View evaluation results for a compliance package

Procedure

1. Log on to the Cloud Config console.

2. Optional. In the upper-left corner, select an account group.

   This operation is required only if you are using a management account of a resource directory. Otherwise, you do not need to perform the operation.

3. In the left-side navigation pane, choose Compliance & Audit > Compliance Package.

4. On the Compliance Package page, click the ID of the target compliance package, or click Details in the Actions column.

   • The Rule Result tab shows the number of non-compliant resources per rule.

   • The Resource Result tab lists the non-compliant resources.

   • The Member Result tab lists non-compliant members.

     A member is non-compliant if it has any non-compliant resources.

     Note

     The Member Result tab is available only in multi-account mode.

Locate non-compliant items from Cloud Monitor alerts

In Cloud Monitor Event Center, non-compliance events from Cloud Config appear as JSON-formatted raw data without a direct link to the Cloud Config console. If you receive an alert, follow these steps to locate the corresponding non-compliant rule and resource.

1. Log on to the Cloud Config console.

2. In the left-side navigation pane, choose Compliance Evaluation > Rules.

3. Filter the list to show only non-compliant rules.

   You can also filter by risk level to identify high-risk rules.

4. Click Details in the Actions column for the target rule.

5. On the Result tab, view the list of non-compliant resources.

   The list displays the resource ID, name, type, and compliance result for each non-compliant resource. The resourceId field in the alert JSON corresponds to the resource ID shown here.

6. Click Manage Resource in the Actions column for the target resource to navigate to its console and resolve the non-compliance issue.