Help Center/ SecMaster/ Service Overview/ Limitations and Constraints

Updated on 2024-12-28 GMT+08:00

View PDF

Limitations and Constraints

This section describes the limitations and constraints on using SecMaster.

About Purchase

**Table 1** Purchase operations
Module	Limitations and Constraints
Quota	The quota must be greater than or equal to the total number of ECSs within your account. This value cannot be changed to a smaller one after your purchase is complete. The maximum quota is 10,000.
Value-added package	The basic edition does not support the value-added packages. To use functions in the value-added packages, upgrade the basic edition to the standard or professional edition. Value-added packages cannot be used independently. To purchase a value-added package, purchase the standard or professional edition first. If you unsubscribe from the pay-per-use professional edition, the system automatically unsubscribes from the value-added packages. If you unsubscribe from the yearly/monthly standard or professional edition, you need to manually unsubscribe from the value-added packages you have.
Tag	A maximum of 10 tags can be added for SecMaster.

Workspaces

**Table 2** Workspaces
Module	Limitations and Constraints
Workspaces	Paid SecMaster: A maximum of five workspaces can be created for a single account in a single region. Free SecMaster: Only one workspace can be created for a single account in a single region. Currently, performing operations across different workspaces in multiple browser windows at the same time is not supported.
Managed environments	Edge sites, such as IEC, DeC, and IES, cannot be managed. Only the default project can be managed. Sub-projects cannot be managed. Resources cannot be managed by EPS.
Agencies	A maximum of one workspace agency view can be created for an account in a region. A maximum of 150 workspaces from different regions and accounts can be managed by a workspace agency view. A maximum of 10 agencies can be created for an account.

Security Reports

**Table 3** Security Reports
Module	Limitations and Constraints
Security Reports	A maximum of 10 security reports (including daily, weekly, and monthly reports) can be created in a workspace of an account.

Alert Models

**Table 4** Alert Models
Module	Limitations and Constraints
Alert Models	A maximum of 100 alert models can be created in a single workspace under a single account in a single region. The running interval of an alert model must be greater than or equal to 5 minutes, and the time range for querying data must be less than or equal to 14 days.

Security Analysis

**Table 5** Security Analysis
Module	Limitations and Constraints
Query and analysis	A maximum of 500 results can be returned for a single analysis query. A maximum of 50 shortcut queries can be created in a pipeline. That is, a maximum of 50 query analysis criteria can be saved as shortcut queries. If there are over 50,000 results for a single query, the accuracy may decrease. In this case, you can select a short time range or apply more filter criteria to reduce the number of query results. In aggregation queries (for example, GROUP BY statement) based on several fields, the default number of buckets for the second field is 10. If more than 10 buckets are generated, part of qualified data will be lost. In this case, the query results are not accurate. A maximum of 100 query and analysis results can be saved as metric cards in a workspace for an account.
Data Space	A maximum of five data spaces can be created in a workspace in a region for an account.
Data Pipelines	A maximum of 20 pipelines can be created in a data space in a region for an account.

Incidents, Alerts, Indicators, And Vulnerabilities

**Table 6** Security Reports
Module	Limitations and Constraints
Vulnerabilities	A maximum of 100 vulnerabilities can be added every day in a workspace for an account.
Alerts	A maximum of 100 alerts can be added every day in a workspace of an account. In a workspace of an account, a maximum of 100 alerts can be converted into incidents each day.
Incidents	A maximum of 100 incidents can be added every day in a workspace of an account.
Indicators	A maximum of 100 indicators can be added every day in a workspace of an account.

Security Orchestration

**Table 7** Security Orchestration
Module	Limitations and Constraints
Playbooks	In a single workspace of an account, the scheduling frequency of a single playbook is greater than or equal to 5 minutes.
Playbook and workflow instances	The maximum number of retries within a day for a single workspace of a single account is as follows: Manual retries: 100. After a retry, the playbook cannot be retried until the current execution is complete. API retries: 100. After a retry, the playbook cannot be retried until the current execution is complete.
Classification & Mapping	In a single workspace of a single account, a maximum of 50 classification & mapping templates can be created. In a single workspace of a single account, the proportion of a classification to its mappings is 1:100. A maximum of 100 classifications and mappings can be added to a workspace of a single account.

Previous topic: Preconfigured Playbooks

Next topic: Permissions Management

Feedback

Was this page helpful?

Helpful Not helpful

Provide feedback

Thank you very much for your feedback. We will continue working to improve the documentation.

The system is busy. Please try again later.

Which of the following issues have you encountered?

Content is inconsistent with the product UI

Unclear descriptions

Lack of examples or code

Incorrect steps

Can't find what I need

Lack of best practices

Feedback (optional)

0/500

Select at least one type of issue, and enter your comments or suggestions.

Enter a maximum of 500 characters.

Submit Cancel