Overview

SecMaster automatically discovers and manages all assets on and off the cloud and displays the real-time security status of your assets.

Cloud assets: assets on this cloud, for example, Elastic Cloud Server (ECS), Web Application Firewall (WAF), Relational Database Service (RDS), Elastic IP (EIP), and Virtual Private Cloud (VPC).
Off-cloud assets: assets not on this cloud, for example, on-premises servers, IDC servers, or servers on third-party cloud platforms.

With SecMaster, you can:

Manage cloud assets: Set asset subscription, view asset information, import or export assets, and edit or delete assets.
Manage off-cloud assets: View asset information, import or export assets, and edit or delete assets.

To manage off-cloud assets, you need to import asset information into SecMaster first. This is the only difference from management of cloud assets.

On the Resource Manager page, you can view the security status statistics of all resources under your account. This helps you quickly locate security risks and find solutions.

Asset Source and Corresponding Security Products

**Table 1** Asset source and corresponding security products
Asset Type	Asset Name	Source	Security Product
Cloud asset	Servers	Elastic Cloud Server (ECS)	Host Security Service (HSS)
Cloud asset	Website	Web Application Firewall (WAF)	Web Application Firewall (WAF)
Cloud asset	Database	Relational Database Service (RDS)	Database Security Service (DBSS)
Cloud asset	VPC	Virtual Private Cloud (VPC)	Cloud Firewall (CFW)
Cloud asset	EIP	Elastic IP (EIP)	CNAD Basic (Anti-DDoS)
Off-cloud asset	Device	Off-cloud assets include on-premises servers, IDC servers, servers on third-party cloud platforms. In a word, off-cloud assets include assets that are not on Huawei Cloud.	--
NOTE: After the asset information is synchronized to SecMaster, the protection status of assets will be displayed on the SecMaster console. The protection status is as follows: If Protection Status for an asset is Protected, the corresponding security product has been enabled for the asset. If Protection Status for an asset is Unprotected, the corresponding security product has not been purchased or enabled for the asset. If you want to protect target assets, purchase corresponding security products and enable protection. For example, if you want to protect ECSs, purchase HSS and enable HSS for each ECS. If protection status for an asset is --, the corresponding security product is not supported in the current region.

Limitations and Constraints

After asset subscription, you can click System Synchronize Assets on the Resource Manager page to synchronize asset information again. The basic edition allows you to synchronize assets one time per day, and the standard or professional edition allows you to synchronize assets 20 times per day. If you exceed this threshold, the system displays error message "Insufficient resource synchronization quota." In this case, synchronize assets again the next day.

Parent topic: Resource Manager

Previous topic: Resource Manager

Next topic: Configuring the Asset Subscription