ListAccountsInResourceDirectory - Security Center - Alibaba Cloud Documentation Center

Queries members in the resource directory that is involved when the multi-account management feature is enabled.

Operation description

You must use the management account of your resource directory or a delegated administrator account of Security Center to call this operation.

Debugging

You can run this interface directly in OpenAPI Explorer, saving you the trouble of calculating signatures. After running successfully, OpenAPI Explorer can automatically generate SDK code samples.

Debug

Authorization information

The following table shows the authorization information corresponding to the API. The authorization information can be used in the Action policy element to grant a RAM user or RAM role the permissions to call this API operation. Description:

Operation: the value that you can use in the Action element to specify the operation on a resource.
Access level: the access level of each operation. The levels are read, write, and list.
Resource type: the type of the resource on which you can authorize the RAM user or the RAM role to perform the operation. Take note of the following items:
- For mandatory resource types, indicate with a prefix of * .
- If the permissions cannot be granted at the resource level, All Resources is used in the Resource type column of the operation.
Condition Key: the condition key that is defined by the cloud service.
Associated operation: other operations that the RAM user or the RAM role must have permissions to perform to complete the operation. To complete the operation, the RAM user or the RAM role must have the permissions to perform the associated operations.

Operation	Access level	Resource type	Condition key	Associated operation
yundun-sas:ListAccountsInResourceDirectory	list	All Resources ``	none	none

Request parameters

Parameter	Type	Required	Description	Example

The current API does not require request parameters

Response parameters

Parameter	Type	Description	Example
	object
RequestId	string	The request ID.	B7A839E8-70AE-591D-8D9E-C5419A2240DB
Accounts	array<object>	The members in the resource directory.
Account	object	The details of the member.
DisplayName	string	The name of the member.	abc**
AccountId	string	The Alibaba Cloud account ID of the member.	180803538814****
FolderId	string	The ID of the folder in the resource directory.	fd-cE2SQP****
SasVersion	string	The edition of Security Center that you use. Valid value: 0 or 1: Basic 2 or 3: Enterprise 5: Advanced 6: Anti-virus 7: Ultimate	0
IsMarked	string	Indicates whether the member is marked as followed.	no
IsSiemDaAccount	string	Indicates whether the member is a delegated administrator account of the threat analysis and response feature. Valid values: yes no	no
IsSasDaAccount	string	Indicates whether the member is a delegated administrator account of Security Center. Valid values: yes no	no
IsMaAccount	string	Indicates whether the member is an administrator account of the resource directory. Valid values: yes no	no
SaleInstance	string	Cloud Security Center Instance ID.	postpay-sas-x5x3hy1ly***
IsSiemControlAccount	string	Indicates whether the member is an account of the threat analysis and response feature. Valid values: yes no	no
ChargeType	integer	Subscription type. Values: 0: Prepaid 1: Pay-As-You-Go	1
InstanceBuyType	integer	Instance purchase type. Values: 0: Self-purchased 1: Multi-account allocation	0
BuySas`deprecated`	integer	This parameter is deprecated and should be ignored.	true
PostPayModuleSwitch	string	The switch status of the pay-as-you-go module. The value is a JSON string. Valid values: Key: VUL: vulnerability fixing module CSPM: cloud service configuration check module AGENTLESS: agentless detection module SERVERLESS: serverless asset module Value: A value of 0 specifies disabled. A value of 1 specifies enabled. Note If you do not specify a value for a module, the original value of the module is retained. Enumeration Value: {\"AGENTLESS\":0,\"CTDR\":0,\"CSPM\":0,\"SERVERLESS\":0,\"RASP\":0,\"SDK\":0,\"VUL\":0,\"POST_HOST\":0}: {\"AGENTLESS\":0,\"CTDR\":0,\"CSPM\":0,\"SERVERLESS\":0,\"RASP\":0,\"SDK\":0,\"VUL\":0,\"POST_HOST\":0}.	{\"VUL\":0}
BuySasNew	boolean	Whether a yearly or monthly subscription of Cloud Security Center is purchased. Values: true: Yes false: No	true
PostBasicService	integer	Post-paid module switch. Values: 0: Off 1: On	1

Examples

Sample success responses

JSONformat

{
  "RequestId": "B7A839E8-70AE-591D-8D9E-C5419A2240DB",
  "Accounts": [
    {
      "DisplayName": "abc**",
      "AccountId": "180803538814****",
      "FolderId": "fd-cE2SQP****",
      "SasVersion": 0,
      "IsMarked": "no",
      "IsSiemDaAccount": "no\n",
      "IsSasDaAccount": "no",
      "IsMaAccount": "no",
      "SaleInstance": "postpay-sas-x5x3hy1ly***",
      "IsSiemControlAccount": "no",
      "ChargeType": 1,
      "InstanceBuyType": 0,
      "BuySas": 0,
      "PostPayModuleSwitch": "{\\\"VUL\\\":0}",
      "BuySasNew": true,
      "PostBasicService": 1
    }
  ]
}

Error codes

HTTP status code	Error code	Error message	Description
403	NoPermission	caller has no permission	You are not authorized to do this operation.
500	ServerError	ServerError	-

For a list of error codes, visit the Service error codes.

Change history

Change time	Summary of changes	Operation

No change history