomware/backup/operation-logs | hss:antiransomware:listRansomwareOperationLogsByVaultName | eps:enterpriseProjects:list |
GET /v5/{project_id}/ransomware/optional/server | hss:antiransomware:listRansomwareProtectionOptionalServer | eps:enterpriseProjects:list |
GET /v5/{project_id}/ransomware/protection/policy | hss:antiransomware:listRansomwareProtectionPolicy | eps:enterpriseProjects:list |
GET /v5/{project_id}/ransomware/server | hss:antiransomware:listRansomwareProtectionServer | eps:enterpriseProjects:list |
GET /v5/{project_id}/rasp/rule | hss:rasp:listRaspCheckFeatureRule | eps:enterpriseProjects:list |
GET /v5/{project_id}/rasp/events | hss:rasp:listRaspEvents | eps:enterpriseProjects:list |
GET /v5/{project_id}/rasp/policies | hss:rasp:listRaspPolicies | eps:enterpriseProjects:list |
GET /v5/{project_id}/rasp/servers | hss:rasp:listRaspProtectionServers | eps:enterpriseProjects:list |
GET /v5/{project_id}/security-check/host-report/history/{host_id} | hss:securitycheck:listSecurityCheckHostReportHistory | eps:enterpriseProjects:list |
GET /v5/{project_id}/security-check/host-results | hss:securitycheck:listSecurityCheckHostResult | eps:enterpriseProjects:list |
GET /v5/{project_id}/report/report-list | hss:safetyReport:listSecurityReport | eps:enterpriseProjects:list |
GET /v5/{project_id}/report/period-list | hss:safetyReport:listSecurityReportHistoryPeriod | eps:enterpriseProjects:list |
GET /v5/{project_id}/report/sending-list | hss:safetyReport:listSecurityReportSendingRecord | eps:enterpriseProjects:list |
GET /v5/{project_id}/wtp/{host_id}/timing-off-config | hss:wtp:listTimingOffConfigInfo | eps:enterpriseProjects:list |
GET /v5/{project_id}/setting/two-factor-login/hosts | hss:setting:listTwoFactorLoginHost | eps:enterpriseProjects:list |
GET /v5/{project_id}/wtp/backup-hosts | hss:wtp:listWtpBackupHostsInfo | eps:enterpriseProjects:list |
GET /v5/{project_id}/wtp/{host_id}/protect-directories | hss:wtp:listWtpHostProtectDirInfo | eps:enterpriseProjects:list |
GET /v5/{project_id}/webtamper/static/protect-history | hss:wtp:listWtpHostProtectHistoryInfo | eps:enterpriseProjects:list |
GET /v5/{project_id}/webtamper/rasp/protect-history | hss:wtp:listWtpHostRaspProtectHistoryInfo | eps:enterpriseProjects:list |
GET /v5/{project_id}/wtp/{host_id}/privileged-process | hss:wtp:listWtpPrivilegedProcessesInfo | eps:enterpriseProjects:list |
GET /v5/{project_id}/webtamper/hosts | hss:wtp:listWtpProtectHost |
|
POST /v5/{project_id}/setting/login-common-ip | hss:setting:modifyLoginCommonIp | eps:enterpriseProjects:list |
POST /v5/{project_id}/setting/login-common-location | hss:setting:modifyLoginCommonLocation | eps:enterpriseProjects:list |
POST /v5/{project_id}/setting/login-white-ip | hss:setting:modifyLoginWhiteIp | eps:enterpriseProjects:list |
POST /v5/{project_id}/pwl/event/operate | hss:ars:operatePWLEvent | eps:enterpriseProjects:list |
POST /v5/{project_id}/pwl/{policy_id}/relearn | hss:ars:relearnPWLPolicy | eps:enterpriseProjects:list |
PUT /v5/{project_id}/overview/risk/score | hss:overview:resetOverviewRiskScore | eps:enterpriseProjects:list |
POST /v5/{project_id}/ransomware/duplication/{backup_id}/restore | hss:antiransomware:restoreRansomwareDuplicationInfo | eps:enterpriseProjects:list |
POST /v5/{project_id}/report/sending | hss:safetyReport:sendSecurityReport | eps:enterpriseProjects:list |
PUT /v5/{project_id}/setting/reminders-config | hss:setting:setAlarmConfig | eps:enterpriseProjects:list |
PUT /v5/{project_id}/setting/malware/reminders | hss:setting:setMalwareReminders | eps:enterpriseProjects:list |
POST /v5/{project_id}/wtp/{host_id}/set-remote-backup | hss:wtp:setRemoteWtpBackupInfo | eps:enterpriseProjects:list |
POST /v5/{project_id}/wtp/{host_id}/timing-off/status | hss:wtp:setTimingOffSwitchInfo | eps:enterpriseProjects:list |
PUT /v5/{project_id}/setting/two-factor-login/config | hss:setting:setTwoFactorLoginConfig | eps:enterpriseProjects:list |
POST /v5/{project_id}/wtp/{host_id}/monitor-only/status | hss:wtp:setWtpDirectoryMonitorOnlyStatus | eps:enterpriseProjects:list |
POST /v5/{project_id}/webtamper/static/{host_id}/privileged-child/status | hss:wtp:setWtpPrivilegedProcessesChildStatus | eps:enterpriseProjects:list |
POST /v5/{project_id}/webtamper/static/status | hss:wtp:setWtpProtectionStatusInfo | eps:enterpriseProjects:list |
POST /v5/{project_id}/webtamper/rasp/status | hss:wtp:setWtpProtectSwitch | eps:enterpriseProjects:list |
PUT /v5/{project_id}/wtp/{host_id}/date-off-config | hss:wtp:setWtpScheduledProtectionDateOffConfigInfo | eps:enterpriseProjects:list |
POST /v5/{project_id}/security-check/manual-check/start | hss:securitycheck:startManualSecurityCheck | eps:enterpriseProjects:list |
POST /v5/{project_id}/ransomware/backup/open/{host_id} | hss:antiransomware:startRansomwareBackupSingle | eps:enterpriseProjects:list |
POST /v5/{project_id}/ransomware/protection/open | hss:antiransomware:startRansomwareProtection | eps:enterpriseProjects:list |
POST /v5/{project_id}/ransomware/protection/open/{host_id} | hss:antiransomware:startRansomwareProtectionSingle | eps:enterpriseProjects:list |
POST /v5/{project_id}/security-check/manual-check/stop | hss:securitycheck:stopManualSecurityCheck | eps:enterpriseProjects:list |
POST /v5/{project_id}/ransomware/protection/close | hss:antiransomware:stopRansomwareProtection | eps:enterpriseProjects:list |
POST /v5/{project_id}/container/switch-version | hss:container:switchContainerProtectStatus | eps:enterpriseProjects:list |
POST /v5/{project_id}/pwl/{policy_id}/host | hss:ars:switchPWLPolicyHost | eps:enterpriseProjects:list |
PUT /v5/{project_id}/rasp/status | hss:rasp:switchRasp | eps:enterpriseProjects:list |
POST /v5/{project_id}/report/report-status | hss:safetyReport:switchSecurityReportStatus | eps:enterpriseProjects:list |
POST /v5/{project_id}/wtp/{host_id}/protect-directories/status | hss:wtp:switchWtpHostProtectDirInfo | eps:enterpriseProjects:list |
POST /v5/{project_id}/host-management/uninstall | hss:host:uninstallAgents | eps:enterpriseProjects:list |
PUT /v5/{project_id}/setting/alarm-config | hss:setting:updateAlarmConfig | eps:enterpriseProjects:list |
PUT /v5/{project_id}/backup/policy | hss:antiransomware:updateRansomwareBackupPolicyInfo | eps:enterpriseProjects:list |
PUT /v5/{project_id}/ransomware/protection/policy | hss:antiransomware:updateRansomwareProtectionPolicy | eps:enterpriseProjects:list |
PUT /v5/{project_id}/rasp/policy | hss:rasp:updateRaspPolicy | eps:enterpriseProjects:list |
POST /v5/{project_id}/security-check/config | hss:securitycheck:updateSecurityCheckConfig | eps:enterpriseProjects:list |
PUT /v5/{project_id}/wtp/{host_id}/timing-off-config | hss:wtp:updateTimingOffConfigInfo | eps:enterpriseProjects:list |
PUT /v5/{project_id}/wtp/backup-hosts | hss:wtp:updateWtpBackupHostInfo | eps:enterpriseProjects:list |
PUT /v5/{project_id}/wtp/{host_id}/rasp_path | hss:wtp:updateWtpDirectoryInfo | eps:enterpriseProjects:list |
PUT /v5/{project_id}/wtp/{host_id}/protect-directories | hss:wtp:updateWtpHostProtectDirInfo | eps:enterpriseProjects:list |
PUT /v5/{project_id}/wtp/{host_id}/privileged-process | hss:wtp:updateWtpPrivilegedProcessInfo | eps:enterpriseProjects:list |
POST /v5/{project_id}/asset/values/host | hss:asset:addValuesLevel | eps:enterpriseProjects:list |
POST /v5/{project_id}/asset/batch-modify-port-status | hss:asset:batchModifyPortStatus | eps:enterpriseProjects:list |
DELETE /v5/{project_id}/investigation/tool/condition-history | hss:asset:deleteToolConditionHistory | eps:enterpriseProjects:list |
POST /v5/{project_id}/investigation/tool/execute | hss:asset:executeTool | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/overview/statistics/top/account | hss:asset:getAccountTop | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/overview/status/agent | hss:asset:getAgentStatisticsStatus | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/statistics | hss:asset:getAssetStatistic | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/overview/status/type | hss:asset:getAssetType | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/overview/statistics/top/auto-launch | hss:asset:getAutoLaunchTop | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/common-port-info | hss:asset:getCommonPort | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/overview/status/container/protection | hss:asset:getContainerProtectionStatus | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/overview/statistics/top/core-conf-file | hss:asset:getCoreConfFileTop | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/overview/statistics/top/environment | hss:asset:getEnvironmentTop | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/manual-collect/{type} | hss:asset:getHostAssetManualCollectStatus | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/overview/status/host/protection | hss:asset:getHostProtectionStatus | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/overview/statistics/top/jar-package | hss:asset:getJarPackageTop | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/overview/statistics/top/kernel-module | hss:asset:getKernelModuleTop | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/overview/status/os | hss:asset:getOsStatisticsInfo | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/overview/statistics/top/process | hss:asset:getPorcessTop | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/overview/statistics/top/port | hss:asset:getPortTop | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/overview/status/quota | hss:asset:getQuotaStatisticsInfo | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/overview/statistics/top/software | hss:asset:getSoftwareTop | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/overview/statistics/top/web-app-and-service | hss:asset:getWebAppAndServiceTop | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/overview/statistics/top/web-app | hss:asset:getWebAppTop | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/overview/statistics/top/web-framework | hss:asset:getWebFrameworkTop | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/overview/statistics/top/web-service | hss:asset:getWebServiceTop | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/overview/statistics/top/web-site | hss:asset:getWebSiteTop | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/app/change-history | hss:asset:listAppChangeHistories | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/apps | hss:asset:listApps | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/app/statistics | hss:asset:listAppStatistics | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/auto-launch/change-history | hss:asset:listAutoLaunchChangeHistories | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/auto-launchs | hss:asset:listAutoLaunchs | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/auto-launch/statistics | hss:asset:listAutoLaunchStatistics | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/host/core-conf-file | hss:asset:listCoreConfFileHostInfo | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/{host_id}/core-conf-file | hss:asset:listCoreConfFileInfo | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/statistics/core-conf-file | hss:asset:listCoreConfFileStatistics | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/host/environment | hss:asset:listEnvironmentHostInfo | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/{host_id}/environment | hss:asset:listEnvironmentInfo | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/statistics/environment | hss:asset:listEnvironmentStatistics | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/midwares/detail | hss:asset:listJarPackageHostInfo | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/{host_id}/jar-package | hss:asset:listJarPackageInfo | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/midwares | hss:asset:listJarPackageStatistics | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/host/kernel-module | hss:asset:listKernelModuleHostInfo | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/{host_id}/kernel-module | hss:asset:listKernelModuleInfo | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/statistics/kernel-module | hss:asset:listKernelModuleStatistics | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/ports | hss:asset:listPorts | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/port/statistics | hss:asset:listPortStatistics | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/processes | hss:asset:listProcesses | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/process/statistics | hss:asset:listProcessStatistics | eps:enterpriseProjects:list |
GET /v5/{project_id}/investigation/tool/result | hss:asset:listResult | eps:enterpriseProjects:list |
GET /v5/{project_id}/investigation/tool/list | hss:asset:listTool | eps:enterpriseProjects:list |
GET /v5/{project_id}/investigation/tool/condition-history | hss:asset:listToolConditionHistory | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/user/change-history | hss:asset:listUserChangeHistories | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/userGroup | hss:asset:listUserGroup | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/users | hss:asset:listUsers | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/user/statistics | hss:asset:listUserStatistics | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/web-app-and-services | hss:asset:listWebAppAndServices | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/web-app-and-service-statistics | hss:asset:listWebAppAndServiceStatistics | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/host/web-app | hss:asset:listWebAppHostInfo | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/{host_id}/web-app | hss:asset:listWebAppInfo | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/statistics/web-app | hss:asset:listWebAppStatistics | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/host/web-framework | hss:asset:listWebFrameworkHostInfo | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/{host_id}/web-framework | hss:asset:listWebFrameworkInfo | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/statistics/web-framework | hss:asset:listWebFrameworkStatistics | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/host/web-service | hss:asset:listWebServiceHostInfo | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/{host_id}/web-service | hss:asset:listWebServiceInfo | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/statistics/web-service | hss:asset:listWebServiceStatistics | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/host/web-site | hss:asset:listWebSiteHostInfo | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/{host_id}/web-site | hss:asset:listWebSiteInfo | eps:enterpriseProjects:list |
GET /v5/{project_id}/asset/statistics/web-site | hss:asset:listWebSiteStatistics | eps:enterpriseProjects:list |
POST /v5/{project_id}/asset/manual-collect/{type} | hss:asset:runHostAssetManualCollect | eps:enterpriseProjects:list |
POST /v5/{project_id}/baseline/security-checks/policy-group/add | hss:baseline:addSecurityCheckPolicyGroup | eps:enterpriseProjects:list |
PUT /v5/{project_id}/baseline/check-rule/action | hss:baseline:changeCheckRuleState | eps:enterpriseProjects:list |
DELETE /v5/{project_id}/baseline/security-checks/policy-group/{group_id} | hss:baseline:deleteSecurityCheckPolicyGroup | eps:enterpriseProjects:list |
GET /v5/{project_id}/baseline/risk-config/export | hss:baseline:exportSecurityCheckReport | eps:enterpriseProjects:list |
GET /v5/{project_id}/baseline/overview | hss:baseline:getBaselineOverview | eps:enterpriseProjects:list |
GET /v5/{project_id}/baseline/scan-status | hss:baseline:getBaselineScanStatus | eps:enterpriseProjects:list |
GET /v5/{project_id}/baseline/statistic | hss:baseline:getBaselineStatistic | eps:enterpriseProjects:list |
GET /v5/{project_id}/baseline/check-rule/detail | hss:baseline:getCheckRuleDetail | eps:enterpriseProjects:list |
GET /v5/{project_id}/baseline/check-rule/fail-detail | hss:baseline:getCheckRuleFixFailDetail | eps:enterpriseProjects:list |
GET /v5/{project_id}/baseline/security-checks/default-policy | hss:baseline:getDefaultSecurityCheckPolicy | eps:enterpriseProjects:list |
GET /v5/{project_id}/baseline/security-checks/default-policy/details | hss:baseline:getDefaultSecurityCheckPolicyDetails | eps:enterpriseProjects:list |
GET /v5/{project_id}/baseline/risk-config/{check_name}/detail | hss:baseline:getRiskConfigDetail | eps:enterpriseProjects:list |
GET /v5/{project_id}/baseline/check-rule/hosts | hss:baseline:listCheckRuleHost | eps:enterpriseProjects:list |
GET /v5/{project_id}/baseline/password-complexity | hss:baseline:listPasswordComplexity | eps:enterpriseProjects:list |
GET /v5/{project_id}/baseline/risk-config/{check_name}/check-rules | hss:baseline:listRiskConfigCheckRules | eps:enterpriseProjects:list |
GET /v5/{project_id}/baseline/risk-config/{check_name}/hosts | hss:baseline:listRiskConfigHosts | eps:enterpriseProjects:list |
GET /v5/{project_id}/baseline/risk-configs | hss:baseline:listRiskConfigs | eps:enterpriseProjects:list |
GET /v5/{project_id}/baseline/security-checks/policy-groups | hss:baseline:listSecurityCheckPolicyGroup | eps:enterpriseProjects:list |
GET /v5/{project_id}/baseline/weak-password-users | hss:baseline:listWeakPasswordUsers | eps:enterpriseProjects:list |
GET /v5/{project_id}/baseline/detection/{group_id} | hss:baseline:runBaselineDetect | eps:enterpriseProjects:list |
POST /v5/{project_id}/baseline/security-checks/policy-group/{group_id} | hss:baseline:updateSecurityCheckPolicyGroup | eps:enterpriseProjects:list |
POST /v5/{project_id}/event/white-list/login | hss:event:addLoginWhiteList | eps:enterpriseProjects:list |
POST /v5/{project_id}/event/batch-operate | hss:event:batchChangeEvent | eps:enterpriseProjects:list |
POST /v5/{project_id}/event/operate | hss:event:changeEvent | eps:enterpriseProjects:list |
PUT /v5/{project_id}/event/isolated-file | hss:event:changeIsolatedFile | eps:enterpriseProjects:list |
GET /v5/{project_id}/event/white-list/export | hss:event:exportAlarmWhiteList | eps:enterpriseProjects:list |
POST /v5/{project_id}/emergency/event/export | hss:event:exportEmergency | eps:enterpriseProjects:list |
GET /v5/{project_id}/emergency/event/emergency-statistics | hss:event:getEmergencyStatistics | eps:enterpriseProjects:list |
GET /v5/{project_id}/event/attack-tag | hss:event:getEventAttackTag | eps:enterpriseProjects:list |
GET /v5/{project_id}/event/severity | hss:event:getEventSeverity | eps:enterpriseProjects:list |
GET /v5/{project_id}/event/statistics | hss:event:getEventStatistics | eps:enterpriseProjects:list |
GET /v5/{project_id}/emergency/event/event-detail | hss:event:getMalwareInfo | eps:enterpriseProjects:list |
POST /v5/{project_id}/emergency/event/handle-malware-event | hss:event:handleMalwareEvent | eps:enterpriseProjects:list |
POST /v5/{project_id}/event/white-list/import | hss:event:importAlarmWhiteList | eps:enterpriseProjects:list |
POST /v5/{project_id}/emergency/event/isolate-operate | hss:event:isolateOperateEmergency | eps:enterpriseProjects:list |
GET /v5/{project_id}/event/white-list/alarm | hss:event:listAlarmWhiteList | eps:enterpriseProjects:list |
GET /v5/{project_id}/event/blocked-ip | hss:event:listBlockedIp | eps:enterpriseProjects:list |
GET /v5/{project_id}/event/batch-operate | hss:event:listEventOperates | eps:enterpriseProjects:list |
GET /v5/{project_id}/event/top-risk | hss:event:listEventTopRisk | eps:enterpriseProjects:list |
GET /v5/{project_id}/event/event-type | hss:event:listEventType | eps:enterpriseProjects:list |
GET /v5/{project_id}/emergency/event/file-isolate-list | hss:event:listFileIsolateList | eps:enterpriseProjects:list |
GET /v5/{project_id}/event/isolated-file | hss:event:listIsolatedFile | eps:enterpriseProjects:list |
GET /v5/{project_id}/event/white-list/login | hss:event:listLoginWhiteList | eps:enterpriseProjects:list |
GET /v5/{project_id}/emergency/event/event-list | hss:event:listMalware | eps:enterpriseProjects:list |
GET /v5/{project_id}/event/events | hss:event:listSecurityEvents | eps:enterpriseProjects:list |
POST /v5/{project_id}/emergency/event/recover-isolate-file | hss:event:recoverIsolateFile | eps:enterpriseProjects:list |
DELETE /v5/{project_id}/event/white-list/alarm | hss:event:removeAlarmWhiteList | eps:enterpriseProjects:list |
DELETE /v5/{project_id}/event/white-list/login | hss:event:removeLoginWhiteList | eps:enterpriseProjects:list |
PUT /v5/{project_id}/host-management/asset-value/associate | hss:host:associateHostAssetValue | eps:enterpriseProjects:list |
POST /v5/{project_id}/host-management/group/associate | hss:host:associateHostsGroup | eps:enterpriseProjects:list |
POST /v5/{project_id}/setting/batch-install-agent | hss:host:batchInstallAgent |
|
PUT /v5/{project_id}/host-management/groups | hss:host:changeHostsGroup | eps:enterpriseProjects:list |
DELETE /v5/{project_id}/host-management/groups | hss:host:deleteHostsGroup | eps:enterpriseProjects:list |
GET /v5/{project_id}/host-management/host-statistics | hss:host:getHostsStatistics | eps:enterpriseProjects:list |
GET /v5/{project_id}/host-management/firewall | hss:host:listFirewallStatus | eps:enterpriseProjects:list |
GET /v5/{project_id}/host-management/asset-value | hss:host:listHostGroupAssetValue | eps:enterpriseProjects:list |
GET /v5/{project_id}/host-management/hosts-risk | hss:host:listHostsRisk |
|
GET /v5/{project_id}/host-management/hosts | hss:host:listHostStatus |
|
GET /v5/{project_id}/upgrade/agent-upgrade | hss:host:listHostsUpgrade | eps:enterpriseProjects:list |
POST /v5/{project_id}/vulnerability/scan-task | hss:host:manualCheckVul | eps:enterpriseProjects:list |
POST /v5/{project_id}/host-management/firewall | hss:host:switchFirewallStatus | eps:enterpriseProjects:list |
POST /v5/{project_id}/host-management/protection | hss:host:switchHostsProtectStatus | eps:enterpriseProjects:list |
POST /v5/{project_id}/upgrade/agent-upgrade | hss:host:upgradeAgent | eps:enterpriseProjects:list |
POST /v5/{project_id}/host-management/upgrade | hss:host:upgradeAgents | eps:enterpriseProjects:list |
POST /v5/{project_id}/image/local/batch-scan | hss:image:batchScanLocalImage | eps:enterpriseProjects:list |
GET /v5/{project_id}/image/{image_id}/files-statistics | hss:image:getImageFilesStat | eps:enterpriseProjects:list |
GET /v5/{project_id}/image/local/vul/overview | hss:image:getImageLocalVulOverview | eps:enterpriseProjects:list |
GET /v5/{project_id}/image/vul/overview | hss:image:getImageVulOverview | eps:enterpriseProjects:list |
GET /v5/{project_id}/image/baseline/affected | hss:image:listCfgCheckAffectedImage | eps:enterpriseProjects:list |
GET /v5/{project_id}/image/baseline | hss:image:listGlobalCfgCheck | eps:enterpriseProjects:list |
GET /v5/{project_id}/image/malwares | hss:image:listGlobalMalware | eps:enterpriseProjects:list |
GET /v5/{project_id}/image/vuls | hss:image:listGlobalVul | eps:enterpriseProjects:list |
GET /v5/{project_id}/image/{image_id}/apps | hss:image:listImageApps | eps:enterpriseProjects:list |
GET /v5/{project_id}/image/{image_id}/app/vuls | hss:image:listImageAppVul | eps:enterpriseProjects:list |
GET /v5/{project_id}/image/{image_id}/baseline | hss:image:listImageCfgCheck | eps:enterpriseProjects:list |
GET /v5/{project_id}/image/{image_id}/files | hss:image:listImageFiles | eps:enterpriseProjects:list |
GET /v5/{project_id}/image/local-repository | hss:image:listImageLocal | eps:enterpriseProjects:list |
GET /v5/{project_id}/image/{image_id}/malwares | hss:image:listImageMalware | eps:enterpriseProjects:list |
GET /v5/{project_id}/image/namespace | hss:image:listImageNamespace | eps:enterpriseProjects:list |
GET /v5/{project_id}/image/repos | hss:image:listImageRepository | eps:enterpriseProjects:list |
GET /v5/{project_id}/instance/{instance_id}/image/vuls | hss:image:listInstanceImageVul | eps:enterpriseProjects:list |
GET /v5/{project_id}/image/local/containers | hss:image:listLocalImageContainers | eps:enterpriseProjects:list |
GET /v5/{project_id}/image/local/hosts | hss:image:listLocalImageHosts | eps:enterpriseProjects:list |
GET /v5/{project_id}/image/local/malware | hss:image:listLocalImageMalware | eps:enterpriseProjects:list |
GET /v5/{project_id}/image/local/vuls | hss:image:listLocalImageVuls | eps:enterpriseProjects:list |
GET /v5/{project_id}/image/local/{vul_id}/images | hss:image:listLocalVulRepoImage | eps:enterpriseProjects:list |
GET /v5/{project_id}/image/shared-repository | hss:image:listSharedImageRepository | eps:enterpriseProjects:list |
GET /v5/{project_id}/image/{vul_id}/images | hss:image:listVulRepoImage | eps:enterpriseProjects:list |
POST /v5/{project_id}/image/vul-task | hss:image:runImageScan | eps:enterpriseProjects:list |
POST /v5/{project_id}/image/swr/vul-task | hss:image:runSwrImageScan | eps:enterpriseProjects:list |
POST /v5/{project_id}/image/shared-synchronize-task | hss:image:sharedImageSynchronization | eps:enterpriseProjects:list |
PUT /v5/{project_id}/policy/group | hss:policy:addPolicyGroup | eps:enterpriseProjects:list |
POST /v5/{project_id}/policy/deploy | hss:policy:associatePolicyGroup | eps:enterpriseProjects:list |
POST /v5/{project_id}/policy/{policy_id} | hss:policy:changePolicyDetail | eps:enterpriseProjects:list |
POST /v5/{project_id}/policy/group | hss:policy:changePolicyGroup | eps:enterpriseProjects:list |
DELETE /v5/{project_id}/policy/group | hss:policy:deletePolicyGroup | eps:enterpriseProjects:list |
GET /v5/{project_id}/policy/{policy_id} | hss:policy:getPolicyDetail | eps:enterpriseProjects:list |
GET /v5/{project_id}/policy/group/{group_id} | hss:policy:listPolicyGroupDetail | eps:enterpriseProjects:list |
POST /v5/{project_id}/{resource_type}/{resource_id}/tags | hss:quota:addResourceInstanceTag | eps:enterpriseProjects:list |
POST /v5/{project_id}/{resource_type}/{resource_id}/tags/create | hss:quota:batchCreateTags | eps:enterpriseProjects:list |
DELETE /v5/{project_id}/{resource_type}/{resource_id}/tags/delete | hss:quota:batchDeleteTags | eps:enterpriseProjects:list |
PUT /v5/{project_id}/billing/quotas | hss:quota:cancelHostsQuota | eps:enterpriseProjects:list |
POST /v1/{project_id}/hss/{resource_id}/tags/action | hss:quota:changeTmsResourceTagInfo | eps:enterpriseProjects:list |
POST /v5/{project_id}/{resource_type}/resource-instances/count | hss:quota:countResourceInstances | eps:enterpriseProjects:list |
DELETE /v5/{project_id}/{resource_type}/{resource_id}/tags/{key} | hss:quota:deleteResourceInstanceTag | eps:enterpriseProjects:list |
POST /v5/{project_id}/{resource_type}/resource-instances/filter | hss:quota:filterResourceInstanceList | eps:enterpriseProjects:list |
GET /v5/{project_id}/{resource_type}/{resource_id}/tags | hss:quota:getResourceInstanceTag | eps:enterpriseProjects:list |
GET /v5/{project_id}/billing/quotas | hss:quota:getResourceQuotas | eps:enterpriseProjects:list |
GET /v1/{project_id}/hss/{resource_id}/tags | hss:quota:getTmsResourceTagsInfo | eps:enterpriseProjects:list |
GET /v5/{project_id}/{resource_type}/tags | hss:quota:listProjectTags | eps:enterpriseProjects:list |
GET /v5/{project_id}/billing/quotas-detail | hss:quota:listQuotasDetail | eps:enterpriseProjects:list |
POST /v5/{project_id}/billing/resource-id-list | hss:quota:listResourceIds | eps:enterpriseProjects:list |
POST /v1/{project_id}/hss/resource_instances/action | hss:quota:listTmsResourceInstancesInfo | eps:enterpriseProjects:list |
POST /v5/{project_id}/hss/upgrade_orders/{order_id} | hss:quota:upgradeOrder | eps:enterpriseProjects:list |
PUT /v5/{project_id}/vulnerability/status | hss:vulnerability:changeVulStatus | eps:enterpriseProjects:list |
GET /v5/{project_id}/vul/emergency/list | hss:vulnerability:exportEmergencyVulnerabilities | eps:enterpriseProjects:list |
GET /v5/{project_id}/vul/export-vuls-list | hss:vulnerability:exportVulsList | eps:enterpriseProjects:list |
GET /v5/{project_id}/vul/cms-detail | hss:vulnerability:getCmsVulDetail | eps:enterpriseProjects:list |
GET /v5/{project_id}/vul/emergency/summary | hss:vulnerability:getEmergencySummary | eps:enterpriseProjects:list |
GET /v5/{project_id}/vul/emergency/detail | hss:vulnerability:getEmergencyVulDetail | eps:enterpriseProjects:list |
GET /v5/{project_id}/vul/linux-detail | hss:vulnerability:getLinuxVulDetail | eps:enterpriseProjects:list |
GET /v5/{project_id}/vul/manual/scan/status | hss:vulnerability:getVulCheckStatus | eps:enterpriseProjects:list |
GET /v5/{project_id}/vul/vul-summary | hss:vulnerability:getVulSummary | eps:enterpriseProjects:list |
GET /v5/{project_id}/vul/windows-detail | hss:vulnerability:getWindosVulDetail | eps:enterpriseProjects:list |
GET /v5/{project_id}/windows/vul/num | hss:vulnerability:getWindowsVulNum | eps:enterpriseProjects:list |
GET /v5/{project_id}/vulnerability/host/{host_id} | hss:vulnerability:listHostVuls | eps:enterpriseProjects:list |
GET /v5/{project_id}/vul/host-summary | hss:vulnerability:listHostVulSummary | eps:enterpriseProjects:list |
GET /v5/{project_id}/vul/top-vul | hss:vulnerability:listTopVulSummary | eps:enterpriseProjects:list |
GET /v5/{project_id}/vulnerability/hosts | hss:vulnerability:listVulHosts | eps:enterpriseProjects:list |
GET /v5/{project_id}/vulnerability/vulnerabilities | hss:vulnerability:listVulnerabilities | eps:enterpriseProjects:list |
GET /v5/{project_id}/vul/{host_id}/fail_detail | hss:vulnerability:listVulRepairFailedDetail | eps:enterpriseProjects:list |
GET /v5/{project_id}/vul/vul-type-summary | hss:vulnerability:listVulTypeSummary | eps:enterpriseProjects:list |
POST /v5/{project_id}/vul/emergency/operate | hss:vulnerability:operateEmergency | eps:enterpriseProjects:list |
GET /v5/{project_id}/host-management/{host_id}/scan_status | hss:host:getScanStatus | eps:enterpriseProjects:list |
POST /v5/{project_id}/host-management/{host_id}/manual_detect | hss:host:setManualDetect | eps:enterpriseProjects:list |
GET /v5/setting/account/trusted-services | hss::getTrustServiceStatus | eps:enterpriseProjects:list |
POST /v5/setting/account/trusted-services | hss::enableTrustService | eps:enterpriseProjects:list |
GET /v5/setting/account/admin | hss::validateAdmin | eps:enterpriseProjects:list |
GET /v5/setting/account/accounts | hss::listAccounts | eps:enterpriseProjects:list |
POST /v5/setting/account/accounts | hss::batchAddAccounts | eps:enterpriseProjects:list |
DELETE /v5/setting/account/accounts | hss::deleteAccount | eps:enterpriseProjects:list |
GET /v5/setting/account/organization-tree | hss::listOrganizationTree | eps:enterpriseProjects:list |
GET /v5/setting/account/delegated-accounts | hss::listDelegatedAccounts | eps:enterpriseProjects:list |
GET /v5/{project_id}/ransomware/optional/vaults | hss:antiransomware:listBackupVaults | eps:enterpriseProjects:list |
GET /v5/{project_id}/ransomware/servers | hss:antiransomware:listRansomwareProtectionNodes | eps:enterpriseProjects:list |
GET /v5/{project_id}/ransomware/statistics/backups | hss:antiransomware:getBackupsStatistics | eps:enterpriseProjects:list |
POST /v5/{project_id}/ransomware/backup/single_open | hss:antiransomware:startSingleBackup | eps:enterpriseProjects:list |
GET /v5/{project_id}/backup/{policy_id} | hss:antiransomware:getBackupPolicyInfo | eps:enterpriseProjects:list |
GET /v5/{project_id}/host-management/outside-group/status | hss:hostGroup:getOutsideGroupStatus | eps:enterpriseProjects:list |
GET /v5/{project_id}/host-management/outside-group | hss:hostGroup:getOutsideHostGroup | eps:enterpriseProjects:list |
POST /v5/{project_id}/host-management/outside-group | hss:hostGroup:addOutsideHostGroup | eps:enterpriseProjects:list |
PUT /v5/{project_id}/host-management/outside-group | hss:hostGroup:changeOutsideHostGroup | eps:enterpriseProjects:list |
GET /v5/{project_id}/image/tags | hss:images:listImageTag | eps:enterpriseProjects:list |
GET /v5/{project_id}/image/{image_digest}/sensitive | hss:images:listImageSensitive | eps:enterpriseProjects:list |
GET /v5/{project_id}/image/sensitive/filepath_whitelist | hss:images:getFilePathWhiteDetail | eps:enterpriseProjects:list |
POST /v5/{project_id}/image/sensitive/filepath_whitelist | hss:images:changeFilePathWhiteDetail | eps:enterpriseProjects:list |
POST /v5/{project_id}/image/sensitive/operate | hss:images:changeSensitiveInfo | eps:enterpriseProjects:list |
GET /v5/{project_id}/event/top-event-type | hss:event:listTopEventType | eps:enterpriseProjects:list |
GET /v5/{project_id}/vulnerability/scan-policy | hss:vulnerability:getVulScanPolicy | - |
PUT /v5/{project_id}/vulnerability/scan-policy | hss:vulnerability:changeVulScanPolicy | - |
GET /v5/{project_id}/vulnerability/white-lists | hss:vulnerability:listVulWhiteList | - |
GET /v5/{project_id}/vulnerability/white-list/{id} | hss:vulnerability:getVulWhiteListDetail | - |
PUT /v5/{project_id}/vulnerability/white-list/{id} | hss:vulnerability:changeVulWhiteList | - |
DELETE /v5/{project_id}/vulnerability/white-list/{id} | hss:vulnerability:deleteVulWhiteList | - |
POST /v5/{project_id}/vulnerability/white-list | hss:vulnerability:addVulWhiteList | - |
GET /v5/{project_id}/vulnerability/white-list/vulnerability-options | hss:vulnerability:listVulWhiteListVulOptions | - |
GET /v5/{project_id}/vulnerability/scan-tasks | hss:vulnerability:listVulScanTask | - |
GET /v5/{project_id}/vulnerability/scan-task/{task_id}/hosts | hss:vulnerability:listVulScanTaskHost | - |
PUT /v5/{project_id}/vulnerability/scan/task/{task_id}/rescan | hss:vulnerability:rescanVulScanTask | - |
GET /v5/{project_id}/vulnerability/scan/task/statistics | hss:vulnerability:getVulScanTaskStatistics | - |
GET /v5/{project_id}/vulnerability/statistics | hss:vulnerability:listHostVulStatistics | - |
GET /v5/{project_id}/vulnerability/{host_id}/apps | hss:vulnerability:listVulHostApps | - |
GET /v5/{project_id}/vulnerability/{host_id}/process | hss:vulnerability:listVulHostProcess | - |
GET /v5/{project_id}/vulnerability/handle-history | hss:vulnerability:listVulHandleHistory | - |
GET /v5/{project_id}/vulnerability/host/hosts | hss:vulnerability:listVulHostHosts | - |
GET /v5/{project_id}/vulnerability/host-vulnerability/vulnerabilities | hss:vulnerability:listVulHostVuls | - |
GET /v5/{project_id}/vulnerability/handle/vulnerabilities | hss:vulnerability:listVulHostHandleVuls | - |
GET /v5/{project_id}/image/{image_digest}/non-compliant-app | hss:image:listImageNonCompliantApp | - |
POST /v5/{project_id}/image/swr/vul/batch-export-vul | hss:image:batchExportSWRVulList | - |
POST /v5/{project_id}/image/local/vul/batch-export-vul | hss:image:batchExportLocalVulList | - |
GET /v5/{project_id}/image/baseline/extended-weak-password | hss:image:getExtendedWeakPassword | - |
POST /v5/{project_id}/image/baseline/extended-weak-password | hss:image:changeExtendedWeakPassword | - |
GET /v5/{project_id}/image/{image_digest}/basic-image | hss:image:listImageBasicImage | - |
GET /v5/{project_id}/image/baseline/password-complexity | hss:image:listImagePwdComplexity | - |
GET /v5/{project_id}/image/baseline/weak-password-users | hss:image:listImageWeakPwdUsers | - |
GET /v5/{project_id}/image/baseline/risk-configs | hss:image:listImageRiskConfigs | - |
GET /v5/{project_id}/image/baseline/risk-configs/{check_name}/detail | hss:image:getImageRiskConfigDetail | - |
GET /v5/{project_id}/image/baseline/check-rule/detail | hss:image:getImageCheckRuleDetail | - |
GET /v5/{project_id}/image/baseline/statistic | hss:image:getImageBaselineStatistic | - |
POST /v5/{project_id}/event/white-list/userlist | hss:event:addSystemUserWhiteList | - |
PUT /v5/{project_id}/event/white-list/userlist | hss:event:updateSystemUserWhiteList | - |
GET /v5/{project_id}/event/white-list/userlist | hss:event:listSystemUserWhiteList | - |
DELETE /v5/{project_id}/event/white-list/userlist | hss:event:removeSystemUserWhiteList | - |
POST /v5/{project_id}/kubernetes/save-clusters | hss:container:saveClusters | - |
GET /v5/{project_id}/kubernetes/clusters | hss:container:listClusterInfo | - |
GET /v5/{project_id}/kubernetes/pods | hss:container:listPodInfo | - |
GET /v5/{project_id}/kubernetes/{pod_name}/pod/detail | hss:container:showPodDetail | - |
GET /v5/{project_id}/kubernetes/containers | hss:container:listContainerInfo | - |
GET /v5/{project_id}/kubernetes/container/detail | hss:container:showContainerDetail | - |
GET /v5/{project_id}/kubernetes/services | hss:container:listServiceInfo | - |
GET /v5/{project_id}/kubernetes/service/detail | hss:container:showServiceDetail | - |
GET /v5/{project_id}/kubernetes/endpoints | hss:container:listEndpointInfo | - |
GET /v5/{project_id}/kubernetes/endpoint/detail | hss:container:showEndpointDetail | - |
GET /v5/{project_id}/kubernetes/deployments | hss:container:listDeployments | - |
GET /v5/{project_id}/kubernetes/statefulsets | hss:container:listStatefulSets | - |
GET /v5/{project_id}/kubernetes/daemonsets | hss:container:listDaemonSets | - |
GET /v5/{project_id}/kubernetes/jobs | hss:container:listJobs | - |
GET /v5/{project_id}/kubernetes/cronjobs | hss:container:listCronJobs | - |
GET /v5/{project_id}/vulnerability/statistics/affected | hss:vulnerability:showVulAffectedStatics | - |
PUT /v5/{project_id}/kubernetes/{container_name}/container/isolate | hss:container:isolateK8sContainer | - |
GET /v5/{project_id}/container-network/network-statistics | hss:container:getNetworkStatistics | - |
GET /v5/{project_id}/container-network/cluster-list | hss:container:getClusters | - |
GET /v5/{project_id}/container-network/{cluster_id}/network-info | hss:container:getClusterNetworkInfo | - |
GET /v5/{project_id}/container-network/{cluster_id}/policy-list | hss:container:getClusterPolicyList | - |
DELETE /v5/{project_id}/container-network/{cluster_id}/policy | hss:container:deletePolicy | - |
POST /v5/{project_id}/container-network/{cluster_id}/policy | hss:container:createPolicy | - |
PUT /v5/{project_id}/container-network/{cluster_id}/policy | hss:container:updatePolicy | - |
GET /v5/{project_id}/container-network/{cluster_id}/policy-sync | hss:container:syncClusterPolicyList | - |
GET /v5/{project_id}/container-network/cluster-sync | hss:container:syncClusterList | - |
GET /v5/{project_id}/container-network/{cluster_id}/namespace-list | hss:container:getNamespaceList | - |
GET /v5/{project_id}/container-network/{cluster_id}/node-list | hss:container:getNodeList | - |
GET /v5/{project_id}/container-network/{cluster_id}/node-sync | hss:container:syncClusterNodeList | - |
POST /v5/{project_id}/ransomware/protection/policy | hss:antiransomware:addRansomwareProtectionPolicy | - |
POST /v5/{project_id}/ransomware/backup/associate-policy | hss:antiransomware:associateBackupPolicy | - |
GET /v5/{project_id}/ransomware/backup/policies | hss:antiransomware:listBackupPolicy | - |
POST /v5/{project_id}/ransomware/protection/policy/deploy | hss:antiransomware:associateProtectionPolicy | - |
POST /v5/{project_id}/ransomware/protection/batch-open | hss:antiransomware:batchStartProtection | - |
GET /v5/{project_id}/event/att-ck | hss:event:getEventAttCk | - |
GET /v5/{project_id}/event/download-file | hss:event:downloadEventSourceFile | - |
GET /v5/{project_id}/overview/security/score | hss:overview:showSecurityScore | - |
GET /v5/{project_id}/overview/security/risk/list | hss:overview:listSecurityRisk | - |
GET /v5/{project_id}/overview/quotas/host/statistics | hss:overview:showQuotaHostStatistics | - |
GET /v5/{project_id}/overview/agent/statistics | hss:overview:showAgentStatistics | - |
GET /v5/{project_id}/overview/hot/information | hss:overview:showHotInformation | - |
GET /v5/{project_id}/overview/security/risk | hss:overview:showSecurityRisk | - |
GET /v5/{project_id}/overview/protection/statistics | hss:overview:showProtectStatistics | - |
GET /v5/{project_id}/overview/statistics | hss:overview:showStatistics | - |
GET /v5/{project_id}/image/swr-repository | hss:image:listSwrImageRepository | - |
POST /v5/{project_id}/image/batch-scan | hss:image:batchScanSwrImage | - |
GET /v5/{project_id}/image/{image_id}/vulnerabilities | hss:image:vulnerabilities | - |
GET /v5/{project_id}/image/vulnerability/{vul_id}/cve | hss:image:listVulnerabilityCve | - |
GET /v5/{project_id}/image/baseline/risk-configs/{check_name}/rules | hss:image:listImageRiskConfigRules | - |
POST /v5/{project_id}/image/synchronize | hss:image:runImageSynchronize | - |
GET /v5/{project_id}/event/forensic | hss:event:listEventForensic | - |
GET /v5/{project_id}/event/similar-handled-events | hss:event:listSimilarHandledEvents | - |
GET /v5/{project_id}/cluster-protect/policy | hss:container:getPolicies | - |
GET /v5/{project_id}/cluster-protect/policy/{policy_id} | hss:container:getPolicyDetail | - |
GET /v5/{project_id}/cluster-protect/events | hss:container:getProtectEvents | - |
GET /v5/{project_id}/cluster-protect/clusters | hss:container:getProtectClusters | - |
GET /v5/{project_id}/cluster-protect/switch-mode | hss:container:changeProtectStatus | - |
GET /v5/{project_id}/cluster-protect/whiteimage | hss:container:addWhiteImage | - |
GET /v5/{project_id}/cluster-protect/default-policy | hss:container:listDefaultPolicy | - |
GET /v5/{project_id}/cluster-protect/protection-item | hss:container:listProtectionItem | - |
POST /v5/{project_id}/vulnerability/backup-statistics | hss:vulnerability:getVulBackupStatistics | - |
GET /v5/{project_id}/vulnerability/backup/host-vaults | hss:vulnerability:ListVulHostVaults | - |
GET /v5/{project_id}/vulnerability/backup/backups | hss:vulnerability:ListVulHostBackups | - |
PUT /v5/{project_id}/vulnerability/backup/{backup_id}/restore | hss:vulnerability:RestoreVulHostBackup | - |
POST /v5/{project_id}/event/export | hss:event:exportEvent | - |
GET /v5/{project_id}/event/export-task/{task_id} | hss:event:queryExportTask | - |
GET /v5/{project_id}/event/download/{file_id} | hss:event:downloadEvent | - |
POST /v5/{project_id}/app/policy | hss:ars:createAppWhitelistPolicy | - |
GET /v5/{project_id}/app/policy | hss:ars:listAppWhitelistPolicy | - |
PUT /v5/{project_id}/app/policy | hss:ars:changeAppWhitelistPolicy | - |
DELETE /v5/{project_id}/app/policy | hss:ars:deleteAppWhitelistPolicy | - |
GET /v5/{project_id}/app/{policy_id}/detail | hss:ars:showAppWhitelistPolicy | - |
PUT /v5/{project_id}/app/host | hss:ars:switchAppWhitelistPolicyHost | - |
POST /v5/{project_id}/app/{policy_id}/host | hss:ars:addAppWhitelistPolicyHost | - |
GET /v5/{project_id}/app/host | hss:ars:listAppWhitelistPolicyHost | - |
DELETE /v5/{project_id}/app/{policy_id}/host | hss:ars:deleteAppWhitelistPolicyHost | - |
GET /v5/{project_id}/app/host-management/hosts | hss:ars:listAppWhitelistHostStatus | - |
GET /v5/{project_id}/app/{policy_id}/process | hss:ars:listAppWhitelistPolicyProcess | - |
PUT /v5/{project_id}/app/{policy_id}/process | hss:ars:changeAppWhitelistPolicyProcessStatus | - |
POST /v5/{project_id}/app/{policy_id}/process | hss:ars:addAppWhitelistPolicyProcess | - |
GET /v5/{project_id}/app/{policy_id}/process-extend | hss:ars:listAppWhitelistPolicyProcessExtend | - |
GET /v5/{project_id}/app/{policy_id}/process/export | hss:ars:exportAppWhitelistPolicyProcess | - |
POST /v5/{project_id}/app/{policy_id}/learn | hss:ars:switchAppWhitelistPolicyLearnStatus | - |
GET /v5/{project_id}/app/agent/statistics | hss:ars:showAppWhitelistAgentStatics | - |
GET /v5/{project_id}/app/event | hss:ars:listAppWhitelistEvent | - |
DELETE /v5/{project_id}/selfbuilt/kubernetes/cluster/daemonset | hss:container:deleteSelfBuildK8sClusterDaemonsetInfo | - |
POST /v5/{project_id}/selfbuilt/kubernetes/cluster/daemonset | hss:container:saveSelfBuildK8sClusterDaemonsetInfo | - |
GET /v5/{project_id}/selfbuilt/kubernetes/cluster/daemonset | hss:container:showSelfBuildK8sClusterDaemonsetInfo | - |
GET /v5/{project_id}/selfbuilt/kubernetes/clusters | hss:container:listSelfBuildK8sClusterInfo | - |
POST /v5/{project_id}/namespaces/{namespace}/daemonsets | hss:container:createDaemonset | - |
POST /v5/{project_id}/vulnerability/repair-cmds | hss:vulnerability:listVulRepairCmds | - |
GET /v5/{project_id}/vulnerability/urgent-vulnerabilities | hss:vulnerability:listUrgentVulnerabilities | - |
PUT /v5/{project_id}/antivirus/task | hss:antivirus:switchAntivirusTask | - |
GET /v5/{project_id}/antivirus/statistic | hss:antivirus:showAntivirusStatistic | - |
GET /v5/{project_id}/image/full-scan-progress | hss:image:showImageFullScanProgress | - |
PUT /v5/{project_id}/host/operate | hss:host:changeHostIgnoreStatus | - |
POST /v5/{project_id}/image/baseline/export | hss:image:batchExportBaselineTask | - |
POST /v5/{project_id}/image/security-report/statistic | hss:image:showImageSecurityReportStatistic | - |
POST /v5/{project_id}/vul/export | hss:vulnerability:exportVuls | - |
GET /v5/{project_id}/export-task/{task_id} | hss:exportTask:queryExportTask | - |
GET /v5/{project_id}/download/{file_id} | hss:file:downloadExportedFile | - |
GET /v5/{project_id}/image/vulnerabilities | hss:image:listGlobalVulnerabilities | - |
GET /v5/{project_id}/image/vulnerability/images | hss:image:listVulnerabilityImages | - |
GET /v5/{project_id}/setting/docker-plugin-install-script | hss:setting:getPluginInstallScript | - |
GET /v5/{project_id}/setting/plugins | hss:setting:getPluginList | - |
GET /v5/{project_id}/setting/config/auto-open-quota | hss:setting:getAutoOpenQuotaStatus | - |
PUT /v5/{project_id}/setting/config/auto-open-quota | hss:setting:changeAutoOpenQuotaStatus | - |
POST /v5/{project_id}/image/swr-vulnerability/export | hss:image:batchExportSWRVulTask | - |
POST /v5/{project_id}/image/local-vulnerability/export | hss:image:batchExportLocalVulTask | - |
GET /v5/{project_id}/setting/config/agent-auto-upgrade | hss:setting:getAgentAutoUpgradeStatus | - |
PUT /v5/{project_id}/setting/config/agent-auto-upgrade | hss:setting:changeAgentAutoUpgradeStatus | - |
GET /v5/{project_id}/product/productdata/offering-infos | hss:quota:showProductdataOfferingInfos | - |
GET /v5/{project_id}/image/local/apps | hss:image:listLocalImageAppInfo | - |
GET /v5/{project_id}/image/local/app/vulnerabilities | hss:image:listLocalImageAppVulnerabilities | - |
GET /v5/{project_id}/ransomware/protection/status | hss:antiransomware:getRansomwareProtectionStatus | - |
GET /v5/{project_id}/ransomware/protection/auto-deploy-policy | hss:antiransomware:getAutoDeployAgentList | - |
PUT /v5/{project_id}/ransomware/protection/auto-deploy-policy | hss:antiransomware:updateAutoDeployAgent | - |
GET /v5/{project_id}/vulnerability/individual-statistics | hss:vulnerability:getVulIndividualStatistics | - |
DELETE /v5/{project_id}/event/isolated-file | hss:event:deleteIsolatedFile | - |
GET /v5/{project_id}/antivirus/handle-history | hss:antivirus:listAntivirusHandleHistory | - |
GET /v5/{project_id}/honeypot-port/host-statistics | hss:decoyport:showStatistics | - |
GET /v5/{project_id}/honeypot-port/default-config | hss:decoyport:showAutoBind | - |
PUT /v5/{project_id}/honeypot-port/default-config | hss:decoyport:switchAutoBind | - |
GET /v5/{project_id}/honeypot-port/host-list | hss:decoyport:showHostList | - |
GET /v5/{project_id}/honeypot-port/policy-list | hss:decoyport:listPolicy | - |
GET /v5/{project_id}/honeypot-port/support-list | hss:decoyport:listAvailableHost | - |
PUT /v5/{project_id}/honeypot-port/host-policy/{policy_id} | hss:decoyport:switchHostPolicy | - |
DELETE /v5/{project_id}/honeypot-port/host-policy/{policy_id} | hss:decoyport:deleteHostPolicy | - |
POST /v5/{project_id}/honeypot-port/policy | hss:decoyport:createPolicy | - |
PUT /v5/{project_id}/honeypot-port/policy/{policy_id} | hss:decoyport:modifyPolicy | - |
GET /v5/{project_id}/honeypot-port/policy/{policy_id} | hss:decoyport:showPolicyDetails | - |
DELETE /v5/{project_id}/honeypot-port/policy/{policy_id} | hss:decoyport:deletePolicy | - |
PUT /v5/{project_id}/honeypot-port/policy-enable/{policy_id} | hss:decoyport:switchPolicy | - |
GET /v5/{project_id}/export-task | hss:exportTask:queryLatestExportTaskByType | - |
POST /v5/{project_id}/container-network/{cluster_id}/{namespace}/security-group-policy | hss:container:createSecurityGroupPolicy | - |
PUT /v5/{project_id}/container-network/{cluster_id}/{namespace}/security-group-policy | hss:container:updateSecurityGroupPolicy | - |
GET /v5/{project_id}/container-network/{cluster_id}/security-group-policies | hss:container:getSecurityGroupPolicyList | - |
DELETE /v5/{project_id}/container-network/{cluster_id}/security-group-policy | hss:container:deleteSecurityGroupPolicy | - |
GET /v5/{project_id}/container-network/{cluster_id}/security-group-policy-sync | hss:container:syncSecurityGroupPolicy | - |
GET /v5/{project_id}/container-network/{cluster_id}/{namespace}/workloads | hss:container:getWorkloadList | - |
GET /v5/{project_id}/container-network/security-groups | hss:container:getSecurityGroupList | - |
资源类型(Resource)
资源类型(Resource)表示身份策略所作用的资源。如表3中的某些操作指定了可以在该操作指定的资源类型,则必须在具有该操作的身份策略语句中指定该资源的URN,身份策略仅作用于此资源;如未指定,Resource默认为“*”,则身份策略将应用到所有资源。您也可以在身份策略中设置条件,从而指定资源类型。
HSS定义了以下可以在自定义身份策略的Resource元素中使用的资源类型。
