All Products
Search
Document Center

Security Center:ListCheckItemWarningMachine

Last Updated:Nov 25, 2024

Queries the servers that are affected by baseline risks.

Debugging

You can run this interface directly in OpenAPI Explorer, saving you the trouble of calculating signatures. After running successfully, OpenAPI Explorer can automatically generate SDK code samples.

Authorization information

The following table shows the authorization information corresponding to the API. The authorization information can be used in the Action policy element to grant a RAM user or RAM role the permissions to call this API operation. Description:

  • Operation: the value that you can use in the Action element to specify the operation on a resource.
  • Access level: the access level of each operation. The levels are read, write, and list.
  • Resource type: the type of the resource on which you can authorize the RAM user or the RAM role to perform the operation. Take note of the following items:
    • The required resource types are displayed in bold characters.
    • If the permissions cannot be granted at the resource level, All Resources is used in the Resource type column of the operation.
  • Condition Key: the condition key that is defined by the cloud service.
  • Associated operation: other operations that the RAM user or the RAM role must have permissions to perform to complete the operation. To complete the operation, the RAM user or the RAM role must have the permissions to perform the associated operations.
OperationAccess levelResource typeCondition keyAssociated operation
yundun-sas:ListCheckItemWarningMachinelist
*All Resources
*
    none
none

Request parameters

ParameterTypeRequiredDescriptionExample
CheckIdlongYes

The ID of the check item.

8
RiskTypestringNo

The type of the check item.

cis
StatusintegerNo

The status of the check item. Valid values:

  • 1: failed

  • 2: verifying

  • 3: passed

  • 6: ignored

  • 7: fixing

3
RemarkstringNo

The keyword that is used to query servers in fuzzy match mode.

225
ContainerFieldNamestringNo

The name of the field that is used to query containers.

clusterId
ContainerFieldValuestringNo

The value of the field that is used to query containers.

ce89cdd0ea732472a8703821b19e****
LangstringNo

The language of the content within the request and response. Default value: zh. Valid values:

  • zh: Chinese
  • en: English
zh
CurrentPageintegerNo

The number of the page to return. Pages start from page 1. Default value: 1.

1
PageSizeintegerNo

The number of entries to return on each page. Default value: 20. If you leave this parameter empty, 20 entries are returned on each page.

Note We recommend that you do not leave this parameter empty.
20
GroupIdlongNo

The ID of the asset group.

Note You can call the DescribeAllGroups operation to query the ID of the asset group.
1161****
SourcestringNo

The data source. Default value: default. Valid values:

  • default: The check items of baselines for hosts.
  • agentless: The check items of baselines for agentless detection.
agentless
UuidListarrayNo

The UUID array of the servers.

stringNo

The UUID of the servers.

Note You can call the DescribeCloudCenterInstances operation to query the UUIDs of servers.
4fe8e1cd-3c37-4851-b9de-124da32c****

Response parameters

ParameterTypeDescriptionExample
object

The servers on which the alerts are generated by page.

Listarray<object>

The servers on which the alerts are generated.

Listobject

The server on which the alert is generated.

Statusinteger

The status of the check item. Valid values:

  • 1: failed
  • 2: verifying
  • 3: passed
  • 6: ignored
  • 7: fixing
1
Bindboolean

Indicates whether Security Center is authorized to protect the asset. Valid values:

  • true
  • false
true
AuthVersioninteger

The edition of Security Center that is authorized to protect the asset. Valid values:

  • 1: Basic edition
  • 6: Anti-virus edition
  • 5: Advanced edition
  • 3: Enterprise edition
  • 7: Ultimate edition
  • 10: Value-added Plan edition
3
PortOpenboolean

Indicates whether a port on the server is accessible over the Internet. Valid values:

  • true
  • false
true
InstanceIdstring

The instance ID of the server.

i-bp1a69mvjujbakxu****
IntranetIpstring

The private IP address of the affected asset.

172.25.XX.XX
InternetIpstring

The public IP address of the affected asset.

8.210.XX.XX
InstanceNamestring

The name of the server.

sql-test-0****
Uuidstring

The UUID of the server.

49e25e0f-bb51-4a5a-a1b3-13a4ddaa****
RegionIdstring

The region ID of the asset.

cn-hangzhou
Promptstring

The prompt for the risk item.

There is a weak password (username/password): root/he*****34
WarningRiskListarray<object>

The information about the baselines on which the risk item is detected.

WarningRiskListobject

The details about the baseline based on which the risk item is detected.

RiskIdlong

The ID of the baseline.

72
RiskNamestring

The name of the baseline.

Alibaba Cloud Linux/Aliyun Linux 2 Baseline for China classified protection of cybersecurity-Level II
FixListarray<object>

The details of the baselines for which the risk item can be fixed.

FixListobject

The details about the baseline for which the risk item can be fixed.

RiskIdlong

The ID of the baseline.

72
RiskNamestring

The name of the baseline.

Alibaba Cloud Linux/Aliyun Linux 2 Baseline for China classified protection of cybersecurity-Level II
ContainerIdstring

The ID of the container.

48a6d9a92435a13ad573372c3f3c63b7e04d106458141df9f9215570********
ContainerNamestring

The name of the container.

step-build-ui-build
TargetNamestring

The name of the asset on which the malicious image sample is detected.

jenkins****
TargetIdstring

The ID of the asset that is scanned.

30****
TargetTypestring

The type of the asset. Valid values:

  • ECS_SNAPSHOT
  • ECS_IMAGE
ECS_IMAGE
LastScanTimelong

The timestamp generated when the last scan was performed. Unit: milliseconds.

1694692471000
LastHandleTimelong

The timestamp of the latest processing of the check item risk of the machine. Unit: milliseconds.

1694692471000
FixStatusinteger

Whether the repair is supported. Valid values:

  • 0: Supported
  • 1: Not Supported
1
PageInfoobject

The pagination information.

CurrentPageinteger

The page number of the returned page.

1
PageSizeinteger

The number of entries returned per page.

20
TotalCountinteger

The total number of affected assets.

107
Countinteger

The number of affected assets returned on the current page.

4
RequestIdstring

The ID of the request, which is used to locate and troubleshoot issues.

22B5615F-700E-575A-A6D5-DC8D7741****

Examples

Sample success responses

JSONformat

{
  "List": [
    {
      "Status": 1,
      "Bind": true,
      "AuthVersion": 3,
      "PortOpen": true,
      "InstanceId": "i-bp1a69mvjujbakxu****",
      "IntranetIp": "172.25.XX.XX",
      "InternetIp": "8.210.XX.XX",
      "InstanceName": "sql-test-0****",
      "Uuid": "49e25e0f-bb51-4a5a-a1b3-13a4ddaa****",
      "RegionId": "cn-hangzhou",
      "Prompt": "There is a weak password (username/password): root/he*****34",
      "WarningRiskList": [
        {
          "RiskId": 72,
          "RiskName": "Alibaba Cloud Linux/Aliyun Linux 2 Baseline for China classified protection of cybersecurity-Level II"
        }
      ],
      "FixList": [
        {
          "RiskId": 72,
          "RiskName": "Alibaba Cloud Linux/Aliyun Linux 2 Baseline for China classified protection of cybersecurity-Level II"
        }
      ],
      "ContainerId": "48a6d9a92435a13ad573372c3f3c63b7e04d106458141df9f9215570********",
      "ContainerName": "step-build-ui-build",
      "TargetName": "jenkins****",
      "TargetId": "30****",
      "TargetType": "ECS_IMAGE",
      "LastScanTime": 1694692471000,
      "LastHandleTime": 1694692471000,
      "FixStatus": 1
    }
  ],
  "PageInfo": {
    "CurrentPage": 1,
    "PageSize": 20,
    "TotalCount": 107,
    "Count": 4
  },
  "RequestId": "22B5615F-700E-575A-A6D5-DC8D7741****"
}

Error codes

HTTP status codeError codeError messageDescription
403NoPermissioncaller has no permissionYou are not authorized to do this operation.
500ServerErrorServerError-

For a list of error codes, visit the Service error codes.

Change history

Change timeSummary of changesOperation
2023-12-07The Error code has changed. The request parameters of the API has changed. The response structure of the API has changedView Change Details
2023-08-18The Error code has changed. The request parameters of the API has changed. The response structure of the API has changedView Change Details
2023-03-22The Error code has changed. The response structure of the API has changedView Change Details