DescribeEventTypes - Data Security Center - Alibaba Cloud Documentation Center

Queries anomalous activity types.

Try it now

Try this API in OpenAPI Explorer, no manual signing needed. Successful calls auto-generate SDK code matching your parameters. Download it with built-in credential security for local usage.

Test

RAM authorization

The table below describes the authorization required to call this API. You can define it in a Resource Access Management (RAM) policy. The table's columns are detailed below:

Action: The actions can be used in the Action element of RAM permission policy statements to grant permissions to perform the operation.
API: The API that you can call to perform the action.
Access level: The predefined level of access granted for each API. Valid values: create, list, get, update, and delete.
Resource type: The type of the resource that supports authorization to perform the action. It indicates if the action supports resource-level permission. The specified resource must be compatible with the action. Otherwise, the policy will be ineffective.
- For APIs with resource-level permissions, required resource types are marked with an asterisk (*). Specify the corresponding Alibaba Cloud Resource Name (ARN) in the Resource element of the policy.
- For APIs without resource-level permissions, it is shown as All Resources. Use an asterisk (*) in the Resource element of the policy.
Condition key: The condition keys defined by the service. The key allows for granular control, applying to either actions alone or actions associated with specific resources. In addition to service-specific condition keys, Alibaba Cloud provides a set of common condition keys applicable across all RAM-supported services.
Dependent action: The dependent actions required to run the action. To complete the action, the RAM user or the RAM role must have the permissions to perform all dependent actions.

Action

Access level

Resource type

Condition key

Dependent action

yundun-sddp:DescribeEventTypes

none

*All Resource

*

None

Request parameters

Parameter	Type	Required	Description	Example
Lang	string	No	The language of the request and response. Valid values: zh: Chinese. en: English.	zh
ParentTypeId	integer	No	The ID of the parent anomalous activity type to which the child anomalous activity type belongs. Valid values: 01: anomalous permission access. 02: anomalous data flow. 03: anomalous data operation.	01
ResourceId	integer	No	The resource type of the product. Valid values: 1: MaxCompute. 2: Object Storage Service (OSS). 3: AnalyticDB for MySQL. 4: Tablestore. 5. ApsaraDB RDS.	5
Status	integer	No	The status. Valid values: 1: active. 2: inactive.	1
FeatureType	integer	No	This parameter is deprecated.	1

Response elements

Element	Type	Description	Example
	object
RequestId	string	The ID of the request.	769FB3C1-F4C9-42DF-9B72-7077A8989C13
EventTypeList	array<object>	The list of anomalous activity types. Note If ParentTypeId is empty, the parent anomalous activity types are returned. If ParentTypeId is not empty, the child anomalous activity types are returned.
	array<object>	The details of the anomalous activity type.
Code	string	The code of the parent anomalous activity type.	01
Description	string	The description of the parent anomalous activity type.	权限使用异常，****
Name	string	The name of the parent anomalous activity type.	权限使用异常
Id	integer	The unique ID of the parent anomalous activity type.	1
SubTypeList	array<object>	The list of child anomalous activity types.
	object	The details of the child anomalous activity type.
Status	integer	The detection feature of Data Security Center (DSC) for the child anomalous activity type. Valid values: 1: enabled. 0: disabled.	1
Description	string	The description of the child anomalous activity type.	配置失当-ODPS敏感项目未设置保护，****
ConfigContentType	integer	The format of the rule item. Valid values: 0: numeric (such as a threshold). 1: text (such as an IP address).	1
EventHitCount	integer	The number of times the rule is hit.	2
ConfigValue	string	The configuration value.	90
ConfigCode	string	The configuration code.	0100**
Code	string	The code of the child anomalous activity type.	020008
ConfigDescription	string	The configuration description.	权限闲置期间超过阈值：目前的阈值定义为${value}个自然日
Name	string	The name of the child anomalous activity type.	配置失当-ODPS敏感项目未设置保护
AdaptedProduct	string	The products to which the rule applies, including MaxCompute, OSS, AnalyticDB for MySQL, Tablestore, and ApsaraDB RDS.	RDS
Id	integer	The unique ID of the child anomalous activity type.	1

Examples

Success response

JSON format

{
  "RequestId": "769FB3C1-F4C9-42DF-9B72-7077A8989C13",
  "EventTypeList": [
    {
      "Code": "01",
      "Description": "权限使用异常，****",
      "Name": "权限使用异常",
      "Id": 1,
      "SubTypeList": [
        {
          "Status": 1,
          "Description": "配置失当-ODPS敏感项目未设置保护，****",
          "ConfigContentType": 1,
          "EventHitCount": 2,
          "ConfigValue": "90",
          "ConfigCode": "0100**",
          "Code": "020008",
          "ConfigDescription": "权限闲置期间超过阈值：目前的阈值定义为${value}个自然日",
          "Name": "配置失当-ODPS敏感项目未设置保护",
          "AdaptedProduct": "RDS",
          "Id": 1
        }
      ]
    }
  ]
}

Error codes

See Error Codes for a complete list.

Release notes

See Release Notes for a complete list.