All Products
Search

This Product

    Cloud Config:ListCompliancePackTemplates

    Document Center

    Cloud Config:ListCompliancePackTemplates

    Last Updated:Aug 25, 2025

    Queries the details of all compliance pack templates provided by CloudConfig.

    Operation description

    A compliance pack template is a collection of rules customized by CloudConfig for compliance scenarios.

    Try it now

    Try this API in OpenAPI Explorer, no manual signing needed. Successful calls auto-generate SDK code matching your parameters. Download it with built-in credential security for local usage.

    Test

    RAM authorization

    No authorization for this operation. If you encounter issues with this operation, contact technical support.

    Request parameters

    Parameter

    Type

    Required

    Description

    Example
    CompliancePackTemplateId

    string

    No

    The ID of the compliance pack template.

    ct-5f26ff4e06a300c4****
    RuleRiskLevel

    integer

    No

    The risk level of the rules in the compliance pack. Valid values:

    • 1: high

    • 2: medium

    • 3: low

    2
    PageSize

    integer

    No

    The number of entries to return on each page.

    Valid values: 1 to 100. Default value: 10.

    10
    PageNumber

    integer

    No

    The page number.

    Minimum value: 1. Default value: 1.

    1
    ResourceTypes

    string

    No

    The resource type that is evaluated by the rules. If you specify this parameter, only the compliance pack templates that contain rules for the specified resource type are returned.

    ACS::ECS::Instance
    FilterType

    string

    No

    The field used to filter the query results.

    LAW

    For more information about common request parameters, see Common parameters.

    Response elements

    Element

    Type

    Description

    Example

    object

    None.

    CompliancePackTemplatesResult

    object

    The details of the compliance pack templates.

    PageSize

    integer

    The number of entries returned per page.

    10
    PageNumber

    integer

    The page number.

    1
    TotalCount

    integer

    The total number of compliance pack templates.

    1
    CompliancePackTemplates

    array<object>

    A list of compliance pack templates.

    object

    None.

    RiskLevel

    integer

    The risk level of the rules in the compliance pack. Valid values:

    • 1: high

    • 2: medium

    • 3: low

    1
    Description

    string

    The description of the compliance pack.

    Checks the compliance of Alibaba Cloud resources based on the specific requirements of MLPS 2.0 Level 3.
    ConfigRules

    array<object>

    A list of default rules in the compliance pack.

    object

    None.

    Description

    string

    The description of the rule.

    If no vulnerabilities that are of the specified type and severity level and to be fixed exist on the running ECS instances that are protected by Security Center, the configuration is considered compliant. This rule does not apply to ECS instances that are not in the running state.
    ManagedRuleIdentifier

    string

    The identifier of the managed rule.

    ecs-instance-updated-security-vul
    ManagedRuleName

    string

    The name of the managed rule.

    ecs-instance-updated-security-vul
    ConfigRuleParameters

    array<object>

    The parameters of the managed rule.

    object

    None.

    Required

    boolean

    Indicates whether the parameter is required for the managed rule. Valid values:

    • true: The parameter is required.

    • false: The parameter is not required.

    true
    ParameterName

    string

    The name of the parameter for the managed rule.

    necessity
    ParameterValue

    string

    The value of the parameter for the managed rule.

    asap
    RiskLevel

    integer

    The risk level of the managed rule. Valid values:

    • 1: high

    • 2: medium

    • 3: low

    2
    ControlId

    string

    The ID of the control.

    Note

    This parameter appears only for regulatory compliance packages.

    8.1.4.4
    ControlDescription

    string

    The description of the control. This parameter is returned only for compliance packs that are created based on a regulation.

    e) Possible known vulnerabilities should be found and remedied in a timely manner after adequate testing and evaluation.\nf) It shall be able to detect intrusion into important nodes and provide an alarm in case of serious intrusion events.
    DefaultEnable

    boolean

    Indicates whether the rule can be quickly enabled. Valid values:

    • true: The rule can be quickly enabled.

    • false: The rule cannot be quickly enabled.

    false
    ResourceTypesScope

    string

    The resource types that are evaluated by the rule.

    ACS::ECS::Instance
    CompliancePackTemplateName

    string

    The name of the compliance pack template.

    ClassifiedProtectionPreCheck
    CompliancePackTemplateId

    string

    The ID of the compliance pack template.

    ct-5f26ff4e06a300c4****
    Labels

    string

    The classification labels of the compliance pack.

    Regulation
    LastUpdate

    integer

    The UNIX timestamp when the compliance pack was last updated.

    1747983081
    RequestId

    string

    The ID of the request.

    D67FC82F-25AE-4268-A94C-3348340748F9

    Examples

    Success response

    JSON format

    {
  "CompliancePackTemplatesResult": {
    "PageSize": 10,
    "PageNumber": 1,
    "TotalCount": 1,
    "CompliancePackTemplates": [
      {
        "RiskLevel": 1,
        "Description": "Checks the compliance of Alibaba Cloud resources based on the specific requirements of MLPS 2.0 Level 3.",
        "ConfigRules": [
          {
            "Description": "If no vulnerabilities that are of the specified type and severity level and to be fixed exist on the running ECS instances that are protected by Security Center, the configuration is considered compliant. This rule does not apply to ECS instances that are not in the running state.",
            "ManagedRuleIdentifier": "ecs-instance-updated-security-vul",
            "ManagedRuleName": "ecs-instance-updated-security-vul",
            "ConfigRuleParameters": [
              {
                "Required": true,
                "ParameterName": "necessity",
                "ParameterValue": "asap"
              }
            ],
            "RiskLevel": 2,
            "ControlId": "8.1.4.4",
            "ControlDescription": "e) Possible known vulnerabilities should be found and remedied in a timely manner after adequate testing and evaluation.\\nf) It shall be able to detect intrusion into important nodes and provide an alarm in case of serious intrusion events.",
            "DefaultEnable": false,
            "ResourceTypesScope": "ACS::ECS::Instance"
          }
        ],
        "CompliancePackTemplateName": "ClassifiedProtectionPreCheck",
        "CompliancePackTemplateId": "ct-5f26ff4e06a300c4****",
        "Labels": "Regulation",
        "LastUpdate": 1747983081
      }
    ]
  },
  "RequestId": "D67FC82F-25AE-4268-A94C-3348340748F9"
}

    Error codes

    HTTP status code

    Error code

    Error message

    Description
    400 NoPermission You are not authorized to perform this operation. You are not authorized to perform this operation.
    404 AccountNotExisted Your account does not exist.
    503 ServiceUnavailable The request has failed due to a temporary failure of the server. The request has failed due to a temporary failure of the server.

    See Error Codes for a complete list.

    Release notes

    See Release Notes for a complete list.