If the compartment for the security zone has any existing resources, you can use the Console to identify the resources that violate the security zone's policies, and take corrective actions.
Cloud Guard routinely scans the resources in your security zones for policy violations. Each policy violation is recorded as a problem in Cloud Guard. For a new security zone, it can take up to three hours before any violations are detected.
-
Open the navigation menu and click Identity & Security. Under Security Zones, click Overview.
-
Under List scope, select the compartment associated with the security zone that you want to view.
-
Click the name of the security zone.
-
On the Security Zone details page, in the Associated compartments table, expand the current compartment to show any subcompartments that are also in this security zone.
-
If the compartment or any subcompartment has any policy Violations, click View details in Cloud Guard.
The Problems page in Cloud Guard displays only problems detected in this security zone.
-
Click a problem to view the following details:
- A description of the security zone policy
- The name and location of the resource in violation of the policy
- The relative risk level of the policy violation (Critical, Major, Minor, and so on)
- The recommended actions to take to correct the problem
For descriptions of all available policies, see Security Zone Policies. For more information about using Cloud Guard, see Processing Reported Problems.