Updated on 2024-11-06 GMT+08:00

Creating a Custom Check Plan

Scenarios

SecMaster can check whether your assets have risks based on baseline check plans. By default, every three days SecMaster automatically performs a baseline check on all assets in the current region under your account from 00:00 to 06:00 in accordance with compliance pack Cloud Security Compliance Check 1.0. You can also specify custom check periods and time.

This document describes how to create a custom baseline check plan.

Limitations and Constraints

  • A compliance pack can be added to only one check plan.
  • Check items in compliance pack DJCP Level 3 Requirements are manual check items. So, SecMaster does not support check plans that contain this package.
  • The default check plan can be enabled or disabled only. No changes on its compliance packs or execution time can be made.

Procedure

  1. Log in to the management console.
  2. Click in the upper left corner of the management console and select a region or project.
  3. Click in the upper left corner of the page and choose Security & Compliance > SecMaster.
  4. In the navigation pane on the left, choose Workspaces > Management. In the workspace list, click the name of the target workspace.

    Figure 1 Workspace management page

  5. In the navigation pane on the left, choose Risk Prevention > Baseline Inspection. On the displayed page, click the Security Standards tab. Then, click the Check Plan tab.
  6. On the Check Plan tab, click Create Plan. The pane for creating a plan is displayed on the right.
  7. Configure the check plan.

    Table 1 Parameters for creating a check plan

    Parameter

    Description

    Basic Information

    Name

    Custom plan name.

    Schedule

    Select how often and when the check plan is executed.

    • Schedule: every day, every 3 days, every 7 days, every 15 days, or every 30 days
    • Check start time: 00:00-06:00, 06:00-12:00, 12:00-18:00, or 18:00-24:00

    Select Compliance Pack

    Select the compliance pack you want to use.

  8. Click OK.

    After the check plan is created, SecMaster performs cloud service baseline scanning at the specified time. You can choose Risk Prevention > Baseline Inspection to view the scan result.

Related Operations

You can view, edit, enable, disable, or delete a custom check plan.

  • Viewing a check plan
    1. In the navigation pane on the left, choose Risk Prevention > Baseline Inspection. On the Baseline Inspection page, click the Security Standards tab. Then, click the Check Plan tab.
    2. On the Check Plan page, view what check plans you already have.
  • Editing a custom check plan
    Only custom check plans can be edited.
    1. In the navigation pane on the left, choose Risk Prevention > Baseline Inspection. On the Baseline Inspection page, click the Security Standards tab. Then, click the Check Plan tab.
    2. In the upper right corner of the check plan box, click Edit. The pane for editing the check plan is displayed on the right.
    3. Edit settings and click OK.
  • Deleting a custom check plan
    Only custom check plans can be deleted.
    1. In the navigation pane on the left, choose Risk Prevention > Baseline Inspection. On the Baseline Inspection page, click the Security Standards tab. Then, click the Check Plan tab.
    2. In the upper right corner of the check plan box, click Delete.
    3. In the displayed dialog box, click OK.
  • Disabling or enabling a check plan
    1. In the navigation pane on the left, choose Risk Prevention > Baseline Inspection. On the Baseline Inspection page, click the Security Standards tab. Then, click the Check Plan tab.
    2. Toggle on or off the status button in the box where the target plan is located.