[Yandex Cloud documentation](../../../index.md) > [Yandex Security Deck](../../index.md) > [Step-by-step guides](../index.md) > [Cloud Security Posture Management (CSPM)](index.md) > View control and violation rules

# Viewing CSPM security control rules and related violations

{% note info %}

This feature is at the [Preview](../../../overview/concepts/launch-stages.md) stage.

{% endnote %}

The CSPM module's security control [rules](../../concepts/cspm.md#rules) are used in the Security Deck [workspaces](../../concepts/workspace.md). If you have no workspaces yet, [create](../workspaces/create.md) one.

## Viewing general information about security control rules {#general-info}

To view [general information](../../concepts/cspm.md#general-info) about the CSPM module's current security control rules and related violation cases:

{% list tabs group=instructions %}

- Security Deck UI {#cloud-sd}

  1. Go to [Yandex Security Deck](https://center.yandex.cloud/security/).
  1. In the left-hand panel, select ![file-text](../../../_assets/console-icons/file-text.svg) **Rules and exceptions**.
  1. At the top of the window, select the [workspace](../../concepts/workspace.md) for which you want to view the rule info.
  1. On the **Security control rules** page that opens, go to the **Configuration** tab. The section that opens lists the control rules that form a part of the [security standards](../../concepts/workspace.md#standards) specified for the current workspace.

      For each rule, the table displays the following information:
      
      {% note tip %}
      
      If you need to, you can change the info columns displayed in the table. Do it by clicking ![gear](../../../_assets/console-icons/gear.svg) in the row with the table column headers, selecting the info columns you need, and clicking **Apply**.
      
      {% endnote %}
      
      * ![traffic-light](../../../_assets/console-icons/traffic-light.svg): Rule criticality level; this icon indicates how security-critical the rule is:
        
        * ![cspm-rule-notice-icon](../../../_assets/security-deck/cspm-rule-notice-icon.svg): Remark
        * ![cspm-low-severity-icon](../../../_assets/security-deck/cspm-low-severity-icon.svg): Low severity.
        * ![cspm-moderate-severity-icon](../../../_assets/security-deck/cspm-moderate-severity-icon.svg): Medium severity.
        * ![cspm-high-severity-icon](../../../_assets/security-deck/cspm-high-severity-icon.svg): High severity.
      * **Control rule**: Rule name and brief summary. To [learn more](view-rules.md#detailed-info) about a rule, click the table row with its name.
      * **Rule sets**: Icon(s) complying with the safety standards that implement this rule. If the icon is colored, it means the rule is checked for the corresponding standard. If the icon is gray, it means it is not.
      * **Violations**: Number of rule violations detected.
      * **Rule type
      **: How the infrastructure controlled in the workspace is checked for compliance with this rule:
      
          * `Automatic`: Rule is checked automatically once every eight hours.
          * `Manual`: Rule has to be checked manually. Click the row with the rule to find a guide and details.
      * **ID**: Rule ID in Yandex Cloud.

{% endlist %}

## Viewing detailed information about security control rules {#detailed-info}

To view [detailed information](../../concepts/cspm.md#detailed-info) about a specific security control rule of the CSPM module:

{% list tabs group=instructions %}

- Security Deck UI {#cloud-sd}

  1. Go to [Yandex Security Deck](https://center.yandex.cloud/security/).
  1. In the left-hand panel, select ![file-text](../../../_assets/console-icons/file-text.svg) **Rules and exceptions**.
  1. At the top of the window, select the [workspace](../../concepts/workspace.md) for which you want to view the rule info.
  1. On the **Security control rules** page that opens, go to the **Configuration** tab. The section that opens lists the control rules that form a part of the [security standards](../../concepts/workspace.md#standards) specified for the current workspace.
  1. To learn more about a security control rule, click the table row with its name. You will see a window with rule details, which has the following tabs:
     
     {% list tabs %}
     
     - Overview
     
       The **Overview** tab contains:
     
       * Rule category (ID of the Security Deck module that uses the rule).
       * Rule ID.
       * [Set of security requirements](../../concepts/standard-compliance/index.md#security-rule-sets) the rule applies to.
       * Date and time of the most recent security check.
       * Rule type (check method):
     
           * `Automatic`: Rule is checked automatically once every eight hours.
           * `Manual`: Rule has to be checked manually.
       * Details on the monitored features, their configurations, or actions performed with them.
     
     - Violations
     
       The **Violations** tab lists control rule violations detected during the checks. Detected violations will not appear in this list if they satisfy the [exception](../../concepts/cspm.md#exceptions) criteria specified for the rule.
     
     - Exceptions
     
       The **Exceptions** tab lists all [exceptions](../../concepts/cspm.md#exceptions) defined for the rule along with controls for exception [management](manage-exceptions.md).
     
     - Recommendations
     
       The **Recommendations** tab provides guides and solutions to assist you with rule compliance.
     
     {% endlist %}

{% endlist %}

#### Useful links {#see-also}

* [Managing exceptions to CSPM security control rules](manage-exceptions.md)
* [Cloud Security Posture Management (CSPM)](../../concepts/cspm.md)
* [Security Deck workspaces](../../concepts/workspace.md)