After you create a rule, you can view its details, resource evaluation results, and remediation details.
Background information
For information about how to create a rule by using a compliance pack, see Create a compliance pack.
Procedure
Log on to the Cloud Config console.
Optional. In the upper-left corner, select an account group.
This operation is required only if you are using a management account of a resource directory. Otherwise, you do not need to perform the operation.
In the left-side navigation pane, choose .
-
On the Rules page, use filters or search to find the destination rule.
-
Search: Enter keywords from the rule name to locate the rule by using fuzzy search.
-
Filter: Filter rules by compliance pack name, risk level, compliance status, or running status.
-
-
Click the destination rule ID link, or click Details in the Actions column for the destination rule.
You can view the rule details, resource evaluation results, and remediation details as follows:
-
In the Properties section, view the rule’s basic information as follows:
-
If the Rule Type is Rule Templates, view the rule ID, rule name, rule template identifier, creation time, risk level, trigger mechanism, improvement suggestions, tags, and description.
-
If the Rule Type is Custom Rule, view the rule ID, rule name, function ARN, creation time, risk level, trigger mechanism, improvement suggestions, tags, and description.
-
-
On the Result tab, view statistical summaries and the latest evaluation data list for resources associated with the rule.
-
Data Overview
Statistic
Description
Number of Non-compliant Resources
The number of resources associated with the rule whose latest evaluation result is Non-compliant.
Total resources evaluated
The cumulative number of resources evaluated by the rule since it was enabled. This count includes released resources.
Number of Compliant Resources
The number of resources associated with the rule whose latest evaluation result is Compliant.
Number of Inapplicable Resources
The number of resources automatically marked as Not Applicable because their resource types do not match the rule or do not support the rule’s features.
Ignored
The number of resources whose evaluation results are ignored by the rule. For instructions on ignoring evaluation results, see Ignore evaluation results.
-
Latest Detection Data List
View the resource ID, resource type, and latest evaluation result for resources associated with the rule. You can also perform the following Actions on these resources.
Action category
Description
Historical Configuration Changes
Click Historical Configuration Changes to view the configuration change history of the resource.
Compliance Timeline
Click Compliance Timeline to view the compliance evaluation history of the resource.
Ignore Evaluation Result
Click Ignore Evaluation Result to ignore the evaluation result of the rule for the resource. For more information, see Ignore evaluation results.
-
-
On the Rule Details tab, view the following information about the rule.
Category
Description
Resource Scope
View the scope of resources evaluated by the rule:
-
If the Rule Type is Rule Templates, view the associated resource types, excluded resource IDs, effective resource group IDs, effective regions, and effective tags.
-
If the Rule Type is Custom Rule, you can only view the associated resource types.
Parameter Settings
View the parameter names, relationships, and values configured for the rule.
-
-
On the Remediation Detail tab, view remediation details and perform related actions as shown in the following table.
Category
Description
Remediation Detail
View the remediation type, execution method, remediation template, and remediation template parameters.
Execution Result List
View the resource ID, resource type, remediation time, remediation result, and remediation reason for remediated resources.
-