Asset List
Last updated:2025-09-17 21:28:59
CSC consoleAK Assets
AK Asset List
1. Log in to the CSC console, and click Cloud API Exception Monitoring in the left navigation.
2. In Asset List > AK Asset, view AK basic info, security advice, associated alarms and risks based on the asset perspective.
Note:
Note: Temporary keys are displayed in an aggregated manner due to their considerable quantity and frequent adjustments. These temporary keys also contain console temporary keys, named "temporary key".
Field Name | Example | Description |
AK Name/Remark | AKID75XXX Department 1 AK | AK Name and Custom Remarks AK reserves the first 6 and last 11 digits, with the middle omitted, supporting one-click copy. Click to pull up the AK detail drawer. Remarks can be custom edited, no more than 20 characters. If empty, display "-". Support filtering root account key/sub-account key/temporary key. |
Account Name Identity | Account A Root Account/Sub-Account (Belonging to Main Account: Account B) | AK cloud service provider and account. If it is a sub-account, show root account information. Hover over to view account name, account ID and APPID. |
security advice | Process now Harden now no abnormality detected | Based on the present AK alarms and risk status, we offer a comprehensive security level. You can handle them by the recommended severity. Support filtering different AKs for recommendation management. |
Alarm | Abnormal behavior: x Leakage detection: x | Recent unhandled alarms. Click to pull up the AK details drawer and locate the Alarm tab. Support filtering: leakage monitoring/abnormal behavior/no alarm |
Risk | Configuration risk: x | Recent unhandled risks. Click to pull up the AK details drawer and locate the Configuration Risk tab. |
Call Source IP | 1 | Number of IPs calling this AK in the last 7 days. Hover over to view source IP, region, IP data type and remarks. |
AK creation/last access time | 2025-01-01 18:00:00 2025-01-12 18:00:00 | AK creation and last access time Format: YYYY-MM-DD HH:MM:SS. Support sorting. |
AK Status | Disabled Enabled Deleted | Show AK disabled/enabled/deleted status. Support filtering: disabled/enabled/deleted. |
3. In the AK assets, select the desired AK and click Details/More.
Operation Type | Description | |
Details | | Click to pull up the AK details drawer. |
Others | Risk detection | Click to recheck the AK. |
| API Token Management | Click to navigate to Cloud Access Management > API Key Management. |
| Modify AK remark | Modify AK remark, click OK. |
| Allowlist policy | Click Add Allowlist Policy to pull up the drawer and fill in the corresponding IP. |
| Add alarm policy | Click Add Alarm Policy to pull up the drawer and fill in the corresponding IP. |
| Go to View Logs | Click to navigate to Log Analysis > VAS Log Retrieval. |
AK Details
1. Log in to the CSC console, and click Cloud API Exception Monitoring in the left navigation.
2. In the Asset List > AK Asset, select the desired asset and click Details.
3. On the AK details page, view AK basic info, associated alarms and configuration risks, invocation records and associated assets.
View AK basic info, including account name, account identity, account ID/APPID, belonging to main account, CAM policy, AK creation time and last access time.
View AK alarm information. Unhandled alarms are displayed by default. Click Details to open the alarm details drawer. For descriptions of related fields, see Alarm.
View AK configuration risk information. Unhandled risks are displayed by default. Click Details to open the risk details drawer. For descriptions of related fields, see Configuration Risk.
View AK associated assets, including asset ID/name, asset type, asset tag and region.
Field Name | Example | Description |
Asset ID/Name | ins-xxx xxx | The unique identifier of the asset on the Clouds platform and its custom name. Click the Asset ID to navigate to Asset Center > Host Assets details. |
Asset type | CVM | The service product type of the asset. Support filtering CVM/Lighthouse. |
asset tag | - | Sync asset center tag information. |
Region | Beijing | The geographical location of the data center where the asset resides. Support filtering for Beijing, Guangzhou, Hong Kong (China), Shanghai, Shanghai Finance, and Singapore. |
View call records, including IP address, IP type, calling method, service name, count of success or failure, first/most recent call time, and related CAM policy.
Field Name | Example | Description |
Call Source IP/region/remark | 1.x.x.1 China-Beijing | Department 1 AK | Call source IP, region, and custom remarks. IP content supports one-click copy. Remarks can be custom edited, no more than 20 characters. If empty, display "-". |
IP address type | Account (with remark) Account (without remark) Account (with remark) Account (without remark) LAN (with remark) LAN (without remark) | Within the account (with remark): The source IP of calls identified in the CSC asset list, with remark. Within the account (without remark): The source IP of calls identified in the CSC asset list, without remark. Outside the account (with remark): IP not within the account but with remark. Outside the account (without remark): IP not within the account and without remark. LAN (with remark): Local Area Network IP Address, with remark. LAN (without remark): Local Area Network IP Address, without remark. |
Calling Method | API Console | Access the service via API call AK or through console operations. |
Call API/service | DescribeAccountPrivileges cdb | API and its associated service. |
CAM policy User (Role)/Policy | 1 user: xxx Policy: 1 | The number of CAM policies associated with this AK. Click the digit to open the CAM policy details popup. The temporary key is displayed in an aggregated manner since it shows users (role). |
Call status Number of invocations | Successful. (x Times) Failed. (x times) | Call the AK. Success/Failed state (x times). |
First call time Recent call time | 2025-01-01 18:00:00 2025-01-12 18:00:00 | First call time and recent call time. Format: YYYY-MM-DD HH:MM:SS. Support sorting. |
IP (Asset ID/Name) | ins-xxx Machine 1 | Show AK Assets. |
4. On the AK Details > Basic Info > Call Record webpage, select the desired source IP and click Details/More.
Details
Show call information, call details (including time, request ID, request body; supports pagination), CAM policy details.
Click Policy Details to show its policy code (copying is supported). Click Go to CAM to navigate to Access Management > Policy > Specific Policy Details.
Others
Add allowlist policy: Click Add Allowlist Policy to pull up the drawer, fill in the effective policy, corresponding IP, API call method, AK, API, and response code. For instructions, see Policy Management.
Manage allowlist policy: Click Policy Management to pull up the drawer and navigate to Policy Management > Allowlist Policy.
Call Source IP
Call Source IP List
1. Log in to the CSC console, and click Cloud API Exception Monitoring in the left navigation.
2. In Asset List > Call Source IP, view call source IP information, security advice, associated alarms and risks, and called AKs and APIs based on the call source IP perspective.
Note:
List data aggregation logic: an IP address calls AK under the same account within one day.
Only show API requests with permanent keys.
Field Name | Example | Description |
Call Source IP/region/remark | Hidden Show | Call source IP, region, and custom remarks; support hide, filter and present hidden/show IP next to the field. IP content supports one-click copy. Remarks can be custom edited, no more than 20 characters. If empty, display "-". |
IP address type | Account (with remark) Account (without remark) Account (with remark) Account (without remark) LAN (with remark) LAN (without remark) | Within the account (with remark): The source IP of calls identified in the CSC asset list, with remark. Within the account (without remark): The source IP of calls identified in the CSC asset list, without remark. Outside the account (with remark): IP not within the account but with remark. Outside the account (without remark): IP not within the account and without remark. LAN (with remark): Local Area Network IP Address, with remark. LAN (without remark): Local Area Network IP Address, without remark. |
IP (Asset ID/Name) | ins-xxx Machine 1 | Show AK Assets. |
Call AK | 1 | Click digits to show specific AK and its associated account. |
AK Account | Account A | Call the primary account to which the AK belongs. |
Call API | 1 | Click digit to open the Call Source IP details drawer. |
Alarm | Abnormal behavior: x Leakage detection: x | Recent unhandled alarms. Click to pull up the Call Source IP details drawer and locate the Alarm tab. Support filtering: leakage monitoring/abnormal behavior/no alarm. |
Recent call time | 2025-01-01 18:00:00 | Recent call time. Format: YYYY-MM-DD HH:MM:SS. Support sorting. |
3. In the source IP list, select the desired source IP and click Details/More.
Operation Type | Description | |
Details | | Click to pull up the Call Source IP details drawer. |
Others | Modify IP remark | Modify the source IP remark and click Confirm. |
| Allowlist policy | Click Add Allowlist Policy to pull up the drawer and fill in the corresponding IP. |
| Add alarm policy | Click Add Alarm Policy to pull up the drawer and fill in the corresponding IP. |
| Add IP hide policy | Click Add IP Hide Policy to pull up the drawer and fill in the corresponding IP. |
| Go to View Logs | Click to navigate to Log Analysis > VAS Log Retrieval. |
Call Source IP Details
1. Log in to the CSC console, and click Cloud API Exception Monitoring in the left navigation.
2. In the Asset List > Call Source IP, select the desired source IP and click Details.
3. On the Call Source IP details page, view IP basic info, associated alarms, call records, and associated assets.
View IP basic info, including AK associated account, account ID/APPID, IP asset ID, IP asset name and last call time.
View alarm information related to this IP. Unhandled alarms are displayed by default. Click Details to open the Alarm Details drawer. For field descriptions, refer to Alarm.
View call records, including the IP address, IP type, calling method, service name, count of success or failure, first time/most recent call time, and related CAM policy.
Field Name | Example | Description |
AK Name/Remark | AKID75XXX Department 1 AK | AK Name and Custom Remarks AK reserves the first 6 and last 11 digits, with the middle omitted, supporting one-click copy. Click to pull up the AK detail drawer. Remarks can be custom edited, no more than 20 characters. If empty, display "-". |
Calling Method | API Console | Access the service via API call AK or through console operations. |
Call API/service | DescribeAccountPrivileges cdb | API and its associated service. |
CAM policy User (Role)/Policy | 1 user: xxx Policy: 1 | The number of CAM policies associated with this AK. Click the digit to open the CAM policy details popup. The temporary key is displayed in an aggregated manner since it shows users (role). |
Call status Number of invocations | Successful. (x times) Failed. (x times) | Call the AK. Success/Failed state (x times). |
Recent call time | 2025-01-01 18:00:00 | Recent call time. Format: YYYY-MM-DD HH:MM:SS. Support sorting. |
IP (Asset ID/Name) | ins-xxx Machine 1 | Show AK Assets. |
4. On the Call Source IP Details > Basic Info > Call Record, select the desired AK and click Details/More.
Details:
Show call information, call details (including time, request ID, request body; supports pagination), CAM policy details.
Click Policy Details to show its policy code (copying is supported). Click Go to CAM to navigate to Access Management > Policy > Specific Policy Details.
Others
Add allowlist policy: Click Add Allowlist Policy to pull up the drawer, fill in the effective policy, corresponding IP, API call method, AK, API, and response code. For instructions, see Policy Management.
Manage allowlist policy: Click Policy Management to pull up the drawer and navigate to Policy Management > Allowlist Policy.
Was this page helpful?
You can also Contact Sales or Submit a Ticket for help.
Yes
No
Feedback