All Products
Search

This Product

    Security Center:ListCheckStandard

    Document Center

    Security Center:ListCheckStandard

    Last Updated:Feb 20, 2024

    Queries the standards of configuration checks.

    Debugging

    OpenAPI Explorer automatically calculates the signature value. For your convenience, we recommend that you call this operation in OpenAPI Explorer.

    Authorization information

    The following table shows the authorization information corresponding to the API. The authorization information can be used in the Action policy element to grant a RAM user or RAM role the permissions to call this API operation. Description:

    • Operation: the value that you can use in the Action element to specify the operation on a resource.
    • Access level: the access level of each operation. The levels are read, write, and list.
    • Resource type: the type of the resource on which you can authorize the RAM user or the RAM role to perform the operation. Take note of the following items:
      • The required resource types are displayed in bold characters.
      • If the permissions cannot be granted at the resource level, All Resources is used in the Resource type column of the operation.
    • Condition Key: the condition key that is defined by the cloud service.
    • Associated operation: other operations that the RAM user or the RAM role must have permissions to perform to complete the operation. To complete the operation, the RAM user or the RAM role must have the permissions to perform the associated operations.
    OperationAccess levelResource typeCondition keyAssociated operation
    yundun-sas:ListCheckStandardList
    • All Resources
      *
      none
    		none

    Request parameters

    ParameterTypeRequiredDescriptionExample
    VendorsarrayNo

    The cloud service providers. Valid values:

    • ALIYUN: Alibaba Cloud
    stringNo

    The cloud service provider. Valid values:

    • ALIYUN: Alibaba Cloud
    		ALIYUN
    InstanceTypesarrayNo

    The asset types of cloud services.

    stringNo

    The asset type of the cloud service. Valid values:

    • ECS: Elastic Compute Service (ECS)
    • SLB: Server Load Balancer (SLB)
    • RDS: ApsaraDB RDS
    • MONGODB: ApsaraDB for MongoDB (MongoDB)
    • KVSTORE: ApsaraDB for Redis (Redis)
    • ACR: Container Registry
    • CSK: Container Service for Kubernetes (ACK)
    • VPC: Virtual Private Cloud (VPC)
    • ACTIONTRAIL: ActionTrail
    • CDN: Alibaba Cloud CDN (CDN)
    • CAS: Certificate Management Service (formerly SSL Certificates Service)
    • RDC: Apsara Devops
    • RAM: Resource Access Management (RAM)
    • DDOS: Anti-DDoS
    • WAF: Web Application Firewall (WAF)
    • OSS: Object Storage Service (OSS)
    • POLARDB: PolarDB
    • POSTGRESQL: ApsaraDB RDS for PostgreSQL
    • MSE: Microservices Engine (MSE)
    • NAS: Apsara File Storage NAS (NAS)
    • SDDP: Sensitive Data Discovery and Protection (SDDP)
    • EIP: Elastic IP Address (EIP)
    		ECS
    InstanceSubTypesarrayNo

    The subtypes of cloud services.

    stringNo

    The subtype of the cloud service.

    		INSTANCE
    InstanceIdsarrayNo

    The instance IDs of the cloud services to which the check items belong.

    stringNo

    The instance ID of the cloud service to which the check item belongs.

    		i-***
    LangstringNo

    The language of the content within the request and response. Default value: zh. Valid values:

    • zh: Chinese
    • en: English
    		zh

    Response parameters

    ParameterTypeDescriptionExample
    object

    ListCheckStandardResponse

    Standardsobject []

    An array that consists of the check items.

    Idlong

    The ID of the check item.

    		1
    ShowNamestring

    The display name of the check item.

    		Identity and permission management
    Requirementsobject []

    An array that consists of search conditions.

    Idlong

    The ID of the search condition.

    		11
    ShowNamestring

    The display name of the search condition.

    		RAM identity authentication
    RiskCheckCountlong

    The number of check items queried by using the search condition.

    		10
    Typestring

    The type of the check item.

    		IDENTITY_PERMISSION
    RequestIdstring

    The ID of the request, which is used to locate and troubleshoot issues.

    		FA91FBDA-***

    Examples

    Sample success responses

    JSONformat

    {
  "Standards": [
    {
      "Id": 1,
      "ShowName": "Identity and permission management\n",
      "Requirements": [
        {
          "Id": 11,
          "ShowName": "RAM identity authentication\n",
          "RiskCheckCount": 10
        }
      ],
      "Type": "IDENTITY_PERMISSION"
    }
  ],
  "RequestId": "FA91FBDA-***"
}

    Error codes

    HTTP status codeError codeError messageDescription
    400IllegalParamIllegal param-
    403NoPermissioncaller has no permissionYou are not authorized to do this operation.
    500ServerErrorServerError-

    For a list of error codes, visit the Service error codes.

    Change history

    Change timeSummary of changesOperation
    2023-01-11API Description Update. The API operation is not deprecated.. The Error code has changedsee changesets
    Change itemChange content
    API DescriptionAPI Description Update.
    API Deprecation DescriptionThe API operation is not deprecated..
    Error CodesThe Error code has changed.
      delete Error Codes: 400