ListCheckItemWarningSummary - Security Center - Alibaba Cloud Documentation Center

Queries the risk statistics of check items by page.

Debugging

OpenAPI Explorer automatically calculates the signature value. For your convenience, we recommend that you call this operation in OpenAPI Explorer.

Debug

Authorization information

The following table shows the authorization information corresponding to the API. The authorization information can be used in the Action policy element to grant a RAM user or RAM role the permissions to call this API operation. Description:

Operation: the value that you can use in the Action element to specify the operation on a resource.
Access level: the access level of each operation. The levels are read, write, and list.
Resource type: the type of the resource on which you can authorize the RAM user or the RAM role to perform the operation. Take note of the following items:
- The required resource types are displayed in bold characters.
- If the permissions cannot be granted at the resource level, All Resources is used in the Resource type column of the operation.
Condition Key: the condition key that is defined by the cloud service.
Associated operation: other operations that the RAM user or the RAM role must have permissions to perform to complete the operation. To complete the operation, the RAM user or the RAM role must have the permissions to perform the associated operations.

Operation	Access level	Resource type	Condition key	Associated operation
yundun-sas:ListCheckItemWarningSummary	List	All Resources *	none	none

Request parameters

Parameter	Type	Required	Description	Example
RiskType	string	No	The type of the baseline.	weak_password
CheckType	string	No	The type of the check item.	hc.check.type.attack_defense
CheckWarningStatus	integer	No	The risk status. Default value: null, which indicates that check items in all states are queried.Valid values: 1: failed 3: passed	3
CheckLevel	string	No	The risk level. Default value: null, which indicates that check items at all risk levels are queried.Valid values: high medium low	medium
CheckItemFuzzy	string	No	The name of the check item. Fuzzy match is supported.	password
ContainerFieldName	string	No	The name of the field that is used to query containers.	clusterId
ContainerFieldValue	string	No	The value of the field that is used to query containers.	c471f0f61b9c04f8380556e922cf1****
Lang	string	No	The language of the content within the request and response. Default value: zh. Valid values: zh: Chinese en: English	zh
CurrentPage	integer	No	The number of the page to return. Default value: 1.	1
PageSize	integer	No	The number of entries to return on each page. Default value: 20. If you leave this parameter empty, 20 entries are returned on each page. Note We recommend that you do not leave this parameter empty.	20
GroupId	long	No	The ID of the asset group. Note You can call the DescribeAllGroups operation to query the IDs of asset groups.	1161****
Source	string	No	The data source. Default value: default. Valid value: agentless: The check items of baselines for agentless detection. default: The check items of baselines for hosts.	agentless
UuidList	array	No	The UUID array of the servers.
	string	No	The UUID of the servers. Note You can call the DescribeCloudCenterInstances operation to query the UUIDs of servers.	4fe8e1cd-3c37-4851-b9de-124da32c****

Response parameters

Parameter	Type	Description	Example
	object	The response parameters.
List	object []	The risk statistics of check items.
RiskType	string	The type of the baseline.	weak_password
Alias	string	The alias of the baseline type.	week_pa****
CheckId	long	The ID of the check item.	696
CheckItem	string	The description of the check item.	Config the Event Audit policys
CheckLevel	string	The risk level of the check item. Valid values: high medium low	high
CheckType	string	The type of the check item.	Security audit
Advice	string	The suggestion on the check item.	In the Administrative Tools window, double-click Local Security Policy. In the Local Security Policy window that appears, choose Security Settings\\Local Policies\\Audit Policy, configure all audit policies as: `Success, Failure`.
Description	string	The description of the check item.	Config the Event Audit policys
Status	integer	The risk status of the check item. Valid values: 1: failed 3: passed	1
WarningMachineCount	integer	The number of servers that are affected by the check item.	20
ContainerCheckItem	boolean	Indicates whether the check item belongs to the container runtime type. Valid values: true false	true
AffiliatedRiskTypes	array	The list of the baseline categories of attribution.
	string	The Baseline classification of attribution.	CIS Compliance checks
AffiliatedRisks	array	The list of baselines attribution.
	string	The baseline of attribution.	CIS Ubuntu Linux 14 LTS Benchmark
PageInfo	object	The pagination information.
CurrentPage	integer	The page number of the returned page.	1
PageSize	integer	The number of entries returned per page.	20
TotalCount	integer	The total number of entries returned.	149
Count	integer	The number of entries returned on the current page.	4
RequestId	string	The ID of the request, which is used to locate and troubleshoot issues.	DC97C9EC-4B7D-5EFF-8A5E-A5CCC9ED****

Examples

Sample success responses

JSONformat

{
  "List": [
    {
      "RiskType": "weak_password",
      "Alias": "week_pa****",
      "CheckId": 696,
      "CheckItem": "Config the Event Audit policys",
      "CheckLevel": "high",
      "CheckType": "Security audit",
      "Advice": "In the Administrative Tools window, double-click Local Security Policy. In the Local Security Policy window that appears, choose Security Settings\\\\Local Policies\\\\Audit Policy, configure all audit policies as: `Success, Failure`.",
      "Description": "Config the Event Audit policys",
      "Status": 1,
      "WarningMachineCount": 20,
      "ContainerCheckItem": true,
      "AffiliatedRiskTypes": [
        "CIS Compliance checks"
      ],
      "AffiliatedRisks": [
        "CIS Ubuntu Linux 14 LTS Benchmark"
      ]
    }
  ],
  "PageInfo": {
    "CurrentPage": 1,
    "PageSize": 20,
    "TotalCount": 149,
    "Count": 4
  },
  "RequestId": "DC97C9EC-4B7D-5EFF-8A5E-A5CCC9ED****"
}

Error codes

HTTP status code	Error code	Error message	Description
403	NoPermission	caller has no permission	You are not authorized to do this operation.
500	ServerError	ServerError	-

For a list of error codes, visit the Service error codes.

Change history

Change time

Summary of changes

Operation

2023-11-07

The Error code has changed. The request parameters of the API has changed. The response structure of the API has changed

see changesets

Change item	Change content
Error Codes	The Error code has changed.
	delete Error Codes: 500
Input Parameters	The request parameters of the API has changed.
	Added Input Parameters: UuidList
Output Parameters	The response structure of the API has changed.

2023-08-18

The Error code has changed. The request parameters of the API has changed

see changesets

Change item	Change content
Error Codes	The Error code has changed.
	delete Error Codes: 500
Input Parameters	The request parameters of the API has changed.
	Added Input Parameters: Source

2023-03-22

The Error code has changed. The response structure of the API has changed

see changesets

Change item	Change content
Error Codes	The Error code has changed.
	delete Error Codes: 500
Output Parameters	The response structure of the API has changed.