To see all the cloud rules that you have permission to view:
- In the left navigation menu, click Cloud Management > Cloud Rules.
- You will see a list of all the cloud rules you have permission to view. Cloud rules can be filtered by keyword using the Filters button on the top left. Use the arrow buttons on the top right to navigate through the pages of results. You can also click Add New at the top to add a new cloud rule.
You can click on the cloud rule name to visit the detail page for the check. Clicking the ellipsis menu on the right of a cloud rule gives you the option to:
- View - view the details page for the check.
- Edit - edit the cloud rule.
- Delete - delete the cloud rule.
- Clone - create a new cloud rule using the selected one as a template.
Cloud Rule Details: Overview Tab
Click the name of the cloud rule or View on the ellipsis menu to view its details page, including a tab menu for the cloud rule. A More tab will display when there are more tabs than the screen can accommodate; you can click More to review the remaining menu options.
The Overview tab shows by default. The Provided field indicates whether this cloud rule was provided by cloudtamer.io.
Cloud Rule Details: AWS Settings Tab
Click the AWS Settings tab to see AWS settings, including:
On this page, you will see:
Cloud Rule Name and Description
- The name of the cloud rule is featured at the top of the screen.
- An optional description of the cloud rule is shown below the cloud rule name.
- An ellipsis menu on the top right that allows you to Edit, Delete, or Clone the cloud rule.
AWS IAM Policies
- This section shows all AWS IAM Policies attached to the cloud rule.
AWS CloudFormation Templates
- This section shows all AWS CloudFormation templates attached to the cloud rule.
AWS AMIs
- This section shows all AWS AMIs shared through the cloud rule.
AWS Service Catalog Portfolios
- This section shows all AWS Service Catalog Portfolios attached to the cloud rule.
AWS Service Control Policy
- This section shows all AWS SCPs attached to the cloud rule. The SCPs will apply account-wide for any accounts associated with the objects to which the cloud rule is attached.
Cloud Rule Details: Azure Settings Tab
Click the Azure Settings tab to view Azure settings, including:
Azure Role Definitions
- This section shows all Azure role definitions attached to the cloud rule.
Azure Policy Definitions
- This section shows all Azure policy definitions attached to the cloud rule.
Azure ARM Templates
- This section shows all Azure ARM templates attached to the cloud rule.
Cloud Rule Details: Webhooks Tab
Click the Webhooks tab to view each webhook that is set up to be triggered before (Pre-Rule Webhook) and after (Post-Rule Webhook) the cloud rule is applied.
Cloud Rule Details: OUs Tab
Click the OUs tab to view the OUs to which the cloud rule is attached, their origin (local or inherited), and the cloud rule's Status for that OU. You can expand the OUs for more information with the caret on the left.
Cloud Rule Details: Projects Tab
Click the Projects tab to view the projects to which the cloud rule is attached, their origin (local or inherited), and the cloud rule's Status for that project. You can expand the projects for more information with the caret on the left.
Cloud Rule Details: Compliance Tab
Click the Compliance tab to view all compliance standards that are applied to this cloud rule. You can click on the badges for active and suppressed findings to view a list of those findings. Click Add New to create a new compliance standard.
