企业主机安全 hss-j9九游会登录
云服务在iam预置了常用授权项,称为系统身份策略。如果iam系统身份策略无法满足授权要求,管理员可以根据各j9九游会登录的服务支持的授权项,创建iam自定义身份策略来进行精细的访问控制,iam自定义身份策略是对系统身份策略的扩展和补充。
除iam服务外,organizations服务中的服务控制策略(service control policy,以下简称scp)也可以使用这些授权项元素设置访问控制策略。
scp不直接进行授权,只划定权限边界。将scp绑定到组织单元或者成员账号时,并没有直接对组织单元或成员账号授予操作权限,而是规定了成员账号或组织单元包含的成员账号的授权范围。iam身份策略授予权限的有效性受scp限制,只有在scp允许范围内的权限才能生效。
iam服务与organizations服务在使用这些元素进行访问控制时,存在着一些区别,详情请参见:iam服务与organizations服务权限访问控制的区别。
本章节介绍iam服务身份策略授权场景中自定义身份策略和组织服务中scp使用的元素,这些元素包含了操作(action)、资源(resource)和条件(condition)。
操作(action)
操作(action)即为身份策略中支持的授权项。
- “访问级别”列描述如何对操作进行分类(list、read和write等)。此分类可帮助您了解在身份策略中相应操作对应的访问级别。
- “资源类型”列指每个操作是否支持资源级权限。
- 资源类型支持通配符号*表示所有。如果此列没有值(-),则必须在身份策略语句的resource元素中指定所有资源类型(“*”)。
- 如果该列包含资源类型,则必须在具有该操作的语句中指定该资源的urn。
- 资源类型列中必需资源在表中用星号(*)标识,表示使用此操作必须指定该资源类型。
关于hss定义的资源类型的详细信息请参见资源类型(resource)。
- “条件键”列包括了可以在身份策略语句的condition元素中支持指定的键值。
- 如果该授权项资源类型列存在值,则表示条件键仅对列举的资源类型生效。
- 如果该授权项资源类型列没有值(-),则表示条件键对整个授权项生效。
- 如果此列条件键没有值(-),表示此操作不支持指定条件键。
关于hss定义的条件键的详细信息请参见条件(condition)。
- “别名”列包括了可以在身份策略中配置的策略授权项。通过这些授权项,可以控制支持策略授权的api访问。详细信息请参见身份策略兼容性说明。
|
授权项 |
描述 |
访问级别 |
资源类型(*为必须) |
条件键 |
别名 |
|---|---|---|---|---|---|
|
hss:host:addhostsgroup |
授予权限以创建服务器组。 |
write |
host * |
|
|
|
hss:ars:addpwlpolicyhost |
授予权限以进行白名单策略添加主机。 |
write |
host * |
|
|
|
hss:rasp:addrasppolicy |
授予权限以添加防护策略。 |
write |
- |
|
|
|
hss:safetyreport:addsecurityreport |
授予权限以创建或复制新报告。 |
write |
- |
|
|
|
hss:wtp:addtimingoffconfiginfo |
授予权限以添加定时关闭防护配置。 |
write |
host * |
|
|
|
hss:wtp:addwtphostprotectdirinfo |
授予权限以增加防护目录。 |
write |
host * |
|
|
|
hss:wtp:addwtpprivilegedprocessinfo |
授予权限以添加特权进程。 |
write |
host * |
|
|
|
hss:setting:changeautokillvirusstatus |
授予权限以开启或关闭程序自动隔离查杀。 |
write |
- |
|
|
|
hss:event:changeblockedip |
授予权限以解除拦截。 |
write |
host * |
|
|
|
hss:setting:changemalwarecollectstatus |
授予权限以开启或关闭恶意软件云查样本收集配置。 |
write |
- |
|
|
|
hss:ars:changepwlpolicy |
授予权限以修改白名单策略。 |
write |
- |
|
|
|
hss:ars:changepwlpolicyprocessstatus |
授予权限以标记进程白名单策略识别进程。 |
write |
- |
|
|
|
hss:safetyreport:changesecurityreport |
授予权限以修改报告。 |
write |
- |
|
|
|
hss:ars:createpwlpolicy |
授予权限以创建白名单策略。 |
write |
host * |
- |
|
|
- |
|||||
|
hss:ars:deletepwlpolicy |
授予权限以删除白名单策略。 |
write |
- |
|
|
|
hss:ars:deletepwlpolicyhost |
授予权限以进行白名单策略删除主机。 |
write |
host * |
|
|
|
hss:antiransomware:deleteransomwareduplicationinfo |
授予权限以删除备份副本。 |
write |
- |
|
|
|
hss:antiransomware:deleteransomwareprotectionpolicy |
授予权限以删除防护策略。 |
write |
- |
|
|
|
hss:rasp:deleterasppolicy |
授予权限以删除防护策略。 |
write |
- |
|
|
|
hss:safetyreport:deletesecurityreport |
授予权限以删除报告。 |
write |
- |
|
|
|
hss:wtp:deletetimingoffconfiginfo |
授予权限以删除定时关闭防护配置。 |
write |
host * |
|
|
|
hss:wtp:deletewtpbackuphostinfo |
授予权限以删除远端备份服务器。 |
write |
host * |
|
|
|
hss:wtp:deletewtphostprotectdirinfo |
授予权限以删除防护目录。 |
write |
host * |
|
|
|
hss:wtp:deletewtpprivilegedprocessinfo |
授予权限以删除特权进程。 |
write |
host * |
|
|
|
hss:setting:getagentinstallscript |
授予权限以查询agent安装脚本。 |
read |
- |
|
|
|
hss:setting:getalarmconfig |
授予权限以查询告警配置。 |
read |
- |
|
|
|
hss:rasp:getappraspswitchstatus |
授予权限以查询应用防护开启状态。 |
read |
host * |
|
|
|
hss:setting:getautokillvirusstatus |
授予权限以查询程序自动隔离查杀状态。 |
read |
- |
|
|
|
hss:container:getcontainernodestatistics |
授予权限以查询容器节点防护总览数据。 |
read |
- |
|
|
|
hss:keyfile:getfilestatistic |
授予权限以获取服务器文件统计信息。 |
read |
- |
|
|
|
hss:setting:getmalwarecollectstatus |
授予权限以查询恶意软件云查样本收集配置开关状态。 |
read |
- |
|
|
|
hss:setting:getmalwarereminders |
授予权限以获取提示信息配置。 |
read |
- |
|
|
|
hss:securitycheck:getmanualsecuritycheckstatus |
授予权限以查询手动体检状态和进度。 |
read |
- |
|
|
|
hss:overview:getoverviewassetgroupsstatistics |
授予权限以获取业务组分布统计,并识别一般资产、重要资产、核心资产。 |
read |
- |
|
|
|
hss:overview:getoverviewassetosstatistics |
授予权限以获取操作系统分布统计。 |
read |
- |
|
|
|
hss:overview:getoverviewassetstatistics |
授予权限以获取资产统计,包含主机、容器、镜像。 |
read |
- |
|
|
|
hss:overview:getoverviewattckmitre |
授予权限以调查响应-att&ck攻击路径矩阵。 |
read |
- |
|
|
|
hss:overview:getoverviewdefensestatistics |
授予权限以获取主动防御统计。 |
read |
- |
|
|
|
hss:overview:getoverviewprotectionstatusstatistics |
授予权限以查询当前云负载的防护状态。 |
read |
- |
|
|
|
hss:overview:getoverviewquotastatistics |
授予权限以获取主机安全统计。 |
read |
- |
|
|
|
hss:overview:getoverviewrisklists |
授予权限以查询风险列表。 |
read |
- |
|
|
|
hss:overview:getoverviewriskmanagestatistics |
授予权限以获取风险管理,包含风险趋势和类型统计。 |
read |
- |
|
|
|
hss:overview:getoverviewriskscore |
授予权限以查询风险评分结果。 |
read |
- |
|
|
|
hss:overview:getoverviewriskstatistics |
授予权限以查询风险统计,安全风险、安全告警、主动防御。 |
read |
- |
|
|
|
hss:overview:getoverviewtrialsstatistics |
授予权限以试用主机风险统计。 |
read |
- |
|
|
|
hss:antiransomware:getransomwarebackupinfobybackupid |
授予权限以查询指定备份信息。 |
read |
- |
|
|
|
hss:antiransomware:getransomwarehssbackuppolicyinfo |
授予权限以查询备份策略信息。 |
read |
- |
|
|
|
hss:antiransomware:getransomwarebackupstatistics |
授予权限以查询备份统计信息。 |
read |
- |
|
|
|
hss:antiransomware:getransomwareprotectionstatistics |
授予权限以查询防护统计信息。 |
read |
- |
|
|
|
hss:antiransomware:getransomwarevaultinfo |
授予权限以查询备份存储库信息。 |
read |
- |
|
|
|
hss:rasp:getrasppolicydetail |
授予权限以查询防护策略详情。 |
read |
- |
|
|
|
hss:rasp:getraspprotectstatistics |
授予权限以获取防护数据统计。 |
read |
- |
|
|
|
hss:wtp:getraspswitchstatus |
授予权限以查询动态网页防篡改开启状态。 |
read |
host * |
|
|
|
hss:securitycheck:getsecuritycheckconfig |
授予权限以查询安全体检定时配置信息。 |
read |
- |
|
|
|
hss:securitycheck:getsecuritycheckhostreport |
授予权限以查询指定服务器的安全体检报告。 |
read |
host * |
|
|
|
hss:securitycheck:getsecuritycheckoverview |
授予权限以查询安全体检概览信息。 |
read |
- |
|
|
|
hss:securitycheck:getsecuritycheckstatistic |
授予权限以查询安全体检统计信息。 |
read |
- |
|
|
|
hss:safetyreport:getsecurityreport |
授予权限以查询安全报告内容。 |
read |
- |
|
|
|
hss:safetyreport:getsecurityreportsubscription |
授予权限以查询报告订阅的内容。 |
read |
- |
|
|
|
hss:wtp:gettimingoffstatusinfo |
授予权限以查询定时关闭防护开关状态。 |
read |
host * |
|
|
|
hss:wtp:getwtpdashboardprotectstatistics |
授予权限以查询防护数据统计。 |
read |
- |
|
|
|
hss:wtp:getwtpdirectory |
授予权限以查询动态网页防篡改的tomcat bin目录。 |
read |
host * |
|
|
|
hss:wtp:getwtpdirectorymonitoronlystatus |
授予权限以查询只监控不修复开关状态。 |
read |
host * |
|
|
|
hss:wtp:getwtpprivilegedprocesseschildstatus |
授予权限以展示特权进程子进程可信状态。 |
read |
host * |
|
|
|
hss:wtp:getwtpremotebackuphostinfo |
授予权限以查询远端备份服务器信息。 |
read |
host * |
|
|
|
hss:setting:listagentversion |
授予权限以查询agent版本信息列表。 |
list |
- |
|
|
|
hss:container:listcontainernodes |
授予权限以查询容器节点列表。 |
list |
- |
|
|
|
hss:keyfile:listfileevents |
授予权限以获取变更文件列表。 |
list |
- |
|
|
|
hss:keyfile:listfilehosteventdetails |
授予权限以获取某个服务器变更文件信息。 |
list |
host * |
|
|
|
hss:keyfile:listfilehosts |
授予权限以获取云服务器变更列表。 |
list |
- |
|
|
|
hss:host:listhostgroups |
授予权限以查询服务器组列表。 |
list |
- |
|
|
|
hss:setting:listlogincommonip |
授予权限以查询常用登录ip信息。 |
list |
- |
|
|
|
hss:setting:listlogincommonlocation |
授予权限以查询常用登录地信息。 |
list |
- |
|
|
|
hss:setting:listloginwhiteip |
授予权限以查询登录ip白名单。 |
list |
- |
|
|
|
hss:policy:listpolicygroup |
授予权限以查询策略组列表。 |
list |
- |
|
|
|
hss:asset:listporthost |
授予权限以查询资产指纹-端口-服务器列表。 |
list |
- |
|
|
|
hss:asset:listprocesseshost |
授予权限以查询资产指纹-进程-服务器列表。 |
list |
- |
|
|
|
hss:ars:listpwlevent |
授予权限以查询进程白名单事件。 |
list |
- |
|
|
|
hss:ars:listpwlpolicy |
授予权限以查询进程白名单策略列表。 |
list |
- |
|
|
|
hss:ars:listpwlpolicyhost |
授予权限以查询进程白名单策略关联主机列表。 |
list |
- |
|
|
|
hss:ars:listpwlpolicyprocess |
授予权限以查询进程白名单策略识别进程。 |
list |
- |
|
|
|
hss:antiransomware:listransomwarebackedupbyhostid |
授予权限以查询备份列表。 |
list |
host * |
|
|
|
hss:antiransomware:listransomwareoperationlogsbyvaultname |
授予权限以查询备份恢复任务列表。 |
list |
- |
|
|
|
hss:antiransomware:listransomwareprotectionoptionalserver |
授予权限以查询可选防护服务器列表。 |
list |
- |
|
|
|
hss:antiransomware:listransomwareprotectionpolicy |
授予权限以查询防护策略列表。 |
list |
- |
|
|
|
hss:antiransomware:listransomwareprotectionserver |
授予权限以查询勒索防护服务器列表。 |
list |
- |
|
|
|
hss:rasp:listraspcheckfeaturerule |
授予权限以查询检测规则列表。 |
list |
- |
|
|
|
hss:rasp:listraspevents |
授予权限以查询应用防护事件列表。 |
list |
- |
|
|
|
hss:rasp:listrasppolicies |
授予权限以查询防护策略列表。 |
list |
- |
|
|
|
hss:rasp:listraspprotectionservers |
授予权限以查询防护服务器列表。 |
list |
- |
|
|
|
hss:securitycheck:listsecuritycheckhostreporthistory |
授予权限以查询指定服务器的安全体检历史报告列表。 |
list |
host * |
|
|
|
hss:securitycheck:listsecuritycheckhostresult |
授予权限以查询多服务器的安全体检结果列表。 |
list |
- |
|
|
|
hss:safetyreport:listsecurityreport |
授予权限以查询报告总览页列表。 |
list |
- |
|
|
|
hss:safetyreport:listsecurityreporthistoryperiod |
授予权限以查询历史报告统计周期列表。 |
list |
- |
|
|
|
hss:safetyreport:listsecurityreportsendingrecord |
授予权限以查询报告发送记录列表。 |
list |
- |
|
|
|
hss:wtp:listtimingoffconfiginfo |
授予权限以查询定时关闭防护配置列表。 |
list |
host * |
|
|
|
hss:setting:listtwofactorloginhost |
授予权限以查询双因子主机列表。 |
list |
- |
|
|
|
hss:wtp:listwtpbackuphostsinfo |
授予权限以查询远端备份服务器。 |
list |
- |
|
|
|
hss:wtp:listwtphostprotectdirinfo |
授予权限以查询主机防护目录。 |
list |
host * |
|
|
|
hss:wtp:listwtphostprotecthistoryinfo |
授予权限以查询主机静态网页防篡改防护动态。 |
list |
- |
|
|
|
hss:wtp:listwtphostraspprotecthistoryinfo |
授予权限以查询主机动态网页防篡改防护动态。 |
list |
- |
|
|
|
hss:wtp:listwtpprivilegedprocessesinfo |
授予权限以查询特权进程配置。 |
list |
host * |
|
|
|
hss:wtp:listwtpprotecthost |
授予权限以查询防护列表。 |
list |
- |
|
|
|
hss:setting:modifylogincommonip |
授予权限以添加、编辑或删除常用登录ip地址。 |
write |
host * |
|
|
|
hss:setting:modifylogincommonlocation |
授予权限以添加、编辑或删除常用登录地。 |
write |
host * |
|
|
|
hss:setting:modifyloginwhiteip |
授予权限以添加、编辑或删除登录ip白名单。 |
write |
host * |
|
|
|
hss:ars:operatepwlevent |
授予权限以处理事件。 |
write |
- |
|
|
|
hss:ars:relearnpwlpolicy |
授予权限以进行白名单策略重新学习。 |
write |
host * |
|
|
|
hss:overview:resetoverviewriskscore |
授予权限以重置风险评分,重新体检。 |
write |
- |
|
|
|
hss:antiransomware:restoreransomwareduplicationinfo |
授予权限以备份恢复。 |
write |
- |
|
|
|
hss:safetyreport:sendsecurityreport |
授予权限以发送安全报告。 |
write |
- |
|
|
|
hss:setting:setalarmconfig |
授予权限以设置提示信息配置。 |
write |
- |
|
|
|
hss:setting:setmalwarereminders |
授予权限以设置提示信息配置。 |
write |
- |
|
|
|
hss:wtp:setremotewtpbackupinfo |
授予权限以开启关闭远端备份。 |
write |
host * |
|
|
|
hss:wtp:settimingoffswitchinfo |
授予权限以设置定时关闭防护开关状态。 |
write |
host * |
|
|
|
hss:setting:settwofactorloginconfig |
授予权限以设置双因子登录配置。 |
write |
host * |
|
|
|
hss:wtp:setwtpdirectorymonitoronlystatus |
授予权限以设置只监控不修复开关状态。 |
write |
host * |
|
|
|
hss:wtp:setwtpprivilegedprocesseschildstatus |
授予权限以设置特权进程子进程可信状态。 |
write |
host * |
|
|
|
hss:wtp:setwtpprotectionstatusinfo |
授予权限以开启关闭网页防篡改防护。 |
write |
host * |
|
|
|
hss:wtp:setwtpprotectswitch |
授予权限以开启/关闭动态网页防篡改防护。 |
write |
host * |
|
|
|
hss:wtp:setwtpscheduledprotectiondateoffconfiginfo |
授予权限以设置自动关闭防护的频率周期。 |
write |
host * |
|
|
|
hss:securitycheck:startmanualsecuritycheck |
授予权限以启动手动体检。 |
write |
- |
|
|
|
hss:antiransomware:startransomwarebackupsingle |
授予权限以开启单台服务器备份功能。 |
write |
host * |
|
|
|
hss:antiransomware:startransomwareprotection |
授予权限以开启勒索病毒防护。 |
write |
host * |
|
|
|
hss:antiransomware:startransomwareprotectionsingle |
授予权限以开启单台服务器勒索防护。 |
write |
host * |
|
|
|
hss:securitycheck:stopmanualsecuritycheck |
授予权限以取消手动体检。 |
write |
- |
|
|
|
hss:antiransomware:stopransomwareprotection |
授予权限以关闭勒索病毒防护。 |
write |
host * |
|
|
|
hss:container:switchcontainerprotectstatus |
授予权限以切换防护状态。 |
write |
host * |
|
|
|
hss:ars:switchpwlpolicyhost |
授予权限以开启/关闭主机白名单策略。 |
write |
host * |
|
|
|
hss:rasp:switchrasp |
授予权限以开启/关闭应用防护。 |
write |
host * |
|
|
|
hss:safetyreport:switchsecurityreportstatus |
授予权限以修改安全报告开关。 |
write |
- |
|
|
|
hss:wtp:switchwtphostprotectdirinfo |
授予权限以开启/关闭目录防护。 |
write |
host * |
|
|
|
hss:host:uninstallagents |
授予权限以卸载agent。 |
write |
host * |
|
|
|
hss:setting:updatealarmconfig |
授予权限以设置告警配置。 |
write |
- |
|
|
|
hss:antiransomware:updateransomwarebackuppolicyinfo |
授予权限以修改备份策略。 |
write |
- |
|
|
|
hss:antiransomware:updateransomwareprotectionpolicy |
授予权限以修改防护策略。 |
write |
- |
|
|
|
hss:rasp:updaterasppolicy |
授予权限以修改防护策略。 |
write |
- |
|
|
|
hss:securitycheck:updatesecuritycheckconfig |
授予权限以修改安全体检定时配置信息。 |
write |
- |
|
|
|
hss:wtp:updatetimingoffconfiginfo |
授予权限以修改定时关闭防护配置。 |
write |
host * |
|
|
|
hss:wtp:updatewtpbackuphostinfo |
授予权限以添加或修改远端备份服务器。 |
write |
host * |
|
|
|
hss:wtp:updatewtpdirectoryinfo |
授予权限以修改动态网页防篡改的tomcat bin目录。 |
write |
host * |
|
|
|
hss:wtp:updatewtphostprotectdirinfo |
授予权限以修改防护目录。 |
write |
host * |
|
|
|
hss:wtp:updatewtpprivilegedprocessinfo |
授予权限以修改特权进程。 |
write |
host * |
|
|
|
hss:asset:addvalueslevel |
授予权限以关联资产管理-主机管理-资产重要性。 |
write |
host * |
|
|
|
hss:asset:batchmodifyportstatus |
授予权限以修改端口状态。 |
write |
host * |
|
|
|
hss:asset:deletetoolconditionhistory |
授予权限以清除工具的搜索记录(运营工具)。 |
write |
- |
|
|
|
hss:asset:executetool |
授予权限以工具执行搜索(运营工具)。 |
write |
- |
|
|
|
hss:asset:getaccounttop |
授予权限以获取资产管理-概览-账户top。 |
read |
- |
|
|
|
hss:asset:getagentstatisticsstatus |
授予权限以获取资产管理-概览-资产状态-主机agent状态。 |
read |
- |
|
|
|
hss:asset:getassetstatistic |
授予权限以获取资产统计信息,账号、端口、进程等。 |
read |
- |
|
|
|
hss:asset:getassettype |
授予权限以获取资产管理-概览-资产状态-资产分布。 |
read |
- |
|
|
|
hss:asset:getautolaunchtop |
授予权限以获取资产管理-概览-自启动项top。 |
read |
- |
|
|
|
hss:asset:getcommonport |
授予权限以呈现某一端口详细信息。 |
read |
- |
|
|
|
hss:asset:getcontainerprotectionstatus |
授予权限以获取资产管理-概览-资产状态-容器节点防护状态。 |
read |
- |
|
|
|
hss:asset:getcoreconffiletop |
授予权限以获取资产管理-概览-关键配置top。 |
read |
- |
|
|
|
hss:asset:getenvironmenttop |
授予权限以获取资产管理-概览-环境变量top。 |
read |
- |
|
|
|
hss:asset:gethostassetmanualcollectstatus |
授予权限以获取单主机资产指纹立即采集接口的运行状态。 |
read |
host * |
|
|
|
hss:asset:gethostprotectionstatus |
授予权限以获取资产管理-概览-资产状态-agent状态。 |
read |
- |
|
|
|
hss:asset:getjarpackagetop |
授予权限以获取资产管理-概览-jar包top。 |
read |
- |
|
|
|
hss:asset:getkernelmoduletop |
授予权限以获取资产管理-概览-内核模块top。 |
read |
- |
|
|
|
hss:asset:getosstatisticsinfo |
授予权限以获取资产管理-概览-资产状态-操作系统统计信息。 |
read |
- |
|
|
|
hss:asset:getprocesstop |
授予权限以获取资产管理-概览-进程top。 |
read |
- |
|
|
|
hss:asset:getporttop |
授予权限以获取资产管理-概览-端口top。 |
read |
- |
|
|
|
hss:asset:getquotastatisticsinfo |
授予权限以获取资产管理-概览-资产状态-防护配额统计信息。 |
read |
- |
|
|
|
hss:asset:getsoftwaretop |
授予权限以获取资产管理-概览-软件top。 |
read |
- |
|
|
|
hss:asset:getwebappandservicetop |
授予权限以获取资产管理-概览-webappandservicetop。 |
read |
- |
|
|
|
hss:asset:getwebapptop |
授予权限以获取资产管理-概览-web应用top。 |
read |
- |
|
|
|
hss:asset:getwebframeworktop |
授予权限以获取资产管理-概览-web框架top。 |
read |
- |
|
|
|
hss:asset:getwebservicetop |
授予权限以获取资产管理-概览-web服务top。 |
read |
- |
|
|
|
hss:asset:getwebsitetop |
授予权限以获取资产管理-概览-web站点top。 |
read |
- |
|
|
|
hss:asset:listappchangehistories |
授予权限以获取资产指纹-软件信息-历史变动记录。 |
list |
- |
|
|
|
hss:asset:listapps |
授予权限以获取单主机资产指纹-软件。 |
list |
- |
|
|
|
hss:asset:listappstatistics |
授予权限以获取资产指纹-软件信息。 |
list |
- |
|
|
|
hss:asset:listautolaunchchangehistories |
授予权限以获取资产指纹-自启动项-历史变动记录。 |
list |
- |
|
|
|
hss:asset:listautolaunchs |
授予权限以获取单主机资产指纹-自启动项。 |
list |
- |
|
|
|
hss:asset:listautolaunchstatistics |
授予权限以获取资产指纹-自启动项信息。 |
list |
- |
|
|
|
hss:asset:listcoreconffilehostinfo |
授予权限以获取资产管理-资产指纹-系统关键配置文件的服务器列表。 |
list |
- |
|
|
|
hss:asset:listcoreconffileinfo |
授予权限以获取资产管理-主机管理-指纹类型-关键配置。 |
list |
host * |
|
|
|
hss:asset:listcoreconffilestatistics |
授予权限以获取资产管理-资产指纹-系统关键配置文件左侧树。 |
list |
- |
|
|
|
hss:asset:listenvironmenthostinfo |
授予权限以获取资产管理-资产指纹-环境变量的服务器列表(资产指纹右侧服务器列表)。 |
list |
- |
|
|
|
hss:asset:listenvironmentinfo |
授予权限以获取资产管理-主机管理-指纹类型-环境变量。 |
list |
host * |
|
|
|
hss:asset:listenvironmentstatistics |
授予权限以获取资产管理-资产指纹-环境变量文件左侧树。 |
list |
- |
|
|
|
hss:asset:listjarpackagehostinfo |
授予权限以获取资产管理-资产指纹-jar包的服务器列表。 |
list |
- |
|
|
|
hss:asset:listjarpackageinfo |
授予权限以获取资产管理-主机管理-指纹类型-jar包。 |
list |
host * |
|
|
|
hss:asset:listjarpackagestatistics |
授予权限以获取资产管理-资产指纹-jar包左侧树。 |
list |
- |
|
|
|
hss:asset:listkernelmodulehostinfo |
授予权限以获取资产管理-资产指纹-内核模块的服务器列表。 |
list |
- |
|
|
|
hss:asset:listkernelmoduleinfo |
授予权限以获取资产管理-主机管理-指纹类型-内核模块。 |
list |
host * |
|
|
|
hss:asset:listkernelmodulestatistics |
授予权限以获取资产管理-资产指纹-内核模块左侧树。 |
list |
- |
|
|
|
hss:asset:listports |
授予权限以获取单主机资产指纹-开放端口信息。 |
list |
host * |
|
|
|
hss:asset:listportstatistics |
授予权限以获取资产指纹-开放端口信息。 |
list |
- |
|
|
|
hss:asset:listprocesses |
授予权限以获取进程列表。 |
list |
host * |
|
|
|
hss:asset:listprocessstatistics |
授予权限以获取资产指纹-进程信息。 |
list |
- |
|
|
|
hss:asset:listresult |
授予权限以获取执行结果(运营工具)。 |
list |
- |
|
|
|
hss:asset:listtool |
授予权限以获取工具列表(运营工具)。 |
list |
- |
|
|
|
hss:asset:listtoolconditionhistory |
授予权限以获取工具的搜索记录(运营工具)。 |
list |
- |
|
|
|
hss:asset:listuserchangehistories |
授予权限以获取账户变动历史记录信息。 |
list |
- |
|
|
|
hss:asset:listusergroup |
授予权限以获取用户组列表。 |
list |
- |
|
|
|
hss:asset:listusers |
授予权限以获取资产的账号列表。 |
list |
- |
|
|
|
hss:asset:listuserstatistics |
授予权限以获取资产指纹-账号信息。 |
list |
- |
|
|
|
hss:asset:listwebappandservices |
授予权限以获取资产管理-资产指纹-右侧webappandservice资产信息。 |
list |
- |
|
|
|
hss:asset:listwebappandservicestatistics |
授予权限以获取资产管理-资产指纹-左侧webappandservice名称树信息。 |
list |
- |
|
|
|
hss:asset:listwebapphostinfo |
授予权限以获取资产管理-资产指纹-web应用的服务器列表。 |
list |
- |
|
|
|
hss:asset:listwebappinfo |
授予权限以获取资产管理-主机管理-指纹类型-web应用。 |
list |
host * |
|
|
|
hss:asset:listwebappstatistics |
授予权限以获取资产管理-资产指纹-web应用左侧树。 |
list |
- |
|
|
|
hss:asset:listwebframeworkhostinfo |
授予权限以获取资产管理-资产指纹-web框架的服务器列表。 |
list |
- |
|
|
|
hss:asset:listwebframeworkinfo |
授予权限以获取资产管理-主机管理-指纹类型-web框架。 |
list |
host * |
|
|
|
hss:asset:listwebframeworkstatistics |
授予权限以获取资产管理-资产指纹-web框架左侧树。 |
list |
- |
|
|
|
hss:asset:listwebservicehostinfo |
授予权限以获取资产管理-资产指纹-web服务的服务器列表。 |
list |
- |
|
|
|
hss:asset:listwebserviceinfo |
授予权限以获取资产管理-主机管理-指纹类型-web服务。 |
list |
host * |
|
|
|
hss:asset:listwebservicestatistics |
授予权限以获取资产管理-资产指纹-web服务左侧树。 |
list |
- |
|
|
|
hss:asset:listwebsitehostinfo |
授予权限以获取资产管理-资产指纹-web站点的服务器列表。 |
list |
- |
|
|
|
hss:asset:listwebsiteinfo |
授予权限以获取资产管理-主机管理-指纹类型-web站点。 |
list |
host * |
|
|
|
hss:asset:listwebsitestatistics |
授予权限以获取资产管理-资产指纹-web站点左侧树。 |
list |
- |
|
|
|
hss:asset:runhostassetmanualcollect |
授予权限以立即采集单主机资产指纹。 |
write |
host * |
|
|
|
hss:baseline:addsecuritycheckpolicygroup |
授予权限以新建配置检测策略信息。 |
write |
- |
|
|
|
hss:baseline:changecheckrulestate |
授予权限以对未通过的配置检查项进行忽略/取消忽略/修复/验证操作。 |
write |
baseline * |
|
|
|
hss:baseline:deletesecuritycheckpolicygroup |
授予权限以删除指定配置检测策略信息。 |
write |
- |
|
|
|
hss:baseline:exportsecuritycheckreport |
授予权限以按查询结果导出配置检测报告。 |
list |
- |
|
|
|
hss:baseline:getbaselineoverview |
授予权限以查询基线检查的统计数据信息。 |
read |
- |
|
|
|
hss:baseline:getbaselinescanstatus |
授予权限以查询基线检查任务进度。 |
read |
- |
|
|
|
hss:baseline:getbaselinestatistic |
授予权限以查询基线检查的统计数据信息,包括弱口令,口令复杂度,配置检测。 |
read |
- |
|
|
|
hss:baseline:getcheckruledetail |
授予权限以查询配置检查项检测报告。 |
read |
baseline * |
|
|
|
hss:baseline:getcheckrulefixfaildetail |
授予权限以查询检查项修复失败原因。 |
read |
baseline * |
|
|
|
hss:baseline:getdefaultsecuritycheckpolicy |
授予权限以查询配置检测策略的默认基线信息。 |
read |
- |
|
|
|
hss:baseline:getdefaultsecuritycheckpolicydetails |
授予权限以查询基线的详细检查项。 |
read |
- |
|
|
|
hss:baseline:getriskconfigdetail |
授予权限以查询指定安全配置项的检查结果。 |
read |
- |
|
|
|
hss:baseline:listcheckrulehost |
授予权限以查询配置检查项影响到的服务器列表。 |
list |
baseline * |
|
|
|
hss:baseline:listpasswordcomplexity |
授予权限以查询口令复杂度策略检测报告。 |
list |
- |
|
|
|
hss:baseline:listriskconfigcheckrules |
授予权限以查询指定安全配置项的检查项列表。 |
list |
- |
|
|
|
hss:baseline:listriskconfighosts |
授予权限以查询指定安全配置项的受影响服务器列表。 |
list |
- |
|
|
|
hss:baseline:listriskconfigs |
授予权限以查询租户的服务器安全配置检测结果列表。 |
list |
- |
|
|
|
hss:baseline:listsecuritycheckpolicygroup |
授予权限以查询配置检测策略组列表。 |
list |
- |
|
|
|
hss:baseline:listweakpasswordusers |
授予权限以查询弱口令检测结果列表。 |
list |
- |
|
|
|
hss:baseline:runbaselinedetect |
授予权限以手动检测:对策略中选择的主机,进行配置检测和弱口令检测。 |
write |
- |
|
|
|
hss:baseline:updatesecuritycheckpolicygroup |
授予权限以修改指定配置检测策略信息。 |
write |
- |
|
|
|
hss:event:addloginwhitelist |
授予权限以添加登录白名单。 |
write |
- |
|
|
|
hss:event:batchchangeevent |
授予权限以批量处理告警事件。 |
write |
- |
|
|
|
hss:event:changeevent |
授予权限以处理告警事件。 |
write |
event * |
|
|
|
hss:event:changeisolatedfile |
授予权限以恢复已隔离文件。 |
write |
host * |
|
|
|
hss:event:exportalarmwhitelist |
授予权限以导出告警白名单。 |
list |
- |
|
|
|
hss:event:exportemergency |
授予权限以导出应急恶意程序接口。 |
list |
- |
|
|
|
hss:event:getemergencystatistics |
授予权限以获取应急事件统计信息。 |
read |
- |
|
|
|
hss:event:geteventattacktag |
授予权限以查询攻击标识分布统计列表。 |
read |
- |
|
|
|
hss:event:geteventseverity |
授予权限以查询威胁等级统计列表。 |
read |
- |
|
|
|
hss:event:geteventstatistics |
授予权限以查询告警事件统计。 |
read |
- |
|
|
|
hss:event:getmalwareinfo |
授予权限以获取突发恶意程序详情列表。 |
read |
event * |
|
|
|
hss:event:handlemalwareevent |
授予权限以处理恶意程序。 |
write |
event * |
|
|
|
hss:event:importalarmwhitelist |
授予权限以导入告警白名单。 |
write |
- |
|
|
|
hss:event:isolateoperateemergency |
授予权限以开启或关闭隔离箱。 |
write |
- |
|
|
|
hss:event:listalarmwhitelist |
授予权限以查询告警白名单列表。 |
list |
- |
|
|
|
hss:event:listblockedip |
授予权限以查询已拦截ip列表。 |
list |
- |
|
|
|
hss:event:listeventoperates |
授予权限以查询事件支持的处理类型。 |
list |
- |
|
|
|
hss:event:listeventtoprisk |
授予权限以查询top10事件类型统计列表。 |
list |
- |
|
|
|
hss:event:listeventtype |
授予权限以查询事件类型统计列表。 |
list |
- |
|
|
|
hss:event:listfileisolatelist |
授予权限以获取突发恶意程序隔离文件列表。 |
list |
- |
|
|
|
hss:event:listisolatedfile |
授予权限以查询已隔离文件列表。 |
list |
- |
|
|
|
hss:event:listloginwhitelist |
授予权限以查询登录白名单列表。 |
list |
- |
|
|
|
hss:event:listmalware |
授予权限以获取突发恶意程序事件列表。 |
list |
- |
|
|
|
hss:event:listsecurityevents |
授予权限以查入侵事件列表。 |
list |
- |
|
|
|
hss:event:recoverisolatefile |
授予权限以恢复文件隔离箱。 |
write |
- |
|
|
|
hss:event:removealarmwhitelist |
授予权限以删除告警白名单。 |
write |
- |
|
|
|
hss:event:removeloginwhitelist |
授予权限以删除登录白名单。 |
write |
- |
|
|
|
hss:host:associatehostassetvalue |
授予权限以关联资产重要性。 |
write |
host * |
|
|
|
hss:host:associatehostsgroup |
授予权限以分配到组。 |
write |
host * |
|
|
|
hss:host:batchinstallagent |
授予权限以批量安装agent。 |
write |
host * |
|
|
|
hss:host:changehostsgroup |
授予权限以编辑服务器组。 |
write |
- |
|
|
|
hss:host:deletehostsgroup |
授予权限以删除服务器组。 |
write |
- |
|
|
|
hss:host:gethostsstatistics |
授予权限以统计服务器数据。 |
read |
- |
|
|
|
hss:host:listfirewallstatus |
授予权限以查询主机是否开启防火墙。 |
read |
host * |
|
|
|
hss:host:listhostgroupassetvalue |
授予权限以查询资产重要性的服务器组列表。 |
list |
- |
|
|
|
hss:host:listhostsrisk |
授予权限以获取ecs风险状况。 |
read |
host * |
|
|
|
hss:host:listhoststatus |
授予权限以查询云服务器列表。 |
list |
- |
|
|
|
hss:host:listhostsupgrade |
授予权限以获取主机的升级状态。 |
read |
host * |
- |
|
|
- |
|||||
|
hss:host:manualcheckvul |
授予权限以手动检测漏洞。 |
write |
- |
|
|
|
hss:host:switchfirewallstatus |
授予权限以修改防火墙授权状态。 |
write |
host * |
|
|
|
hss:host:switchhostsprotectstatus |
授予权限以切换防护状态。 |
write |
host * |
|
|
|
hss:host:upgradeagent |
授予权限以升级agent1.0到2.0。 |
write |
host * |
- |
|
|
- |
|||||
|
hss:host:upgradeagents |
授予权限以升级agent。 |
write |
host * |
|
|
|
hss:image:batchscanlocalimage |
授予权限以进行本地镜像扫描。 |
write |
- |
|
|
|
hss:image:batchscanprivateimage |
授予权限以批量扫描私有镜像仓库镜像。 |
write |
- |
|
|
|
hss:image:getimagefilesstat |
授予权限以查询镜像文件统计信息。 |
read |
- |
|
|
|
hss:image:getimagelocalvuloverview |
授予权限以查询本地漏洞概览信息。 |
read |
- |
|
|
|
hss:image:getimagevuloverview |
授予权限以查询仓库漏洞概览信息。 |
read |
- |
|
|
|
hss:image:listcfgcheckaffectedimage |
授予权限以查询租户镜像未通过基线项所影响的镜像列表。 |
list |
- |
|
|
|
hss:image:listglobalcfgcheck |
授予权限以查询租户全量配置检测统计结果。 |
list |
- |
|
|
|
hss:image:listglobalmalware |
授予权限以查询租户恶意文件列表。 |
list |
- |
|
|
|
hss:image:listglobalvul |
授予权限以查询租户的漏洞信息。 |
list |
- |
|
|
|
hss:image:listimageapps |
授予权限以查询镜像软件列表。 |
list |
- |
|
|
|
hss:image:listimageappvul |
授予权限以查询软件漏洞列表。 |
list |
- |
|
|
|
hss:image:listimagecfgcheck |
授予权限以查询单个镜像的配置基线检测结果。 |
list |
- |
|
|
|
hss:image:listimagefiles |
授予权限以查询镜像无归属文件列表。 |
list |
- |
|
|
|
hss:image:listimagelocal |
授予权限以查询本地镜像列表。 |
list |
- |
|
|
|
hss:image:listimagemalware |
授予权限以查询镜像恶意文件列表。 |
list |
- |
|
|
|
hss:image:listimagenamespace |
授予权限以查询镜像namespace信息。 |
list |
- |
|
|
|
hss:image:listimagerepository |
授予权限以查询私有镜像仓库镜像列表。 |
list |
- |
|
|
|
hss:image:listimagevul |
授予权限以查询镜像的漏洞信息。 |
list |
- |
|
|
|
hss:image:listinstanceimagevul |
授予权限以查询企业镜像的漏洞信息。 |
list |
- |
|
|
|
hss:image:listlocalimageapp |
授予权限以查询本地镜像软件列表。 |
list |
- |
|
|
|
hss:image:listlocalimageappvuls |
授予权限以查询本地镜像某软件的软件漏洞列表。 |
list |
- |
|
|
|
hss:image:listlocalimagecontainers |
授予权限以查询本地镜像的容器信息。 |
list |
- |
|
|
|
hss:image:listlocalimagehosts |
授予权限以查询本地镜像的主机信息。 |
list |
- |
|
|
|
hss:image:listlocalimagemalware |
授予权限以查询本地镜像的恶意文件信息。 |
list |
- |
|
|
|
hss:image:listlocalimagevuls |
授予权限以查询本地镜像的漏洞信息。 |
list |
- |
|
|
|
hss:image:listlocalvulrepoimage |
授予权限以查询本地镜像漏洞影响的镜像和容器信息。 |
list |
- |
|
|
|
hss:image:listprivateimagerepository |
授予权限以查询私有镜像仓库镜像列表。 |
list |
- |
|
|
|
hss:image:listsharedimagerepository |
授予权限以查询共享镜像仓库镜像列表。 |
list |
- |
|
|
|
hss:image:listvulcve |
授予权限以查询漏洞对应cve信息。 |
list |
- |
|
|
|
hss:image:listvulrepoimage |
授予权限以查询单个漏洞影响的镜像仓库中的镜像信息。 |
list |
- |
|
|
|
hss:image:runimagescan |
授予权限以扫描镜像。 |
write |
- |
|
|
|
hss:image:runimagesynchronizetask |
授予权限以从swr服务同步自由镜像列表。 |
write |
- |
|
|
|
hss:image:runswrimagescan |
授予权限以更新并扫描swr镜像,提供swr访问。 |
write |
- |
|
|
|
hss:image:sharedimagesynchronization |
授予权限以从swr更新他人共享镜像。 |
write |
- |
|
|
|
hss:policy:addpolicygroup |
授予权限以复制主机策略组。 |
write |
policy * |
|
|
|
hss:policy:associatepolicygroup |
授予权限以部署策略。 |
write |
policy * |
|
|
|
host * |
|||||
|
hss:policy:changepolicydetail |
授予权限以修改策略内容。 |
write |
policy * |
|
|
|
hss:policy:changepolicygroup |
授予权限以修改策略组相关内容。 |
write |
policy * |
|
|
|
hss:policy:deletepolicygroup |
授予权限以删除策略组。 |
write |
policy * |
|
|
|
hss:policy:getpolicydetail |
授予权限以查询指定策略详细信息。 |
read |
policy * |
|
|
|
hss:policy:listpolicygroupdetail |
授予权限以查询策略组策略信息列表。 |
list |
policy * |
|
|
|
hss:quota:addresourceinstancetag |
授予权限以单个资源添加资源标签。 |
tagging |
- |
|
|
|
hss:quota:batchcreatetags |
授予权限以批量创建标签。 |
write |
- |
|
|
|
hss:quota:batchdeletetags |
授予权限以批量删除标签。 |
write |
- |
|
|
|
hss:quota:cancelhostsquota |
授予权限以解绑配额。 |
write |
- |
- |
|
|
hss:quota:changetmsresourcetaginfo |
授予权限以批量添加删除资源标签。 |
write |
- |
|
|
|
hss:quota:countresourceinstances |
授予权限以通过标签过滤购买的资源数量。 |
list |
- |
|
|
|
hss:quota:dealorder |
授予权限以订购配额。 |
write |
- |
- |
|
|
hss:quota:deleteresourceinstancetag |
授予权限以删除单个资源下的标签。 |
tagging |
- |
|
|
|
hss:quota:filterresourceinstancelist |
授予权限以通过标签过滤购买的资源列表。 |
list |
- |
|
|
|
hss:quota:getresourceinstancetag |
授予权限以查询单个资源的资源标签。 |
read |
- |
- |
|
|
hss:quota:getresourcequotas |
授予权限以查询配额信息。 |
read |
- |
- |
|
|
hss:quota:gettmsresourcetagsinfo |
授予权限以查询资源标签。 |
read |
- |
- |
|
|
hss:quota:listprojecttags |
授予权限以查询租户当前项目下所有用过的标签。 |
list |
- |
- |
|
|
hss:quota:listquotasdetail |
授予权限以查询配额详情。 |
list |
- |
- |
|
|
hss:quota:listresourceids |
授予权限以批量查询配额id信息。 |
list |
- |
- |
|
|
hss:quota:listtmsresourceinstancesinfo |
授予权限以查询资源实例。 |
list |
- |
|
|
|
hss:quota:upgradeorder |
授予权限以变更规格。 |
write |
- |
- |
|
|
hss:vulnerability:changevulstatus |
授予权限以修改漏洞的状态。 |
write |
host * |
|
|
|
hss:vulnerability:exportemergencyvulnerabilities |
授予权限以导出应急漏洞。 |
list |
- |
|
|
|
hss:vulnerability:exportvulslist |
授予权限以导出漏洞及漏洞影响的主机的相关信息。 |
list |
- |
|
|
|
hss:vulnerability:getcmsvuldetail |
授予权限以查询webcms漏洞基本信息。 |
read |
- |
|
|
|
hss:vulnerability:getemergencysummary |
授予权限以查询应急事件总览。 |
read |
- |
|
|
|
hss:vulnerability:getemergencyvuldetail |
授予权限以查询应急事件漏洞详情。 |
read |
- |
|
|
|
hss:vulnerability:getlinuxvuldetail |
授予权限以查询linux漏洞基本信息。 |
read |
- |
|
|
|
hss:vulnerability:getvulcheckstatus |
授予权限以查询主机漏洞的扫描状态。 |
read |
- |
|
|
|
hss:vulnerability:getvulsummary |
授予权限以查询漏洞统计信息。 |
read |
- |
|
|
|
hss:vulnerability:getwindosvuldetail |
授予权限以查询windows漏洞基本信息。 |
read |
- |
|
|
|
hss:vulnerability:getwindowsvulnum |
授予权限以查询主机windows漏洞的数量。 |
list |
- |
|
|
|
hss:vulnerability:listemergencyvul |
授予权限以查询应急事件漏洞。 |
list |
- |
|
|
|
hss:vulnerability:listhostvuls |
授予权限以查询单台服务器漏洞信息。 |
list |
host * |
|
|
|
hss:vulnerability:listhostvulsummary |
授予权限以查询服务器统计信息和风险服务器top5。 |
list |
- |
|
|
|
hss:vulnerability:listtopvulsummary |
授予权限以查询漏洞top5。 |
list |
- |
|
|
|
hss:vulnerability:listvulhosts |
授予权限以查询单个漏洞影响的云服务器信息。 |
list |
- |
|
|
|
hss:vulnerability:listvulnerabilities |
授予权限以查询漏洞列表。 |
list |
- |
|
|
|
hss:vulnerability:listvulrepairfaileddetail |
授予权限以查询漏洞修复失败信息。 |
list |
host * |
|
|
|
hss:vulnerability:listvultypesummary |
授予权限以查询漏洞类型分布。 |
list |
- |
|
|
|
hss:vulnerability:operateemergency |
授予权限以操作应急事件漏洞。 |
write |
- |
|
|
|
hss:host:getscanstatus |
授予权限以查询手动检测状态。 |
read |
host * |
|
|
|
hss:host:setmanualdetect |
授予权限以下发手动检测。 |
write |
host * |
|
|
|
hss::gettrustservicestatus |
授予权限以获取可信服务状态。 |
read |
- |
- |
- |
|
hss::enabletrustservice |
授予权限以开启可信服务。 |
permission_management |
- |
- |
- |
|
hss::validateadmin |
授予权限以校验当前账号是否是管理员账号(包含组织管理员和委托管理员)。 |
tagging |
- |
- |
- |
|
hss::listaccounts |
授予权限以展示多账号列表。 |
list |
- |
- |
- |
|
hss::batchaddaccounts |
授予权限以批量添加账号。 |
write |
- |
- |
- |
|
hss::deleteaccount |
授予权限以删除账号。 |
write |
- |
- |
- |
|
hss::listorganizationtree |
授予权限以展示多账号树形结构。 |
list |
- |
- |
- |
|
hss::listdelegatedaccounts |
授予权限以查询已委托账号树形结构。 |
list |
- |
- |
- |
|
hss:antiransomware:listbackupvaults |
授予权限以查询备份存储库列表。 |
list |
- |
|
|
|
hss:antiransomware:listransomwareprotectionnodes |
授予权限以查询勒索防护服务器列表。 |
list |
- |
|
|
|
hss:antiransomware:getbackupsstatistics |
授予权限以查询备份统计信息。 |
list |
- |
|
|
|
hss:antiransomware:startsinglebackup |
授予权限以开启单台服务器备份功能。 |
write |
host * |
- |
|
|
- |
|||||
|
hss:antiransomware:getbackuppolicyinfo |
授予权限以查询单个备份策略信息。 |
read |
- |
|
|
|
hss:hostgroup:getoutsidegroupstatus |
授予权限以查询是否支持创建数据中心服务器组。 |
read |
- |
|
|
|
hss:hostgroup:getoutsidehostgroup |
授予权限以查询线下数据中心服务器组。 |
read |
- |
|
|
|
hss:hostgroup:addoutsidehostgroup |
授予权限以创建线下数据中心服务器组。 |
write |
- |
|
|
|
hss:hostgroup:changeoutsidehostgroup |
授予权限以编辑线下数据中心服务器组。 |
write |
- |
|
|
|
hss:images:listimagetag |
授予权限以查询镜像tag版本列表。 |
list |
- |
|
|
|
hss:images:listimagesensitive |
授予权限以查询镜像的敏感信息。 |
list |
- |
|
|
|
hss:images:getfilepathwhitedetail |
授予权限以查询镜像的敏感信息文件路径白名单。 |
read |
- |
|
|
|
hss:images:changefilepathwhitedetail |
授予权限以修改镜像的敏感信息文件路径白名单。 |
write |
- |
|
|
|
hss:images:changesensitiveinfo |
授予权限以操作处理敏感信息。 |
write |
- |
|
|
|
hss:event:listtopeventtype |
授予权限以查询top5事件类型统计列表。 |
list |
- |
|
|
|
hss:vulnerability:getvulscanpolicy |
授予权限以查询漏洞扫描策略。 |
read |
- |
- |
|
|
hss:vulnerability:changevulscanpolicy |
授予权限以修改漏洞扫描策略。 |
write |
host * |
- |
|
|
hss:vulnerability:listvulwhitelist |
授予权限以查询漏洞白名单列表。 |
list |
- |
|
|
|
hss:vulnerability:getvulwhitelistdetail |
授予权限以查询漏洞白名单详情。 |
read |
- |
|
|
|
hss:vulnerability:changevulwhitelist |
授予权限以修改漏洞白名单。 |
write |
host * |
- |
|
|
- |
|||||
|
hss:vulnerability:deletevulwhitelist |
授予权限以删除漏洞白名单。 |
write |
- |
- |
|
|
hss:vulnerability:addvulwhitelist |
授予权限以添加漏洞白名单。 |
write |
host * |
- |
|
|
- |
|||||
|
hss:vulnerability:listvulwhitelistvuloptions |
授予权限以查询添加白名单时的漏洞选项。 |
list |
- |
- |
|
|
hss:vulnerability:listvulscantask |
授予权限以查询漏洞扫描任务列表。 |
list |
- |
|
|
|
hss:vulnerability:listvulscantaskhost |
授予权限以查询漏洞扫描任务对应的主机列表。 |
list |
- |
|
|
|
hss:vulnerability:rescanvulscantask |
授予权限以重新扫描之前漏洞扫描任务中的主机。 |
write |
host * |
- |
|
|
- |
|||||
|
hss:vulnerability:getvulscantaskstatistics |
授予权限以查询漏洞扫描任务的统计数据。 |
read |
- |
|
|
|
hss:vulnerability:listhostvulstatistics |
授予权限以查询漏洞管理统计数据。 |
list |
- |
|
|
|
hss:vulnerability:listvulhostapps |
授予权限以查询漏洞受影响服务器详情-软件列表。 |
list |
host * |
- |
|
|
- |
|||||
|
hss:vulnerability:listvulhostprocess |
授予权限以查询漏洞受影响服务器详情-进程列表。 |
list |
host * |
- |
|
|
- |
|||||
|
hss:vulnerability:listvulhandlehistory |
授予权限以查询漏洞历史处置记录。 |
list |
- |
|
|
|
hss:vulnerability:listvulhosthosts |
授予权限以查询漏洞主机列表。 |
list |
- |
|
|
|
hss:vulnerability:listvulhostvuls |
授予权限以查询紧急修复/未完成修复漏洞。 |
list |
- |
|
|
|
hss:vulnerability:listvulhosthandlevuls |
授予权限以查询今日处理漏洞/累计处理漏洞。 |
list |
- |
|
|
|
hss:image:listimagenoncompliantapp |
授予权限以查询镜像的不合规软件信息。 |
list |
- |
|
|
|
hss:image:batchexportswrvullist |
授予权限以swr镜像仓库漏洞批量导出。 |
write |
- |
|
|
|
hss:image:batchexportlocalvullist |
授予权限以本地镜像漏洞批量导出。 |
write |
- |
|
|
|
hss:image:getextendedweakpassword |
授予权限以查询镜像的自定义弱口令。 |
list |
- |
|
|
|
hss:image:changeextendedweakpassword |
授予权限以修改镜像的自定义弱口令。 |
write |
- |
|
|
|
hss:image:listimagebasicimage |
授予权限以查询镜像的基础镜像信息。 |
list |
- |
|
|
|
hss:image:listimagepwdcomplexity |
授予权限以查询镜像口令复杂度策略检测报告。 |
list |
- |
|
|
|
hss:image:listimageweakpwdusers |
授予权限以查询镜像弱口令检测结果列表。 |
list |
- |
|
|
|
hss:image:listimageriskconfigs |
授予权限以查询镜像安全配置检测结果列表。 |
list |
- |
|
|
|
hss:image:listimageriskconfigcheckrules |
授予权限以查询镜像指定安全配置项的检查项列表。 |
list |
- |
|
|
|
hss:image:getimageriskconfigdetail |
授予权限以查询镜像指定安全配置项的检查结果。 |
read |
- |
|
|
|
hss:image:getimagecheckruledetail |
授予权限以查询镜像配置检查项检测报告。 |
read |
- |
|
|
|
hss:image:getimagebaselinestatistic |
授予权限以查询基线检查的统计数据信息,包括弱口令,口令复杂度,配置检测。 |
read |
- |
|
|
|
hss:event:addsystemuserwhitelist |
授予权限以添加系统用户白名单。 |
write |
- |
|
|
|
hss:event:updatesystemuserwhitelist |
授予权限以修改系统用户白名单。 |
write |
- |
|
|
|
hss:event:listsystemuserwhitelist |
授予权限以查询系统用户白名单。 |
list |
- |
|
|
|
hss:event:removesystemuserwhitelist |
授予权限以删除系统用户白名单。 |
write |
- |
|
|
|
hss:container:saveclusters |
授予权限以同步集群信息。 |
write |
- |
|
|
|
hss:container:listclusterinfo |
授予权限以查询kubernetes集群列表。 |
list |
- |
|
|
|
hss:container:listpodinfo |
授予权限以查询pod基本信息列表。 |
list |
- |
|
|
|
hss:container:showpoddetail |
授予权限以查询pod详细信息。 |
read |
- |
|
|
|
hss:container:listcontainerinfo |
授予权限以查询容器基本信息列表。 |
list |
- |
|
|
|
hss:container:showcontainerdetail |
授予权限以查询容器详细信息。 |
list |
- |
|
|
|
hss:container:listserviceinfo |
授予权限以查询kubernetes服务列表。 |
list |
- |
|
|
|
hss:container:showservicedetail |
授予权限以查询kubernetes服务详情。 |
read |
- |
|
|
|
hss:container:listendpointinfo |
授予权限以查询kubernetes端点列表。 |
list |
- |
|
|
|
hss:container:showendpointdetail |
授予权限以查询kubernetes端点详情。 |
read |
- |
|
|
|
hss:container:listdeployments |
授予权限以查询kubernetes无状态负载列表。 |
list |
- |
|
|
|
hss:container:liststatefulsets |
授予权限以查询kubernetes有状态负载列表。 |
list |
- |
|
|
|
hss:container:listdaemonsets |
授予权限以查询kubernetes守护进程列表。 |
list |
- |
|
|
|
hss:container:listjobs |
授予权限以查询kubernetes普通任务列表。 |
list |
- |
|
|
|
hss:container:listcronjobs |
授予权限以查询kubernetes定时任务列表。 |
list |
- |
|
|
|
hss:vulnerability:showvulaffectedstatics |
授予权限以统计漏洞受影响服务器数量。 |
list |
- |
|
|
|
hss:vulnerability:listvulhandletask |
授予权限以查询漏洞处置任务列表。 |
list |
- |
|
|
|
hss:vulnerability:listvulhandletaskdetail |
授予权限以查询漏洞处置任务的详情列表。 |
list |
- |
|
|
|
hss:container:isolatek8scontainer |
授予权限以修改容器的运行状态。 |
write |
- |
|
|
|
hss:container:getnetworkstatistics |
授予权限以查询容器防火墙统计状态。 |
list |
- |
|
|
|
hss:container:getclusters |
授予权限以查询集群列表。 |
list |
- |
|
|
|
hss:container:getclusternetworkinfo |
授予权限以查询集群网络信息。 |
read |
- |
|
|
|
hss:container:getclusterpolicylist |
授予权限以查询容器网络策略列表。 |
list |
- |
|
|
|
hss:container:deletepolicy |
授予权限以删除容器网络策略。 |
write |
- |
|
|
|
hss:container:createpolicy |
授予权限以创建容器网络策略。 |
write |
- |
|
|
|
hss:container:updatepolicy |
授予权限以更新容器网络策略。 |
write |
- |
|
|
|
hss:container:syncclusterpolicylist |
授予权限以同步容器网络策略。 |
read |
- |
|
|
|
hss:container:syncclusterlist |
授予权限以同步集群命名空间信息。 |
read |
- |
|
|
|
hss:container:getnamespacelist |
授予权限以查询集群命名空间列表。 |
list |
- |
|
|
|
hss:container:getnodelist |
授予权限以查询集群节点列表。 |
list |
- |
|
|
|
hss:container:syncclusternodelist |
授予权限以同步集群节点。 |
read |
- |
|
|
|
hss:vulnerability:getvulscantaskestimatedtime |
授予权限以查询漏洞扫描的预估时间。 |
read |
- |
|
|
|
hss:antiransomware:addransomwareprotectionpolicy |
授予权限以添加勒索防护策略。 |
write |
- |
|
|
|
hss:antiransomware:associatebackuppolicy |
授予权限以将备份策略绑定存储库。 |
write |
- |
|
|
|
hss:antiransomware:listbackuppolicy |
授予权限以查询备份策略列表。 |
list |
- |
|
|
|
hss:antiransomware:associateprotectionpolicy |
授予权限以切换勒索防护策略。 |
write |
- |
|
|
|
hss:antiransomware:batchstartprotection |
授予权限以开启勒索防护。 |
write |
- |
|
|
|
hss:event:geteventattck |
授予权限以查询att&ck攻击阶段统计列表。 |
list |
event * |
- |
|
|
- |
|||||
|
hss:event:downloadeventsourcefile |
授予权限以下载告警源文件。 |
list |
event * |
- |
|
|
- |
|||||
|
hss:overview:showsecurityscore |
授予权限以查询安全评分。 |
list |
- |
|
|
|
hss:overview:listsecurityrisk |
授予权限以查询安全风险列表。 |
list |
- |
|
|
|
hss:overview:showquotahoststatistics |
授予权限以查询主机配额统计信息。 |
list |
- |
|
|
|
hss:overview:showagentstatistics |
授予权限以查询agent待升级,在线离线数量。 |
list |
- |
|
|
|
hss:overview:showhotinformation |
授予权限以查询热点资讯。 |
list |
- |
|
|
|
hss:overview:showsecurityrisk |
授予权限以查询安全风险信息。 |
list |
- |
|
|
|
hss:overview:showprotectstatistics |
授予权限以查询守护天数,病毒库更新时间,漏洞库更新时间,各模块累计次数。 |
list |
- |
|
|
|
hss:overview:showstatistics |
授予权限以查询勒索病毒防治开启数量,应用防护开启数量,网页防篡改开启数量,双因子认证开启数量,支持双因子认证开启数量,隔离文件数量。 |
list |
- |
|
|
|
hss:event:listeventhandlehistory |
授予权限以查询历史事件处置列表。 |
list |
event * |
- |
|
|
- |
|||||
|
hss:image:listswrimagerepository |
授予权限以查询swr镜像仓库镜像列表。 |
list |
- |
|
|
|
hss:image:batchscanswrimage |
授予权限以镜像仓库镜像批量扫描。 |
write |
- |
|
|
|
hss:image:vulnerabilities |
授予权限以查询镜像的漏洞信息。 |
list |
- |
|
|
|
hss:image:listvulnerabilitycve |
授予权限以漏洞对应cve信息。 |
list |
- |
|
|
|
hss:image:listimageriskconfigrules |
授予权限以查询镜像指定安全配置项的检查项列表。 |
list |
- |
|
|
|
hss:image:runimagesynchronize |
授予权限以从swr服务同步镜像列表。 |
write |
- |
|
|
|
hss:event:listeventforensic |
授予权限以查询事件取证信息。 |
list |
event * |
- |
|
|
- |
|||||
|
hss:event:listsimilarhandledevents |
授予权限以查询相似已处置的告警记录。 |
list |
event * |
- |
|
|
- |
|||||
|
hss:event:listsameevent |
授予权限以查询相同告警。 |
list |
event * |
- |
|
|
- |
|||||
|
hss:container:getpolicies |
授予权限以查询策略列表。 |
list |
- |
|
|
|
hss:container:getpolicydetail |
授予权限以查询策略详情。 |
list |
- |
|
|
|
hss:container:getoverview |
授予权限以查询集群防护总览。 |
list |
- |
|
|
|
hss:container:getprotectevents |
授予权限以查询集群防护事件。 |
list |
- |
|
|
|
hss:container:getprotectclusters |
授予权限以查询集群防护信息。 |
list |
- |
|
|
|
hss:container:changeprotectstatus |
授予权限以改变集群防护状态。 |
write |
- |
|
|
|
hss:container:addwhiteimage |
授予权限以加入镜像白名单。 |
write |
- |
|
|
|
hss:container:listdefaultpolicy |
授予权限以查询默认策略模板。 |
list |
- |
|
|
|
hss:container:listprotectionitem |
授予权限以查询防护范围。 |
list |
- |
|
|
|
hss:vulnerability:getvulbackupstatistics |
授予权限以查询漏洞处理对应主机的备份相关统计信息。 |
read |
- |
|
|
|
hss:vulnerability:listvulhostvaults |
授予权限以查询漏洞处理对应的主机存储库的列表。 |
list |
- |
|
|
|
hss:vulnerability:listvulhostbackups |
授予权限以查询可回滚的备份列表。 |
list |
host * |
|
|
|
hss:vulnerability:restorevulhostbackup |
授予权限以用备份进行回滚。 |
write |
- |
|
|
|
hss:event:exportevent |
授予权限以导出事件告警。 |
write |
event * |
- |
|
|
- |
|||||
|
hss:event:queryexporttask |
授予权限以查询导出事件告警任务。 |
read |
event * |
- |
|
|
- |
|||||
|
hss:event:downloadevent |
授予权限以下载事件告警。 |
read |
event * |
- |
|
|
- |
|||||
|
hss:ars:createappwhitelistpolicy |
授予权限以创建应用进程白名单策略。 |
write |
host * |
- |
|
|
- |
|||||
|
hss:ars:listappwhitelistpolicy |
授予权限以查询应用进程白名单策略列表。 |
list |
- |
|
|
|
hss:ars:changeappwhitelistpolicy |
授予权限以修改应用进程白名单策略。 |
write |
host * |
- |
|
|
- |
|||||
|
hss:ars:deleteappwhitelistpolicy |
授予权限以删除应用进程白名单策略。 |
write |
- |
|
|
|
hss:ars:showappwhitelistpolicy |
授予权限以查询应用进程白名单策略信息。 |
list |
- |
|
|
|
hss:ars:switchappwhitelistpolicyhost |
授予权限以修改应用进程白名单策略防护状态。 |
write |
host * |
- |
|
|
- |
|||||
|
hss:ars:addappwhitelistpolicyhost |
授予权限以添加主机到应用进程白名单策略。 |
write |
host * |
- |
|
|
- |
|||||
|
hss:ars:listappwhitelistpolicyhost |
授予权限以查询应用进程白名单策略的主机列表。 |
list |
- |
|
|
|
hss:ars:deleteappwhitelistpolicyhost |
授予权限以删除应用进程白名单策略的主机。 |
write |
host * |
- |
|
|
- |
|||||
|
hss:ars:listappwhitelisthoststatus |
授予权限以查询应用进程白名单策略的可选服务器列表。 |
list |
- |
|
|
|
hss:ars:listappwhitelistpolicyprocess |
授予权限以查询应用进程白名单策略的进程列表。 |
list |
- |
|
|
|
hss:ars:changeappwhitelistpolicyprocessstatus |
授予权限以修改应用进程白名单策略的进程可信状态。 |
write |
- |
|
|
|
hss:ars:addappwhitelistpolicyprocess |
授予权限以添加进程到应用进程白名单策略。 |
write |
host * |
- |
|
|
- |
|||||
|
hss:ars:listappwhitelistpolicyprocessextend |
授予权限以查询应用进程白名单策略的进程扩展列表。 |
list |
host * |
- |
|
|
- |
|||||
|
hss:ars:exportappwhitelistpolicyprocess |
授予权限以导出应用进程白名单策略的进程列表。 |
list |
host * |
- |
|
|
- |
|||||
|
hss:ars:switchappwhitelistpolicylearnstatus |
授予权限以修改应用进程白名单策略学习状态。 |
write |
host * |
- |
|
|
- |
|||||
|
hss:ars:showappwhitelistagentstatics |
授予权限以查询不支持应用进程控制功能的旗舰版主机数量。 |
list |
- |
|
|
|
hss:ars:listappwhitelistevent |
授予权限以查询应用进程控制的可疑进程事件列表。 |
list |
- |
|
|
|
hss:container:deleteselfbuildk8sclusterdaemonsetinfo |
授予权限以删除询自建集群daemonset。 |
write |
- |
|
|
|
hss:container:saveselfbuildk8sclusterdaemonsetinfo |
授予权限以保存自建集群daemonset。 |
write |
- |
|
|
|
hss:container:showselfbuildk8sclusterdaemonsetinfo |
授予权限以查询自建集群daemonset。 |
read |
- |
|
|
|
hss:container:listselfbuildk8sclusterinfo |
授予权限以查询自建kubernetes集群列表。 |
list |
- |
|
|
|
hss:container:createdaemonset |
授予权限以创建cce集群daemonset。 |
write |
- |
|
|
|
hss:vulnerability:listvulrepaircmds |
授予权限以查询漏洞修复命令。 |
list |
- |
|
|
|
hss:vulnerability:listurgentvulnerabilities |
授予权限以查询应急漏洞列表。 |
list |
- |
|
|
|
hss:antivirus:createantivirustask |
授予权限以创建病毒查杀任务。 |
write |
host * |
- |
|
|
- |
|||||
|
hss:antivirus:listantivirustask |
授予权限以查询病毒查杀任务列表。 |
list |
- |
|
|
|
hss:antivirus:switchantivirustask |
授予权限以取消病毒查杀任务。 |
write |
host * |
- |
|
|
- |
|||||
|
hss:antivirus:listantivirushost |
授予权限以查询病毒查杀可选服务器列表。 |
list |
- |
|
|
|
hss:antivirus:createantiviruspolicy |
授予权限以创建自定义查杀策略。 |
write |
host * |
- |
|
|
- |
|||||
|
hss:antivirus:listantiviruspolicy |
授予权限以查询自定义查杀策略列表。 |
list |
- |
|
|
|
hss:antivirus:listantivirusresult |
授予权限以查询病毒查杀结果列表。 |
list |
- |
|
|
|
hss:antivirus:operateantivirusresult |
授予权限以处置病毒查杀结果。 |
write |
- |
|
|
|
hss:antivirus:exportantivirusresult |
授予权限以导出病毒查杀结果。 |
write |
- |
|
|
|
hss:antivirus:showantivirusstatistic |
授予权限以查询病毒查杀统计信息。 |
list |
- |
|
|
|
hss:image:showimagefullscanprogress |
授予权限以查询镜像全量扫描进展。 |
list |
- |
|
|
|
hss:host:changehostignorestatus |
授予权限以忽略或取消忽略主机。 |
write |
host * |
- |
|
|
- |
|||||
|
hss:host:listignorehosts |
授予权限以查询已忽略主机。 |
list |
host * |
- |
|
|
- |
|||||
|
hss:image:batchexportbaselinetask |
授予权限以导出镜像基线检查结果。 |
write |
- |
|
|
|
hss:image:showimagesecurityreportstatistic |
授予权限以查询镜像安全报告导出统计。 |
write |
- |
|
|
|
hss:vulnerability:exportvuls |
授予权限以创建漏洞导出任务。 |
write |
- |
|
|
|
hss:exporttask:queryexporttask |
授予权限以查询导出任务。 |
list |
- |
|
|
|
hss:file:downloadexportedfile |
授予权限以下载文件。 |
list |
- |
|
|
|
hss:image:listglobalvulnerabilities |
授予权限以查询租户的漏洞信息。 |
list |
- |
|
|
|
hss:image:listvulnerabilityimages |
授予权限以查询单个漏洞影响的镜像仓库中的镜像信息。 |
list |
- |
|
|
|
hss:setting:getplugininstallscript |
授予权限以查询服务器安装的插件信息。 |
list |
- |
|
|
|
hss:setting:getpluginlist |
授予权限以查询插件安装指南信息。 |
list |
- |
|
|
|
hss:setting:getautoopenquotastatus |
授予权限以查询自动绑定配额开关状态。 |
read |
- |
|
|
|
hss:setting:changeautoopenquotastatus |
授予权限以修改自动绑定配额开关状态。 |
write |
- |
|
|
|
hss:image:batchexportswrvultask |
授予权限以导出swr镜像漏洞结果。 |
write |
- |
|
|
|
hss:image:batchexportlocalvultask |
授予权限以导出本地镜像漏洞结果。 |
write |
- |
|
|
|
hss:vulnerability:exportvulreport |
授予权限以导出html格式的漏洞报告。 |
list |
- |
|
|
|
hss:vulnerability:getvulreportdata |
授予权限以获取pdf漏洞报告的数据。 |
list |
- |
|
|
|
hss:setting:getagentautoupgradestatus |
授予权限以查询agent自动升级开关状态。 |
read |
- |
|
|
|
hss:setting:changeagentautoupgradestatus |
授予权限以修改agent自动升级开关状态。 |
write |
- |
|
|
|
hss:quota:showproductdataofferinginfos |
授予权限以查询商品信息。 |
list |
- |
|
|
|
hss:image:listlocalimageappinfo |
授予权限以查询本地镜像软件列表。 |
list |
- |
|
|
|
hss:image:listlocalimageappvulnerabilities |
授予权限以查询本地镜像单个软件漏洞列表。 |
list |
- |
|
|
|
hss:antiransomware:getransomwareprotectionstatus |
授予权限以查询勒索防护状态。 |
list |
- |
|
|
|
hss:antiransomware:getautodeployagentlist |
授予权限以查询自动开启勒索防护的主机。 |
list |
- |
- |
|
|
hss:antiransomware:updateautodeployagent |
授予权限以更新自动开启勒索防护的主机。 |
write |
- |
- |
|
|
hss:vulnerability:getvulindividualstatistics |
授予权限以查询漏洞指定统计数据。 |
read |
- |
|
|
|
hss:vulnerability:getvulaffectinfo |
授予权限以查询漏洞影响的主机信息或主机下的漏洞信息。 |
read |
- |
|
|
|
hss:event:deleteisolatedfile |
授予权限以删除隔离箱文件。 |
write |
host * |
- |
|
|
- |
|||||
|
hss:antivirus:listantivirushandlehistory |
授予权限以查询病毒查杀历史处置记录。 |
list |
- |
|
|
|
hss:decoyport:showstatistics |
授予权限以查看端口蜜罐防护的统计信息。 |
read |
- |
|
|
|
hss:decoyport:showautobind |
授予权限以查看端口蜜罐的自动绑定状态。 |
read |
- |
|
|
|
hss:decoyport:switchautobind |
授予权限以修改端口蜜罐的自动绑定状态。 |
write |
- |
|
|
|
hss:decoyport:showhostlist |
授予权限以查看端口蜜罐策略的防护主机列表。 |
list |
- |
|
|
|
hss:decoyport:listpolicy |
授予权限以查看端口蜜罐的策略列表。 |
list |
- |
|
|
|
hss:decoyport:listavailablehost |
授予权限以查看支持开启端口蜜罐的主机列表。 |
list |
- |
|
|
|
hss:decoyport:switchhostpolicy |
授予权限以切换主机的端口蜜罐防护策略。 |
write |
- |
|
|
|
hss:decoyport:deletehostpolicy |
授予权限以关闭主机的端口蜜罐防护策略。 |
write |
- |
|
|
|
hss:decoyport:createpolicy |
授予权限以新增端口蜜罐策略。 |
write |
- |
|
|
|
hss:decoyport:modifypolicy |
授予权限以编辑端口蜜罐防护策略。 |
write |
- |
|
|
|
hss:decoyport:showpolicydetails |
授予权限以查看端口蜜罐策略详情。 |
read |
- |
|
|
|
hss:decoyport:deletepolicy |
授予权限以删除端口蜜罐策略。 |
write |
- |
|
|
|
hss:decoyport:switchpolicy |
授予权限以启用或关闭端口蜜罐策略。 |
write |
- |
|
|
|
hss:exporttask:querylatestexporttaskbytype |
授予权限以查询最近导出任务。 |
read |
- |
|
|
|
hss:container:createsecuritygrouppolicy |
授予权限以创建安全组策略。 |
write |
- |
|
|
|
hss:container:updatesecuritygrouppolicy |
授予权限以更新安全组策略。 |
write |
- |
|
|
|
hss:container:getsecuritygrouppolicylist |
授予权限以查询安全组策略列表。 |
list |
- |
|
|
|
hss:container:deletesecuritygrouppolicy |
授予权限以删除安全组策略。 |
write |
- |
|
|
|
hss:container:syncsecuritygrouppolicy |
授予权限以同步集群下安全组策略。 |
read |
- |
|
|
|
hss:container:getworkloadlist |
授予权限以查询工作负载列表。 |
list |
- |
|
|
|
hss:container:getsecuritygrouplist |
授予权限以查询安全组列表。 |
list |
- |
|
hss的api通常对应着一个或多个授权项。表2展示了api与授权项的关系,以及该api需要依赖的授权项。
|
api |
对应的授权项 |
依赖的授权项 |
|---|---|---|
|
post /v5/{project_id}/host-management/groups |
hss:host:addhostsgroup |
eps:enterpriseprojects:list |
|
put /v5/{project_id}/pwl/{policy_id}/host |
hss:ars:addpwlpolicyhost |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/rasp/policy |
hss:rasp:addrasppolicy |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/report/security-report |
hss:safetyreport:addsecurityreport |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/wtp/{host_id}/timing-off-config |
hss:wtp:addtimingoffconfiginfo |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/wtp/{host_id}/protect-directories |
hss:wtp:addwtphostprotectdirinfo |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/wtp/{host_id}/privileged-process |
hss:wtp:addwtpprivilegedprocessinfo |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/setting/virus-kill |
hss:setting:changeautokillvirusstatus |
eps:enterpriseprojects:list |
|
put /v5/{project_id}/event/blocked-ip |
hss:event:changeblockedip |
eps:enterpriseprojects:list |
|
put /v5/{project_id}/setting/malware/collect |
hss:setting:changemalwarecollectstatus |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/pwl/policy |
hss:ars:changepwlpolicy |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/pwl/{policy_id}/process |
hss:ars:changepwlpolicyprocessstatus |
eps:enterpriseprojects:list |
|
put /v5/{project_id}/report/security-report |
hss:safetyreport:changesecurityreport |
eps:enterpriseprojects:list |
|
put /v5/{project_id}/pwl/policy |
hss:ars:createpwlpolicy |
eps:enterpriseprojects:list |
|
delete /v5/{project_id}/pwl/policy |
hss:ars:deletepwlpolicy |
eps:enterpriseprojects:list |
|
delete /v5/{project_id}/pwl/{policy_id}/host |
hss:ars:deletepwlpolicyhost |
eps:enterpriseprojects:list |
|
delete /v5/{project_id}/ransomware/duplication/{backup_id} |
hss:antiransomware:deleteransomwareduplicationinfo |
eps:enterpriseprojects:list |
|
delete /v5/{project_id}/ransomware/protection/policy |
hss:antiransomware:deleteransomwareprotectionpolicy |
eps:enterpriseprojects:list |
|
delete /v5/{project_id}/rasp/policy |
hss:rasp:deleterasppolicy |
eps:enterpriseprojects:list |
|
delete /v5/{project_id}/report/security-report |
hss:safetyreport:deletesecurityreport |
eps:enterpriseprojects:list |
|
delete /v5/{project_id}/wtp/{host_id}/timing-off-config |
hss:wtp:deletetimingoffconfiginfo |
eps:enterpriseprojects:list |
|
delete /v5/{project_id}/wtp/{host_id}/protect-directories |
hss:wtp:deletewtphostprotectdirinfo |
eps:enterpriseprojects:list |
|
delete /v5/{project_id}/wtp/{host_id}/privileged-process |
hss:wtp:deletewtpprivilegedprocessinfo |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/setting/agent-install-script |
hss:setting:getagentinstallscript |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/setting/alarm-config |
hss:setting:getalarmconfig |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/rasp/{host_id}/status |
hss:rasp:getappraspswitchstatus |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/setting/virus-kill |
hss:setting:getautokillvirusstatus |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/container/node-statistics |
hss:container:getcontainernodestatistics |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/files/statistic |
hss:keyfile:getfilestatistic |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/setting/malware/collect |
hss:setting:getmalwarecollectstatus |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/setting/malware/reminders |
hss:setting:getmalwarereminders |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/security-check/manual-check/status |
hss:securitycheck:getmanualsecuritycheckstatus |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/overview/asset/groups/statistics |
hss:overview:getoverviewassetgroupsstatistics |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/overview/asset/os/statistics |
hss:overview:getoverviewassetosstatistics |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/overview/asset/statistics |
hss:overview:getoverviewassetstatistics |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/overview/risk/attck-mitre |
hss:overview:getoverviewattckmitre |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/overview/risk/defense/statistics |
hss:overview:getoverviewdefensestatistics |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/overview/risk/protection/statistics |
hss:overview:getoverviewprotectionstatusstatistics |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/overview/quota/statistics |
hss:overview:getoverviewquotastatistics |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/overview/risk/lists |
hss:overview:getoverviewrisklists |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/overview/risk/manage/statistics |
hss:overview:getoverviewriskmanagestatistics |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/overview/risk/score |
hss:overview:getoverviewriskscore |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/overview/risk/event/statistics |
hss:overview:getoverviewriskstatistics |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/overview/trial/statistic |
hss:overview:getoverviewtrialsstatistics |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/ransomware/backup/{backup_id}/detail |
hss:antiransomware:getransomwarebackupinfobybackupid |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/backup/policy |
hss:antiransomware:getransomwarehssbackuppolicyinfo |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/ransomware/statistics/backup |
hss:antiransomware:getransomwarebackupstatistics |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/ransomware/statistics/protection |
hss:antiransomware:getransomwareprotectionstatistics |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/ransomware/backup/vault |
hss:antiransomware:getransomwarevaultinfo |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/rasp/policy/detail |
hss:rasp:getrasppolicydetail |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/rasp/statistics |
hss:rasp:getraspprotectstatistics |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/wtp/{host_id}/rasp/status |
hss:wtp:getraspswitchstatus |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/security-check/config |
hss:securitycheck:getsecuritycheckconfig |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/security-check/host-report/{host_id} |
hss:securitycheck:getsecuritycheckhostreport |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/security-check/overview |
hss:securitycheck:getsecuritycheckoverview |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/security-check/statistic |
hss:securitycheck:getsecuritycheckstatistic |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/report/security-report |
hss:safetyreport:getsecurityreport |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/report/report-subscription |
hss:safetyreport:getsecurityreportsubscription |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/wtp/{host_id}/timing-off/status |
hss:wtp:gettimingoffstatusinfo |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/wtp/statistics |
hss:wtp:getwtpdashboardprotectstatistics |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/wtp/{host_id}/rasp_path |
hss:wtp:getwtpdirectory |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/wtp/{host_id}/monitor-only/status |
hss:wtp:getwtpdirectorymonitoronlystatus |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/webtamper/static/{host_id}/privileged-child/status |
hss:wtp:getwtpprivilegedprocesseschildstatus |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/wtp/{host_id}/backup-host |
hss:wtp:getwtpremotebackuphostinfo |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/setting/agent-version |
hss:setting:listagentversion |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/container/nodes |
hss:container:listcontainernodes |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/files/change-files |
hss:keyfile:listfileevents |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/{host_id}/files/change-files |
hss:keyfile:listfilehosteventdetails |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/files/change-host |
hss:keyfile:listfilehosts |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/host-management/groups |
hss:host:listhostgroups |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/setting/login-common-ip |
hss:setting:listlogincommonip |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/setting/login-common-location |
hss:setting:listlogincommonlocation |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/setting/login-white-ip |
hss:setting:listloginwhiteip |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/policy/groups |
hss:policy:listpolicygroup |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/ports/detail |
hss:asset:listporthost |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/processes/detail |
hss:asset:listprocesseshost |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/pwl/event |
hss:ars:listpwlevent |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/pwl/policy |
hss:ars:listpwlpolicy |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/pwl/{policy_id}/host |
hss:ars:listpwlpolicyhost |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/pwl/{policy_id}/process |
hss:ars:listpwlpolicyprocess |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/ransomware/backup/{host_id} |
hss:antiransomware:listransomwarebackedupbyhostid |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/ransomware/backup/operation-logs |
hss:antiransomware:listransomwareoperationlogsbyvaultname |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/ransomware/optional/server |
hss:antiransomware:listransomwareprotectionoptionalserver |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/ransomware/protection/policy |
hss:antiransomware:listransomwareprotectionpolicy |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/ransomware/server |
hss:antiransomware:listransomwareprotectionserver |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/rasp/rule |
hss:rasp:listraspcheckfeaturerule |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/rasp/events |
hss:rasp:listraspevents |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/rasp/policies |
hss:rasp:listrasppolicies |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/rasp/servers |
hss:rasp:listraspprotectionservers |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/security-check/host-report/history/{host_id} |
hss:securitycheck:listsecuritycheckhostreporthistory |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/security-check/host-results |
hss:securitycheck:listsecuritycheckhostresult |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/report/report-list |
hss:safetyreport:listsecurityreport |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/report/period-list |
hss:safetyreport:listsecurityreporthistoryperiod |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/report/sending-list |
hss:safetyreport:listsecurityreportsendingrecord |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/wtp/{host_id}/timing-off-config |
hss:wtp:listtimingoffconfiginfo |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/setting/two-factor-login/hosts |
hss:setting:listtwofactorloginhost |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/wtp/backup-hosts |
hss:wtp:listwtpbackuphostsinfo |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/wtp/{host_id}/protect-directories |
hss:wtp:listwtphostprotectdirinfo |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/webtamper/static/protect-history |
hss:wtp:listwtphostprotecthistoryinfo |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/webtamper/rasp/protect-history |
hss:wtp:listwtphostraspprotecthistoryinfo |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/wtp/{host_id}/privileged-process |
hss:wtp:listwtpprivilegedprocessesinfo |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/webtamper/hosts |
hss:wtp:listwtpprotecthost |
|
|
post /v5/{project_id}/setting/login-common-ip |
hss:setting:modifylogincommonip |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/setting/login-common-location |
hss:setting:modifylogincommonlocation |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/setting/login-white-ip |
hss:setting:modifyloginwhiteip |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/pwl/event/operate |
hss:ars:operatepwlevent |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/pwl/{policy_id}/relearn |
hss:ars:relearnpwlpolicy |
eps:enterpriseprojects:list |
|
put /v5/{project_id}/overview/risk/score |
hss:overview:resetoverviewriskscore |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/ransomware/duplication/{backup_id}/restore |
hss:antiransomware:restoreransomwareduplicationinfo |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/report/sending |
hss:safetyreport:sendsecurityreport |
eps:enterpriseprojects:list |
|
put /v5/{project_id}/setting/reminders-config |
hss:setting:setalarmconfig |
eps:enterpriseprojects:list |
|
put /v5/{project_id}/setting/malware/reminders |
hss:setting:setmalwarereminders |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/wtp/{host_id}/set-remote-backup |
hss:wtp:setremotewtpbackupinfo |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/wtp/{host_id}/timing-off/status |
hss:wtp:settimingoffswitchinfo |
eps:enterpriseprojects:list |
|
put /v5/{project_id}/setting/two-factor-login/config |
hss:setting:settwofactorloginconfig |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/wtp/{host_id}/monitor-only/status |
hss:wtp:setwtpdirectorymonitoronlystatus |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/webtamper/static/{host_id}/privileged-child/status |
hss:wtp:setwtpprivilegedprocesseschildstatus |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/webtamper/static/status |
hss:wtp:setwtpprotectionstatusinfo |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/webtamper/rasp/status |
hss:wtp:setwtpprotectswitch |
eps:enterpriseprojects:list |
|
put /v5/{project_id}/wtp/{host_id}/date-off-config |
hss:wtp:setwtpscheduledprotectiondateoffconfiginfo |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/security-check/manual-check/start |
hss:securitycheck:startmanualsecuritycheck |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/ransomware/backup/open/{host_id} |
hss:antiransomware:startransomwarebackupsingle |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/ransomware/protection/open |
hss:antiransomware:startransomwareprotection |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/ransomware/protection/open/{host_id} |
hss:antiransomware:startransomwareprotectionsingle |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/security-check/manual-check/stop |
hss:securitycheck:stopmanualsecuritycheck |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/ransomware/protection/close |
hss:antiransomware:stopransomwareprotection |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/container/switch-version |
hss:container:switchcontainerprotectstatus |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/pwl/{policy_id}/host |
hss:ars:switchpwlpolicyhost |
eps:enterpriseprojects:list |
|
put /v5/{project_id}/rasp/status |
hss:rasp:switchrasp |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/report/report-status |
hss:safetyreport:switchsecurityreportstatus |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/wtp/{host_id}/protect-directories/status |
hss:wtp:switchwtphostprotectdirinfo |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/host-management/uninstall |
hss:host:uninstallagents |
eps:enterpriseprojects:list |
|
put /v5/{project_id}/setting/alarm-config |
hss:setting:updatealarmconfig |
eps:enterpriseprojects:list |
|
put /v5/{project_id}/backup/policy |
hss:antiransomware:updateransomwarebackuppolicyinfo |
eps:enterpriseprojects:list |
|
put /v5/{project_id}/ransomware/protection/policy |
hss:antiransomware:updateransomwareprotectionpolicy |
eps:enterpriseprojects:list |
|
put /v5/{project_id}/rasp/policy |
hss:rasp:updaterasppolicy |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/security-check/config |
hss:securitycheck:updatesecuritycheckconfig |
eps:enterpriseprojects:list |
|
put /v5/{project_id}/wtp/{host_id}/timing-off-config |
hss:wtp:updatetimingoffconfiginfo |
eps:enterpriseprojects:list |
|
put /v5/{project_id}/wtp/backup-hosts |
hss:wtp:updatewtpbackuphostinfo |
eps:enterpriseprojects:list |
|
put /v5/{project_id}/wtp/{host_id}/rasp_path |
hss:wtp:updatewtpdirectoryinfo |
eps:enterpriseprojects:list |
|
put /v5/{project_id}/wtp/{host_id}/protect-directories |
hss:wtp:updatewtphostprotectdirinfo |
eps:enterpriseprojects:list |
|
put /v5/{project_id}/wtp/{host_id}/privileged-process |
hss:wtp:updatewtpprivilegedprocessinfo |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/asset/values/host |
hss:asset:addvalueslevel |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/asset/batch-modify-port-status |
hss:asset:batchmodifyportstatus |
eps:enterpriseprojects:list |
|
delete /v5/{project_id}/investigation/tool/condition-history |
hss:asset:deletetoolconditionhistory |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/investigation/tool/execute |
hss:asset:executetool |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/overview/statistics/top/account |
hss:asset:getaccounttop |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/overview/status/agent |
hss:asset:getagentstatisticsstatus |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/statistics |
hss:asset:getassetstatistic |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/overview/status/type |
hss:asset:getassettype |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/overview/statistics/top/auto-launch |
hss:asset:getautolaunchtop |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/common-port-info |
hss:asset:getcommonport |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/overview/status/container/protection |
hss:asset:getcontainerprotectionstatus |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/overview/statistics/top/core-conf-file |
hss:asset:getcoreconffiletop |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/overview/statistics/top/environment |
hss:asset:getenvironmenttop |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/manual-collect/{type} |
hss:asset:gethostassetmanualcollectstatus |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/overview/status/host/protection |
hss:asset:gethostprotectionstatus |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/overview/statistics/top/jar-package |
hss:asset:getjarpackagetop |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/overview/statistics/top/kernel-module |
hss:asset:getkernelmoduletop |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/overview/status/os |
hss:asset:getosstatisticsinfo |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/overview/statistics/top/process |
hss:asset:getporcesstop |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/overview/statistics/top/port |
hss:asset:getporttop |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/overview/status/quota |
hss:asset:getquotastatisticsinfo |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/overview/statistics/top/software |
hss:asset:getsoftwaretop |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/overview/statistics/top/web-app-and-service |
hss:asset:getwebappandservicetop |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/overview/statistics/top/web-app |
hss:asset:getwebapptop |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/overview/statistics/top/web-framework |
hss:asset:getwebframeworktop |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/overview/statistics/top/web-service |
hss:asset:getwebservicetop |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/overview/statistics/top/web-site |
hss:asset:getwebsitetop |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/app/change-history |
hss:asset:listappchangehistories |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/apps |
hss:asset:listapps |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/app/statistics |
hss:asset:listappstatistics |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/auto-launch/change-history |
hss:asset:listautolaunchchangehistories |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/auto-launchs |
hss:asset:listautolaunchs |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/auto-launch/statistics |
hss:asset:listautolaunchstatistics |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/host/core-conf-file |
hss:asset:listcoreconffilehostinfo |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/{host_id}/core-conf-file |
hss:asset:listcoreconffileinfo |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/statistics/core-conf-file |
hss:asset:listcoreconffilestatistics |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/host/environment |
hss:asset:listenvironmenthostinfo |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/{host_id}/environment |
hss:asset:listenvironmentinfo |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/statistics/environment |
hss:asset:listenvironmentstatistics |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/midwares/detail |
hss:asset:listjarpackagehostinfo |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/{host_id}/jar-package |
hss:asset:listjarpackageinfo |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/midwares |
hss:asset:listjarpackagestatistics |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/host/kernel-module |
hss:asset:listkernelmodulehostinfo |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/{host_id}/kernel-module |
hss:asset:listkernelmoduleinfo |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/statistics/kernel-module |
hss:asset:listkernelmodulestatistics |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/ports |
hss:asset:listports |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/port/statistics |
hss:asset:listportstatistics |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/processes |
hss:asset:listprocesses |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/process/statistics |
hss:asset:listprocessstatistics |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/investigation/tool/result |
hss:asset:listresult |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/investigation/tool/list |
hss:asset:listtool |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/investigation/tool/condition-history |
hss:asset:listtoolconditionhistory |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/user/change-history |
hss:asset:listuserchangehistories |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/usergroup |
hss:asset:listusergroup |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/users |
hss:asset:listusers |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/user/statistics |
hss:asset:listuserstatistics |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/web-app-and-services |
hss:asset:listwebappandservices |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/web-app-and-service-statistics |
hss:asset:listwebappandservicestatistics |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/host/web-app |
hss:asset:listwebapphostinfo |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/{host_id}/web-app |
hss:asset:listwebappinfo |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/statistics/web-app |
hss:asset:listwebappstatistics |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/host/web-framework |
hss:asset:listwebframeworkhostinfo |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/{host_id}/web-framework |
hss:asset:listwebframeworkinfo |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/statistics/web-framework |
hss:asset:listwebframeworkstatistics |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/host/web-service |
hss:asset:listwebservicehostinfo |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/{host_id}/web-service |
hss:asset:listwebserviceinfo |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/statistics/web-service |
hss:asset:listwebservicestatistics |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/host/web-site |
hss:asset:listwebsitehostinfo |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/{host_id}/web-site |
hss:asset:listwebsiteinfo |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/asset/statistics/web-site |
hss:asset:listwebsitestatistics |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/asset/manual-collect/{type} |
hss:asset:runhostassetmanualcollect |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/baseline/security-checks/policy-group/add |
hss:baseline:addsecuritycheckpolicygroup |
eps:enterpriseprojects:list |
|
put /v5/{project_id}/baseline/check-rule/action |
hss:baseline:changecheckrulestate |
eps:enterpriseprojects:list |
|
delete /v5/{project_id}/baseline/security-checks/policy-group/{group_id} |
hss:baseline:deletesecuritycheckpolicygroup |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/baseline/risk-config/export |
hss:baseline:exportsecuritycheckreport |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/baseline/overview |
hss:baseline:getbaselineoverview |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/baseline/scan-status |
hss:baseline:getbaselinescanstatus |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/baseline/statistic |
hss:baseline:getbaselinestatistic |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/baseline/check-rule/detail |
hss:baseline:getcheckruledetail |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/baseline/check-rule/fail-detail |
hss:baseline:getcheckrulefixfaildetail |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/baseline/security-checks/default-policy |
hss:baseline:getdefaultsecuritycheckpolicy |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/baseline/security-checks/default-policy/details |
hss:baseline:getdefaultsecuritycheckpolicydetails |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/baseline/risk-config/{check_name}/detail |
hss:baseline:getriskconfigdetail |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/baseline/check-rule/hosts |
hss:baseline:listcheckrulehost |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/baseline/password-complexity |
hss:baseline:listpasswordcomplexity |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/baseline/risk-config/{check_name}/check-rules |
hss:baseline:listriskconfigcheckrules |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/baseline/risk-config/{check_name}/hosts |
hss:baseline:listriskconfighosts |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/baseline/risk-configs |
hss:baseline:listriskconfigs |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/baseline/security-checks/policy-groups |
hss:baseline:listsecuritycheckpolicygroup |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/baseline/weak-password-users |
hss:baseline:listweakpasswordusers |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/baseline/detection/{group_id} |
hss:baseline:runbaselinedetect |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/baseline/security-checks/policy-group/{group_id} |
hss:baseline:updatesecuritycheckpolicygroup |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/event/white-list/login |
hss:event:addloginwhitelist |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/event/batch-operate |
hss:event:batchchangeevent |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/event/operate |
hss:event:changeevent |
eps:enterpriseprojects:list |
|
put /v5/{project_id}/event/isolated-file |
hss:event:changeisolatedfile |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/event/white-list/export |
hss:event:exportalarmwhitelist |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/emergency/event/export |
hss:event:exportemergency |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/emergency/event/emergency-statistics |
hss:event:getemergencystatistics |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/event/attack-tag |
hss:event:geteventattacktag |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/event/severity |
hss:event:geteventseverity |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/event/statistics |
hss:event:geteventstatistics |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/emergency/event/event-detail |
hss:event:getmalwareinfo |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/emergency/event/handle-malware-event |
hss:event:handlemalwareevent |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/event/white-list/import |
hss:event:importalarmwhitelist |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/emergency/event/isolate-operate |
hss:event:isolateoperateemergency |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/event/white-list/alarm |
hss:event:listalarmwhitelist |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/event/blocked-ip |
hss:event:listblockedip |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/event/batch-operate |
hss:event:listeventoperates |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/event/top-risk |
hss:event:listeventtoprisk |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/event/event-type |
hss:event:listeventtype |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/emergency/event/file-isolate-list |
hss:event:listfileisolatelist |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/event/isolated-file |
hss:event:listisolatedfile |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/event/white-list/login |
hss:event:listloginwhitelist |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/emergency/event/event-list |
hss:event:listmalware |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/event/events |
hss:event:listsecurityevents |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/emergency/event/recover-isolate-file |
hss:event:recoverisolatefile |
eps:enterpriseprojects:list |
|
delete /v5/{project_id}/event/white-list/alarm |
hss:event:removealarmwhitelist |
eps:enterpriseprojects:list |
|
delete /v5/{project_id}/event/white-list/login |
hss:event:removeloginwhitelist |
eps:enterpriseprojects:list |
|
put /v5/{project_id}/host-management/asset-value/associate |
hss:host:associatehostassetvalue |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/host-management/group/associate |
hss:host:associatehostsgroup |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/setting/batch-install-agent |
hss:host:batchinstallagent |
|
|
put /v5/{project_id}/host-management/groups |
hss:host:changehostsgroup |
eps:enterpriseprojects:list |
|
delete /v5/{project_id}/host-management/groups |
hss:host:deletehostsgroup |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/host-management/host-statistics |
hss:host:gethostsstatistics |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/host-management/firewall |
hss:host:listfirewallstatus |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/host-management/asset-value |
hss:host:listhostgroupassetvalue |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/host-management/hosts-risk |
hss:host:listhostsrisk |
|
|
get /v5/{project_id}/host-management/hosts |
hss:host:listhoststatus |
|
|
get /v5/{project_id}/upgrade/agent-upgrade |
hss:host:listhostsupgrade |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/vulnerability/scan-task |
hss:host:manualcheckvul |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/host-management/firewall |
hss:host:switchfirewallstatus |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/host-management/protection |
hss:host:switchhostsprotectstatus |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/upgrade/agent-upgrade |
hss:host:upgradeagent |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/host-management/upgrade |
hss:host:upgradeagents |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/image/local/batch-scan |
hss:image:batchscanlocalimage |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/image/{image_id}/files-statistics |
hss:image:getimagefilesstat |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/image/local/vul/overview |
hss:image:getimagelocalvuloverview |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/image/vul/overview |
hss:image:getimagevuloverview |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/image/baseline/affected |
hss:image:listcfgcheckaffectedimage |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/image/baseline |
hss:image:listglobalcfgcheck |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/image/malwares |
hss:image:listglobalmalware |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/image/vuls |
hss:image:listglobalvul |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/image/{image_id}/apps |
hss:image:listimageapps |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/image/{image_id}/app/vuls |
hss:image:listimageappvul |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/image/{image_id}/baseline |
hss:image:listimagecfgcheck |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/image/{image_id}/files |
hss:image:listimagefiles |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/image/local-repository |
hss:image:listimagelocal |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/image/{image_id}/malwares |
hss:image:listimagemalware |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/image/namespace |
hss:image:listimagenamespace |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/image/repos |
hss:image:listimagerepository |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/instance/{instance_id}/image/vuls |
hss:image:listinstanceimagevul |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/image/local/containers |
hss:image:listlocalimagecontainers |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/image/local/hosts |
hss:image:listlocalimagehosts |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/image/local/malware |
hss:image:listlocalimagemalware |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/image/local/vuls |
hss:image:listlocalimagevuls |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/image/local/{vul_id}/images |
hss:image:listlocalvulrepoimage |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/image/shared-repository |
hss:image:listsharedimagerepository |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/image/{vul_id}/images |
hss:image:listvulrepoimage |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/image/vul-task |
hss:image:runimagescan |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/image/swr/vul-task |
hss:image:runswrimagescan |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/image/shared-synchronize-task |
hss:image:sharedimagesynchronization |
eps:enterpriseprojects:list |
|
put /v5/{project_id}/policy/group |
hss:policy:addpolicygroup |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/policy/deploy |
hss:policy:associatepolicygroup |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/policy/{policy_id} |
hss:policy:changepolicydetail |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/policy/group |
hss:policy:changepolicygroup |
eps:enterpriseprojects:list |
|
delete /v5/{project_id}/policy/group |
hss:policy:deletepolicygroup |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/policy/{policy_id} |
hss:policy:getpolicydetail |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/policy/group/{group_id} |
hss:policy:listpolicygroupdetail |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/{resource_type}/{resource_id}/tags |
hss:quota:addresourceinstancetag |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/{resource_type}/{resource_id}/tags/create |
hss:quota:batchcreatetags |
eps:enterpriseprojects:list |
|
delete /v5/{project_id}/{resource_type}/{resource_id}/tags/delete |
hss:quota:batchdeletetags |
eps:enterpriseprojects:list |
|
put /v5/{project_id}/billing/quotas |
hss:quota:cancelhostsquota |
eps:enterpriseprojects:list |
|
post /v1/{project_id}/hss/{resource_id}/tags/action |
hss:quota:changetmsresourcetaginfo |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/{resource_type}/resource-instances/count |
hss:quota:countresourceinstances |
eps:enterpriseprojects:list |
|
delete /v5/{project_id}/{resource_type}/{resource_id}/tags/{key} |
hss:quota:deleteresourceinstancetag |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/{resource_type}/resource-instances/filter |
hss:quota:filterresourceinstancelist |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/{resource_type}/{resource_id}/tags |
hss:quota:getresourceinstancetag |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/billing/quotas |
hss:quota:getresourcequotas |
eps:enterpriseprojects:list |
|
get /v1/{project_id}/hss/{resource_id}/tags |
hss:quota:gettmsresourcetagsinfo |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/{resource_type}/tags |
hss:quota:listprojecttags |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/billing/quotas-detail |
hss:quota:listquotasdetail |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/billing/resource-id-list |
hss:quota:listresourceids |
eps:enterpriseprojects:list |
|
post /v1/{project_id}/hss/resource_instances/action |
hss:quota:listtmsresourceinstancesinfo |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/hss/upgrade_orders/{order_id} |
hss:quota:upgradeorder |
eps:enterpriseprojects:list |
|
put /v5/{project_id}/vulnerability/status |
hss:vulnerability:changevulstatus |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/vul/emergency/list |
hss:vulnerability:exportemergencyvulnerabilities |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/vul/export-vuls-list |
hss:vulnerability:exportvulslist |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/vul/cms-detail |
hss:vulnerability:getcmsvuldetail |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/vul/emergency/summary |
hss:vulnerability:getemergencysummary |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/vul/emergency/detail |
hss:vulnerability:getemergencyvuldetail |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/vul/linux-detail |
hss:vulnerability:getlinuxvuldetail |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/vul/manual/scan/status |
hss:vulnerability:getvulcheckstatus |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/vul/vul-summary |
hss:vulnerability:getvulsummary |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/vul/windows-detail |
hss:vulnerability:getwindosvuldetail |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/windows/vul/num |
hss:vulnerability:getwindowsvulnum |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/vulnerability/host/{host_id} |
hss:vulnerability:listhostvuls |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/vul/host-summary |
hss:vulnerability:listhostvulsummary |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/vul/top-vul |
hss:vulnerability:listtopvulsummary |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/vulnerability/hosts |
hss:vulnerability:listvulhosts |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/vulnerability/vulnerabilities |
hss:vulnerability:listvulnerabilities |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/vul/{host_id}/fail_detail |
hss:vulnerability:listvulrepairfaileddetail |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/vul/vul-type-summary |
hss:vulnerability:listvultypesummary |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/vul/emergency/operate |
hss:vulnerability:operateemergency |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/host-management/{host_id}/scan_status |
hss:host:getscanstatus |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/host-management/{host_id}/manual_detect |
hss:host:setmanualdetect |
eps:enterpriseprojects:list |
|
get /v5/setting/account/trusted-services |
hss::gettrustservicestatus |
eps:enterpriseprojects:list |
|
post /v5/setting/account/trusted-services |
hss::enabletrustservice |
eps:enterpriseprojects:list |
|
get /v5/setting/account/admin |
hss::validateadmin |
eps:enterpriseprojects:list |
|
get /v5/setting/account/accounts |
hss::listaccounts |
eps:enterpriseprojects:list |
|
post /v5/setting/account/accounts |
hss::batchaddaccounts |
eps:enterpriseprojects:list |
|
delete /v5/setting/account/accounts |
hss::deleteaccount |
eps:enterpriseprojects:list |
|
get /v5/setting/account/organization-tree |
hss::listorganizationtree |
eps:enterpriseprojects:list |
|
get /v5/setting/account/delegated-accounts |
hss::listdelegatedaccounts |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/ransomware/optional/vaults |
hss:antiransomware:listbackupvaults |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/ransomware/servers |
hss:antiransomware:listransomwareprotectionnodes |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/ransomware/statistics/backups |
hss:antiransomware:getbackupsstatistics |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/ransomware/backup/single_open |
hss:antiransomware:startsinglebackup |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/backup/{policy_id} |
hss:antiransomware:getbackuppolicyinfo |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/host-management/outside-group/status |
hss:hostgroup:getoutsidegroupstatus |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/host-management/outside-group |
hss:hostgroup:getoutsidehostgroup |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/host-management/outside-group |
hss:hostgroup:addoutsidehostgroup |
eps:enterpriseprojects:list |
|
put /v5/{project_id}/host-management/outside-group |
hss:hostgroup:changeoutsidehostgroup |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/image/tags |
hss:images:listimagetag |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/image/{image_digest}/sensitive |
hss:images:listimagesensitive |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/image/sensitive/filepath_whitelist |
hss:images:getfilepathwhitedetail |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/image/sensitive/filepath_whitelist |
hss:images:changefilepathwhitedetail |
eps:enterpriseprojects:list |
|
post /v5/{project_id}/image/sensitive/operate |
hss:images:changesensitiveinfo |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/event/top-event-type |
hss:event:listtopeventtype |
eps:enterpriseprojects:list |
|
get /v5/{project_id}/vulnerability/scan-policy |
hss:vulnerability:getvulscanpolicy |
- |
|
put /v5/{project_id}/vulnerability/scan-policy |
hss:vulnerability:changevulscanpolicy |
- |
|
get /v5/{project_id}/vulnerability/white-lists |
hss:vulnerability:listvulwhitelist |
- |
|
get /v5/{project_id}/vulnerability/white-list/{id} |
hss:vulnerability:getvulwhitelistdetail |
- |
|
put /v5/{project_id}/vulnerability/white-list/{id} |
hss:vulnerability:changevulwhitelist |
- |
|
delete /v5/{project_id}/vulnerability/white-list/{id} |
hss:vulnerability:deletevulwhitelist |
- |
|
post /v5/{project_id}/vulnerability/white-list |
hss:vulnerability:addvulwhitelist |
- |
|
get /v5/{project_id}/vulnerability/white-list/vulnerability-options |
hss:vulnerability:listvulwhitelistvuloptions |
- |
|
get /v5/{project_id}/vulnerability/scan-tasks |
hss:vulnerability:listvulscantask |
- |
|
get /v5/{project_id}/vulnerability/scan-task/{task_id}/hosts |
hss:vulnerability:listvulscantaskhost |
- |
|
put /v5/{project_id}/vulnerability/scan/task/{task_id}/rescan |
hss:vulnerability:rescanvulscantask |
- |
|
get /v5/{project_id}/vulnerability/scan/task/statistics |
hss:vulnerability:getvulscantaskstatistics |
- |
|
get /v5/{project_id}/vulnerability/statistics |
hss:vulnerability:listhostvulstatistics |
- |
|
get /v5/{project_id}/vulnerability/{host_id}/apps |
hss:vulnerability:listvulhostapps |
- |
|
get /v5/{project_id}/vulnerability/{host_id}/process |
hss:vulnerability:listvulhostprocess |
- |
|
get /v5/{project_id}/vulnerability/handle-history |
hss:vulnerability:listvulhandlehistory |
- |
|
get /v5/{project_id}/vulnerability/host/hosts |
hss:vulnerability:listvulhosthosts |
- |
|
get /v5/{project_id}/vulnerability/host-vulnerability/vulnerabilities |
hss:vulnerability:listvulhostvuls |
- |
|
get /v5/{project_id}/vulnerability/handle/vulnerabilities |
hss:vulnerability:listvulhosthandlevuls |
- |
|
get /v5/{project_id}/image/{image_digest}/non-compliant-app |
hss:image:listimagenoncompliantapp |
- |
|
post /v5/{project_id}/image/swr/vul/batch-export-vul |
hss:image:batchexportswrvullist |
- |
|
post /v5/{project_id}/image/local/vul/batch-export-vul |
hss:image:batchexportlocalvullist |
- |
|
get /v5/{project_id}/image/baseline/extended-weak-password |
hss:image:getextendedweakpassword |
- |
|
post /v5/{project_id}/image/baseline/extended-weak-password |
hss:image:changeextendedweakpassword |
- |
|
get /v5/{project_id}/image/{image_digest}/basic-image |
hss:image:listimagebasicimage |
- |
|
get /v5/{project_id}/image/baseline/password-complexity |
hss:image:listimagepwdcomplexity |
- |
|
get /v5/{project_id}/image/baseline/weak-password-users |
hss:image:listimageweakpwdusers |
- |
|
get /v5/{project_id}/image/baseline/risk-configs |
hss:image:listimageriskconfigs |
- |
|
get /v5/{project_id}/image/baseline/risk-configs/{check_name}/detail |
hss:image:getimageriskconfigdetail |
- |
|
get /v5/{project_id}/image/baseline/check-rule/detail |
hss:image:getimagecheckruledetail |
- |
|
get /v5/{project_id}/image/baseline/statistic |
hss:image:getimagebaselinestatistic |
- |
|
post /v5/{project_id}/event/white-list/userlist |
hss:event:addsystemuserwhitelist |
- |
|
put /v5/{project_id}/event/white-list/userlist |
hss:event:updatesystemuserwhitelist |
- |
|
get /v5/{project_id}/event/white-list/userlist |
hss:event:listsystemuserwhitelist |
- |
|
delete /v5/{project_id}/event/white-list/userlist |
hss:event:removesystemuserwhitelist |
- |
|
post /v5/{project_id}/kubernetes/save-clusters |
hss:container:saveclusters |
- |
|
get /v5/{project_id}/kubernetes/clusters |
hss:container:listclusterinfo |
- |
|
get /v5/{project_id}/kubernetes/pods |
hss:container:listpodinfo |
- |
|
get /v5/{project_id}/kubernetes/{pod_name}/pod/detail |
hss:container:showpoddetail |
- |
|
get /v5/{project_id}/kubernetes/containers |
hss:container:listcontainerinfo |
- |
|
get /v5/{project_id}/kubernetes/container/detail |
hss:container:showcontainerdetail |
- |
|
get /v5/{project_id}/kubernetes/services |
hss:container:listserviceinfo |
- |
|
get /v5/{project_id}/kubernetes/service/detail |
hss:container:showservicedetail |
- |
|
get /v5/{project_id}/kubernetes/endpoints |
hss:container:listendpointinfo |
- |
|
get /v5/{project_id}/kubernetes/endpoint/detail |
hss:container:showendpointdetail |
- |
|
get /v5/{project_id}/kubernetes/deployments |
hss:container:listdeployments |
- |
|
get /v5/{project_id}/kubernetes/statefulsets |
hss:container:liststatefulsets |
- |
|
get /v5/{project_id}/kubernetes/daemonsets |
hss:container:listdaemonsets |
- |
|
get /v5/{project_id}/kubernetes/jobs |
hss:container:listjobs |
- |
|
get /v5/{project_id}/kubernetes/cronjobs |
hss:container:listcronjobs |
- |
|
get /v5/{project_id}/vulnerability/statistics/affected |
hss:vulnerability:showvulaffectedstatics |
- |
|
put /v5/{project_id}/kubernetes/{container_name}/container/isolate |
hss:container:isolatek8scontainer |
- |
|
get /v5/{project_id}/container-network/network-statistics |
hss:container:getnetworkstatistics |
- |
|
get /v5/{project_id}/container-network/cluster-list |
hss:container:getclusters |
- |
|
get /v5/{project_id}/container-network/{cluster_id}/network-info |
hss:container:getclusternetworkinfo |
- |
|
get /v5/{project_id}/container-network/{cluster_id}/policy-list |
hss:container:getclusterpolicylist |
- |
|
delete /v5/{project_id}/container-network/{cluster_id}/policy |
hss:container:deletepolicy |
- |
|
post /v5/{project_id}/container-network/{cluster_id}/policy |
hss:container:createpolicy |
- |
|
put /v5/{project_id}/container-network/{cluster_id}/policy |
hss:container:updatepolicy |
- |
|
get /v5/{project_id}/container-network/{cluster_id}/policy-sync |
hss:container:syncclusterpolicylist |
- |
|
get /v5/{project_id}/container-network/cluster-sync |
hss:container:syncclusterlist |
- |
|
get /v5/{project_id}/container-network/{cluster_id}/namespace-list |
hss:container:getnamespacelist |
- |
|
get /v5/{project_id}/container-network/{cluster_id}/node-list |
hss:container:getnodelist |
- |
|
get /v5/{project_id}/container-network/{cluster_id}/node-sync |
hss:container:syncclusternodelist |
- |
|
post /v5/{project_id}/ransomware/protection/policy |
hss:antiransomware:addransomwareprotectionpolicy |
- |
|
post /v5/{project_id}/ransomware/backup/associate-policy |
hss:antiransomware:associatebackuppolicy |
- |
|
get /v5/{project_id}/ransomware/backup/policies |
hss:antiransomware:listbackuppolicy |
- |
|
post /v5/{project_id}/ransomware/protection/policy/deploy |
hss:antiransomware:associateprotectionpolicy |
- |
|
post /v5/{project_id}/ransomware/protection/batch-open |
hss:antiransomware:batchstartprotection |
- |
|
get /v5/{project_id}/event/att-ck |
hss:event:geteventattck |
- |
|
get /v5/{project_id}/event/download-file |
hss:event:downloadeventsourcefile |
- |
|
get /v5/{project_id}/overview/security/score |
hss:overview:showsecurityscore |
- |
|
get /v5/{project_id}/overview/security/risk/list |
hss:overview:listsecurityrisk |
- |
|
get /v5/{project_id}/overview/quotas/host/statistics |
hss:overview:showquotahoststatistics |
- |
|
get /v5/{project_id}/overview/agent/statistics |
hss:overview:showagentstatistics |
- |
|
get /v5/{project_id}/overview/hot/information |
hss:overview:showhotinformation |
- |
|
get /v5/{project_id}/overview/security/risk |
hss:overview:showsecurityrisk |
- |
|
get /v5/{project_id}/overview/protection/statistics |
hss:overview:showprotectstatistics |
- |
|
get /v5/{project_id}/overview/statistics |
hss:overview:showstatistics |
- |
|
get /v5/{project_id}/image/swr-repository |
hss:image:listswrimagerepository |
- |
|
post /v5/{project_id}/image/batch-scan |
hss:image:batchscanswrimage |
- |
|
get /v5/{project_id}/image/{image_id}/vulnerabilities |
hss:image:vulnerabilities |
- |
|
get /v5/{project_id}/image/vulnerability/{vul_id}/cve |
hss:image:listvulnerabilitycve |
- |
|
get /v5/{project_id}/image/baseline/risk-configs/{check_name}/rules |
hss:image:listimageriskconfigrules |
- |
|
post /v5/{project_id}/image/synchronize |
hss:image:runimagesynchronize |
- |
|
get /v5/{project_id}/event/forensic |
hss:event:listeventforensic |
- |
|
get /v5/{project_id}/event/similar-handled-events |
hss:event:listsimilarhandledevents |
- |
|
get /v5/{project_id}/cluster-protect/policy |
hss:container:getpolicies |
- |
|
get /v5/{project_id}/cluster-protect/policy/{policy_id} |
hss:container:getpolicydetail |
- |
|
get /v5/{project_id}/cluster-protect/events |
hss:container:getprotectevents |
- |
|
get /v5/{project_id}/cluster-protect/clusters |
hss:container:getprotectclusters |
- |
|
get /v5/{project_id}/cluster-protect/switch-mode |
hss:container:changeprotectstatus |
- |
|
get /v5/{project_id}/cluster-protect/whiteimage |
hss:container:addwhiteimage |
- |
|
get /v5/{project_id}/cluster-protect/default-policy |
hss:container:listdefaultpolicy |
- |
|
get /v5/{project_id}/cluster-protect/protection-item |
hss:container:listprotectionitem |
- |
|
post /v5/{project_id}/vulnerability/backup-statistics |
hss:vulnerability:getvulbackupstatistics |
- |
|
get /v5/{project_id}/vulnerability/backup/host-vaults |
hss:vulnerability:listvulhostvaults |
- |
|
get /v5/{project_id}/vulnerability/backup/backups |
hss:vulnerability:listvulhostbackups |
- |
|
put /v5/{project_id}/vulnerability/backup/{backup_id}/restore |
hss:vulnerability:restorevulhostbackup |
- |
|
post /v5/{project_id}/event/export |
hss:event:exportevent |
- |
|
get /v5/{project_id}/event/export-task/{task_id} |
hss:event:queryexporttask |
- |
|
get /v5/{project_id}/event/download/{file_id} |
hss:event:downloadevent |
- |
|
post /v5/{project_id}/app/policy |
hss:ars:createappwhitelistpolicy |
- |
|
get /v5/{project_id}/app/policy |
hss:ars:listappwhitelistpolicy |
- |
|
put /v5/{project_id}/app/policy |
hss:ars:changeappwhitelistpolicy |
- |
|
delete /v5/{project_id}/app/policy |
hss:ars:deleteappwhitelistpolicy |
- |
|
get /v5/{project_id}/app/{policy_id}/detail |
hss:ars:showappwhitelistpolicy |
- |
|
put /v5/{project_id}/app/host |
hss:ars:switchappwhitelistpolicyhost |
- |
|
post /v5/{project_id}/app/{policy_id}/host |
hss:ars:addappwhitelistpolicyhost |
- |
|
get /v5/{project_id}/app/host |
hss:ars:listappwhitelistpolicyhost |
- |
|
delete /v5/{project_id}/app/{policy_id}/host |
hss:ars:deleteappwhitelistpolicyhost |
- |
|
get /v5/{project_id}/app/host-management/hosts |
hss:ars:listappwhitelisthoststatus |
- |
|
get /v5/{project_id}/app/{policy_id}/process |
hss:ars:listappwhitelistpolicyprocess |
- |
|
put /v5/{project_id}/app/{policy_id}/process |
hss:ars:changeappwhitelistpolicyprocessstatus |
- |
|
post /v5/{project_id}/app/{policy_id}/process |
hss:ars:addappwhitelistpolicyprocess |
- |
|
get /v5/{project_id}/app/{policy_id}/process-extend |
hss:ars:listappwhitelistpolicyprocessextend |
- |
|
get /v5/{project_id}/app/{policy_id}/process/export |
hss:ars:exportappwhitelistpolicyprocess |
- |
|
post /v5/{project_id}/app/{policy_id}/learn |
hss:ars:switchappwhitelistpolicylearnstatus |
- |
|
get /v5/{project_id}/app/agent/statistics |
hss:ars:showappwhitelistagentstatics |
- |
|
get /v5/{project_id}/app/event |
hss:ars:listappwhitelistevent |
- |
|
delete /v5/{project_id}/selfbuilt/kubernetes/cluster/daemonset |
hss:container:deleteselfbuildk8sclusterdaemonsetinfo |
- |
|
post /v5/{project_id}/selfbuilt/kubernetes/cluster/daemonset |
hss:container:saveselfbuildk8sclusterdaemonsetinfo |
- |
|
get /v5/{project_id}/selfbuilt/kubernetes/cluster/daemonset |
hss:container:showselfbuildk8sclusterdaemonsetinfo |
- |
|
get /v5/{project_id}/selfbuilt/kubernetes/clusters |
hss:container:listselfbuildk8sclusterinfo |
- |
|
post /v5/{project_id}/namespaces/{namespace}/daemonsets |
hss:container:createdaemonset |
- |
|
post /v5/{project_id}/vulnerability/repair-cmds |
hss:vulnerability:listvulrepaircmds |
- |
|
get /v5/{project_id}/vulnerability/urgent-vulnerabilities |
hss:vulnerability:listurgentvulnerabilities |
- |
|
put /v5/{project_id}/antivirus/task |
hss:antivirus:switchantivirustask |
- |
|
get /v5/{project_id}/antivirus/statistic |
hss:antivirus:showantivirusstatistic |
- |
|
get /v5/{project_id}/image/full-scan-progress |
hss:image:showimagefullscanprogress |
- |
|
put /v5/{project_id}/host/operate |
hss:host:changehostignorestatus |
- |
|
post /v5/{project_id}/image/baseline/export |
hss:image:batchexportbaselinetask |
- |
|
post /v5/{project_id}/image/security-report/statistic |
hss:image:showimagesecurityreportstatistic |
- |
|
post /v5/{project_id}/vul/export |
hss:vulnerability:exportvuls |
- |
|
get /v5/{project_id}/export-task/{task_id} |
hss:exporttask:queryexporttask |
- |
|
get /v5/{project_id}/download/{file_id} |
hss:file:downloadexportedfile |
- |
|
get /v5/{project_id}/image/vulnerabilities |
hss:image:listglobalvulnerabilities |
- |
|
get /v5/{project_id}/image/vulnerability/images |
hss:image:listvulnerabilityimages |
- |
|
get /v5/{project_id}/setting/docker-plugin-install-script |
hss:setting:getplugininstallscript |
- |
|
get /v5/{project_id}/setting/plugins |
hss:setting:getpluginlist |
- |
|
get /v5/{project_id}/setting/config/auto-open-quota |
hss:setting:getautoopenquotastatus |
- |
|
put /v5/{project_id}/setting/config/auto-open-quota |
hss:setting:changeautoopenquotastatus |
- |
|
post /v5/{project_id}/image/swr-vulnerability/export |
hss:image:batchexportswrvultask |
- |
|
post /v5/{project_id}/image/local-vulnerability/export |
hss:image:batchexportlocalvultask |
- |
|
get /v5/{project_id}/setting/config/agent-auto-upgrade |
hss:setting:getagentautoupgradestatus |
- |
|
put /v5/{project_id}/setting/config/agent-auto-upgrade |
hss:setting:changeagentautoupgradestatus |
- |
|
get /v5/{project_id}/product/productdata/offering-infos |
hss:quota:showproductdataofferinginfos |
- |
|
get /v5/{project_id}/image/local/apps |
hss:image:listlocalimageappinfo |
- |
|
get /v5/{project_id}/image/local/app/vulnerabilities |
hss:image:listlocalimageappvulnerabilities |
- |
|
get /v5/{project_id}/ransomware/protection/status |
hss:antiransomware:getransomwareprotectionstatus |
- |
|
get /v5/{project_id}/ransomware/protection/auto-deploy-policy |
hss:antiransomware:getautodeployagentlist |
- |
|
put /v5/{project_id}/ransomware/protection/auto-deploy-policy |
hss:antiransomware:updateautodeployagent |
- |
|
get /v5/{project_id}/vulnerability/individual-statistics |
hss:vulnerability:getvulindividualstatistics |
- |
|
delete /v5/{project_id}/event/isolated-file |
hss:event:deleteisolatedfile |
- |
|
get /v5/{project_id}/antivirus/handle-history |
hss:antivirus:listantivirushandlehistory |
- |
|
get /v5/{project_id}/honeypot-port/host-statistics |
hss:decoyport:showstatistics |
- |
|
get /v5/{project_id}/honeypot-port/default-config |
hss:decoyport:showautobind |
- |
|
put /v5/{project_id}/honeypot-port/default-config |
hss:decoyport:switchautobind |
- |
|
get /v5/{project_id}/honeypot-port/host-list |
hss:decoyport:showhostlist |
- |
|
get /v5/{project_id}/honeypot-port/policy-list |
hss:decoyport:listpolicy |
- |
|
get /v5/{project_id}/honeypot-port/support-list |
hss:decoyport:listavailablehost |
- |
|
put /v5/{project_id}/honeypot-port/host-policy/{policy_id} |
hss:decoyport:switchhostpolicy |
- |
|
delete /v5/{project_id}/honeypot-port/host-policy/{policy_id} |
hss:decoyport:deletehostpolicy |
- |
|
post /v5/{project_id}/honeypot-port/policy |
hss:decoyport:createpolicy |
- |
|
put /v5/{project_id}/honeypot-port/policy/{policy_id} |
hss:decoyport:modifypolicy |
- |
|
get /v5/{project_id}/honeypot-port/policy/{policy_id} |
hss:decoyport:showpolicydetails |
- |
|
delete /v5/{project_id}/honeypot-port/policy/{policy_id} |
hss:decoyport:deletepolicy |
- |
|
put /v5/{project_id}/honeypot-port/policy-enable/{policy_id} |
hss:decoyport:switchpolicy |
- |
|
get /v5/{project_id}/export-task |
hss:exporttask:querylatestexporttaskbytype |
- |
|
post /v5/{project_id}/container-network/{cluster_id}/{namespace}/security-group-policy |
hss:container:createsecuritygrouppolicy |
- |
|
put /v5/{project_id}/container-network/{cluster_id}/{namespace}/security-group-policy |
hss:container:updatesecuritygrouppolicy |
- |
|
get /v5/{project_id}/container-network/{cluster_id}/security-group-policies |
hss:container:getsecuritygrouppolicylist |
- |
|
delete /v5/{project_id}/container-network/{cluster_id}/security-group-policy |
hss:container:deletesecuritygrouppolicy |
- |
|
get /v5/{project_id}/container-network/{cluster_id}/security-group-policy-sync |
hss:container:syncsecuritygrouppolicy |
- |
|
get /v5/{project_id}/container-network/{cluster_id}/{namespace}/workloads |
hss:container:getworkloadlist |
- |
|
get /v5/{project_id}/container-network/security-groups |
hss:container:getsecuritygrouplist |
- |
资源类型(resource)
资源类型(resource)表示身份策略所作用的资源。如表3中的某些操作指定了可以在该操作指定的资源类型,则必须在具有该操作的身份策略语句中指定该资源的urn,身份策略仅作用于此资源;如未指定,resource默认为“*”,则身份策略将应用到所有资源。您也可以在身份策略中设置条件,从而指定资源类型。
hss定义了以下可以在自定义身份策略的resource元素中使用的资源类型。
|
资源类型 |
urn |
|---|---|
|
event |
hss: |
|
policy |
hss: |
|
host |
hss: |
|
baseline |
hss: |
条件(condition)
hss服务不支持在身份策略中的条件键中配置服务级的条件键。hss可以使用适用于所有服务的全局条件键,请参考全局条件键。
相关文档
意见反馈
文档内容是否对您有帮助?
如您有其它疑问,您也可以通过华为云社区问答频道来与我们联系探讨
