If the compartment for the security zone has any existing resources, you can use the Console to identify the resources that violate the security zone's policies, and take corrective actions.
Cloud Guard routinely scans the resources in your security zones for policy violations. Each policy violation is recorded as a problem in Cloud Guard. For a new security zone, it can take up to three hours before any violations are detected.
-
On the Security Zones list page, select the security zone that you want to work with. If you need help finding the list page or the security zone, see Listing a Security Zone.
-
On the details page under Associated compartments, expand the current compartment to show any subcompartments that are also in the security zone.
-
If the compartment or any subcompartment has any policy Violations, select View details in Cloud Guard.
The Problems page in Cloud Guard opens and displays problems detected in this security zone only.
-
Select a problem to view the following details:
- A description of the security zone policy
- The name and location of the resource in violation of the policy
- The relative risk level of the policy violation (Critical, Major, Minor, and so on)
- The recommended actions to take to correct the problem
For descriptions of all available policies, see Security Zone Policies. For more information about using Cloud Guard, see Processing Reported Problems.