クラウドコンプライアンスパック
ID: pack:aliyun:compliance
説明
Alibaba Cloud のコンプライアンス pack をディレクトリ単位で集約し、セキュリティベースライン、規制フレームワーク、ガバナンス、暗号化、ログ、アクセス制御、レジリエンスを確認します。
含まれるルール
rule:aliyun:ack-cluster-encryption-enabledrule:aliyun:ack-cluster-node-multi-zonerule:aliyun:ack-cluster-public-endpoint-checkrule:aliyun:ack-cluster-rrsa-enabledrule:aliyun:ack-cluster-supported-versionrule:aliyun:ack-cluster-upgrade-latest-versionrule:aliyun:actiontrail-enabledrule:aliyun:actiontrail-trail-intact-enabledrule:aliyun:alb-all-listener-health-check-enabledrule:aliyun:alb-instance-multi-zonerule:aliyun:alb-server-group-multi-zonerule:aliyun:api-gateway-api-internet-request-httpsrule:aliyun:api-gateway-group-enabled-sslrule:aliyun:cr-repository-immutablity-enablerule:aliyun:ecs-available-disk-encryptedrule:aliyun:ecs-disk-auto-snapshot-policyrule:aliyun:ecs-disk-encryptedrule:aliyun:ecs-in-use-disk-encryptedrule:aliyun:ecs-instance-attached-security-grouprule:aliyun:ecs-instance-deletion-protection-enabledrule:aliyun:ecs-instance-enabled-security-protectionrule:aliyun:ecs-instance-expired-checkrule:aliyun:ecs-instance-not-bind-key-pairrule:aliyun:ecs-instance-ram-role-attachedrule:aliyun:ecs-instances-in-vpcrule:aliyun:ecs-running-instance-no-public-iprule:aliyun:ecs-security-group-risky-ports-check-with-protocolrule:aliyun:ecs-security-group-white-list-port-checkrule:aliyun:ecs-snapshot-policy-timepoints-checkrule:aliyun:ecs-snapshot-retention-daysrule:aliyun:eip-attachedrule:aliyun:eip-bandwidth-limitrule:aliyun:elasticsearch-instance-enabled-data-node-encryptionrule:aliyun:elasticsearch-instance-multi-zonerule:aliyun:elasticsearch-public-and-any-ip-access-checkrule:aliyun:ess-scaling-configuration-enabled-internet-checkrule:aliyun:ess-scaling-group-attach-multi-switchrule:aliyun:fc-function-custom-domain-and-tls-enablerule:aliyun:fc-service-bind-rolerule:aliyun:fc-service-internet-access-disablerule:aliyun:fc-service-vpc-bindingrule:aliyun:firewall-asset-open-protectrule:aliyun:hbase-cluster-deletion-protectionrule:aliyun:hbase-cluster-expired-checkrule:aliyun:hbase-cluster-in-vpcrule:aliyun:hbase-cluster-type-checkrule:aliyun:kms-key-delete-protection-enabledrule:aliyun:kms-key-rotation-enabledrule:aliyun:kms-secret-rotation-enabledrule:aliyun:maxcompute-project-encryption-enabledrule:aliyun:maxcompute-project-ip-whitelist-enabledrule:aliyun:mongodb-cluster-expired-checkrule:aliyun:mongodb-instance-log-auditrule:aliyun:mongodb-instance-multi-zonerule:aliyun:mongodb-instance-release-protectionrule:aliyun:mongodb-public-access-checkrule:aliyun:mse-cluster-config-auth-enabledrule:aliyun:nas-filesystem-encrypt-type-checkrule:aliyun:nas-filesystem-mount-target-access-group-checkrule:aliyun:oss-bucket-anonymous-prohibitedrule:aliyun:oss-bucket-authorize-specified-iprule:aliyun:oss-bucket-logging-enabledrule:aliyun:oss-bucket-only-https-enabledrule:aliyun:oss-bucket-policy-no-any-anonymousrule:aliyun:oss-bucket-policy-outside-organization-checkrule:aliyun:oss-bucket-public-read-prohibitedrule:aliyun:oss-bucket-public-write-prohibitedrule:aliyun:oss-bucket-referer-limitrule:aliyun:oss-bucket-server-side-encryption-enabledrule:aliyun:oss-bucket-versioning-enabledrule:aliyun:oss-default-encryption-kmsrule:aliyun:oss-encryption-byok-checkrule:aliyun:oss-zrs-enabledrule:aliyun:pai-eas-instances-multi-zonerule:aliyun:polardb-cluster-delete-protection-enabledrule:aliyun:polardb-cluster-enabled-sslrule:aliyun:polardb-cluster-enabled-tderule:aliyun:polardb-cluster-expired-checkrule:aliyun:polardb-cluster-maintain-time-checkrule:aliyun:polardb-cluster-multi-zonerule:aliyun:polardb-public-and-any-ip-access-checkrule:aliyun:privatelink-servier-endpoint-multi-zonerule:aliyun:ram-group-has-member-checkrule:aliyun:ram-password-policy-checkrule:aliyun:ram-policy-no-statements-with-admin-access-checkrule:aliyun:ram-user-activated-ak-quantity-checkrule:aliyun:ram-user-ak-create-date-expired-checkrule:aliyun:ram-user-ak-used-expired-checkrule:aliyun:ram-user-group-membership-checkrule:aliyun:ram-user-last-login-expired-checkrule:aliyun:ram-user-login-checkrule:aliyun:ram-user-mfa-checkrule:aliyun:ram-user-no-policy-checkrule:aliyun:rds-instacne-delete-protection-enabledrule:aliyun:rds-instance-enabled-auditingrule:aliyun:rds-instance-enabled-disk-encryptionrule:aliyun:rds-instance-enabled-log-backuprule:aliyun:rds-instance-enabled-sslrule:aliyun:rds-instance-expired-checkrule:aliyun:rds-instance-has-guard-instancerule:aliyun:rds-instance-maintain-time-checkrule:aliyun:rds-instances-in-vpcrule:aliyun:rds-multi-az-supportrule:aliyun:rds-public-access-checkrule:aliyun:rds-public-connection-and-any-ip-access-checkrule:aliyun:rds-white-list-internet-ip-access-checkrule:aliyun:redis-instance-backup-log-enabledrule:aliyun:redis-instance-enabled-byok-tderule:aliyun:redis-instance-enabled-sslrule:aliyun:redis-instance-expired-checkrule:aliyun:redis-instance-multi-zonerule:aliyun:redis-instance-open-auth-moderule:aliyun:redis-instance-release-protectionrule:aliyun:redis-public-and-any-ip-access-checkrule:aliyun:root-ak-checkrule:aliyun:root-has-specified-rolerule:aliyun:root-mfa-checkrule:aliyun:security-center-version-checkrule:aliyun:sg-public-access-checkrule:aliyun:slb-acl-public-access-checkrule:aliyun:slb-all-listener-servers-multi-zonerule:aliyun:slb-all-listenter-tls-policy-checkrule:aliyun:slb-delete-protection-enabledrule:aliyun:slb-instance-log-enabledrule:aliyun:slb-instance-multi-zonerule:aliyun:slb-listener-https-enabledrule:aliyun:slb-listener-risk-ports-checkrule:aliyun:slb-loadbalancer-bandwidth-limitrule:aliyun:slb-vserver-group-multi-zonerule:aliyun:sls-logstore-enabled-encryptrule:aliyun:sls-project-multi-zonerule:aliyun:use-waf-instance-for-security-protectionrule:aliyun:vpc-flow-logs-enabledrule:aliyun:vpc-network-acl-risky-ports-checkrule:aliyun:vswitch-available-ip-countrule:aliyun:waf-instance-logging-enabled
このドキュメントはポリシーメタデータから自動生成されます。