Domain name for API request: csip.intl.tencentcloudapi.com.
Cloud Resource Configuration Risk Rule List Example
A maximum of 20 requests can be initiated per second for this API.
The following request parameter list only provides API request parameters and some common parameters. For the complete common parameter list, see Common Request Parameters.
| Parameter Name | Required | Type | Description |
|---|---|---|---|
| Action | Yes | String | Common Params. The value used for this API: DescribeConfigCheckRules. |
| Version | Yes | String | Common Params. The value used for this API: 2022-11-21. |
| Region | No | String | Common Params. This parameter is not required. |
| MemberId.N | No | Array of String | Group account member id |
| Filters.N | No | Array of Filters | Filtered Content |
| Limit | No | Integer | Pagination size. |
| Offset | No | Integer | Offset. |
| Order | No | String | Sorting type |
| By | No | String | Sorting field. |
| Parameter Name | Type | Description |
|---|---|---|
| TotalCount | Integer | Number of risk rules |
| RuleList | Array of RiskRuleInfo | Risk rule list |
| ProviderList | Array of AttributeOptionSet | Cloud vendor type options |
| RiskLevelList | Array of AttributeOptionSet | Risk level type option |
| DispositionTypeList | Array of AttributeOptionSet | Disposal categorization options |
| CheckTypeList | Array of AttributeOptionSet | Check type options |
| RequestId | String | The unique request ID, generated by the server, will be returned for every request (if the request fails to reach the server for other reasons, the request will not obtain a RequestId). RequestId is required for locating a problem. |
Cloud resource configuration risk rule list example
POST / HTTP/1.1
Host: csip.intl.tencentcloudapi.com
Content-Type: application/json
X-TC-Action: DescribeConfigCheckRules
<Common request parameters>
{}
{
"Response": {
"CheckTypeList": [
{
Account security
"Value": "account_security"
},
{
Basic security
"Value": "basic_security"
},
{
Security audit
"Value": "security_audit"
},
{
"Text": "Configuration security"
"Value": "config_security"
},
{
Auth control
"Value": "auth_control"
},
{
Permission control
"Value": "permission_control"
},
{
"Text": "Cybersecurity"
"Value": "network_security"
},
{
Data security
"Value": "data_security"
}
],
"DispositionTypeList": [
{
Urgent Risk Governance
"Value": "emergency"
},
{
"Text": "Boundary control",
"Value": "expose"
},
{
"Text": "Cloud asset hardening"
"Value": "asset_weakness"
},
{
Security protection enhancement
"Value": "safety_protection"
},
{
"Text": "Deep optimization"
"Value": "optimize"
}
],
"ProviderList": [
{
"Text": "Alibaba Cloud"
"Value": "alibaba"
},
{
"Text": "Amazon Web Services",
"Value": "aws"
},
{
"Text": "Huawei Cloud",
"Value": "huawei"
},
{
"Text": "Microsoft Azure",
"Value": "azure"
},
{
"Text": "Google Cloud"
"Value": "gc"
},
{
"Text": "Tencent Cloud",
"Value": "tencent"
}
],
"RequestId": "da381e6c-32fc-41b5-9f2b-a88c546e5392",
"RiskLevelList": [
{
Critical
"Value": "critical"
},
{
High-risk
"Value": "high"
},
{
Medium risk
"Value": "medium"
},
{
"Text": "Low risk"
"Value": "low"
}
],
"RuleList": [
{
"CheckType": "network_security",
"DispositionType": "optimize",
"InstanceType": "clb_instance",
"Provider": "tencent",
"RiskFixAdvance": "https://xxx",
"RiskInfluence": "The TLS 1.1 protocol and lower versions have been proven to have security vulnerabilities, such as BEAST, CRIME and POODLE attacks. These vulnerabilities may be exploited by attackers, thereby causing data leakage or malicious tampering. If your Load Balancer (LB) uses the TLS 1.1 protocol or lower versions, then it may face these security risks."
"RiskLevel": "medium",
"RiskTitle": "High risk policy of enabling TLS1.1 and lower versions for load balancing"
"RuleID": "tc_200"
}
],
"TotalCount": 294
}
}
TencentCloud API 3.0 integrates SDKs that support various programming languages to make it easier for you to call APIs.
There is no error code related to the API business logic. For other error codes, please see Common Error Codes.
피드백