Checks whether a specified RAM role is assigned to each Alibaba Cloud account. If so, the evaluation result is Compliant.
Scenarios
This rule applies when you need to check whether a specified RAM role is assigned to an Alibaba Cloud account. This prevents your business from being interrupted due to permission-related issues.
Risk level
Default risk level: low.
When you apply this rule, you can change the risk level based on your business requirements.
Compliance evaluation logic
- If a specified RAM role is assigned to each Alibaba Cloud account, the evaluation result is Compliant.
- If a specified RAM role is not assigned to an Alibaba Cloud account, the evaluation result is Incompliant.
Rule details
| Item | Description |
|---|---|
| Rule name | root-has-specified-role |
| Rule identifier | root-has-specified-role |
| Tag | Role |
| Automatic remediation | Not supported |
| Trigger type | Periodic execution |
| Evaluation frequency | Interval of 24 hours |
| Supported resource type | Alibaba Cloud account |
| Input parameter | RoleNameNote Separate multiple values with commas (,).
|