Viewing Baseline Check Results

Scenarios

After a check plan is set, you can perform an immediate check on the Baseline Inspection page. It takes about 10 minutes for the check results to be displayed on the result page. For details about how to perform an immediate check, see Starting an Immediate Baseline Check.

If you do not perform an immediate check, the system performs the check at the specified time according to the check plan. For example, the system performs the check every three days by default, and the check is performed from 00:00 to 06:00 each time. You can view the check results on the Check Result page.

This topic describes where to view results of a baseline check plan.

Prerequisites

• Cloud service baseline scanning has been performed.

Viewing Baseline Check Results

1. Log in to the management console.
2. Click in the upper left corner of the management console and select a region or project.
3. Click in the upper left corner of the page and choose Security & Compliance > SecMaster.
4. In the navigation pane on the left, choose Workspaces > Management. In the workspace list, click the name of the target workspace.
   Figure 1 Workspace management page
   

5. (Optional) In the navigation pane on the left, choose Settings > Data Integration. On the displayed page, locate the row where SecMaster is located, enable the log access to compliance baseline logs in the Logs column.

   SecMaster synchronizes all security data within a region to the first workspace in the region. For the non-first workspaces, you need to configure log access manually.

   This topic describes how to enable log access to SecMaster manually.

   Figure 2 Compliance baseline log
   

   After the setting is complete, you can start an immediate check on the Baseline Inspection page. It takes about 10 minutes for the check results to be displayed on the result page. For details about how to perform an immediate check, see Starting an Immediate Baseline Check.

   If you do not perform an immediate check, the system performs the check at the specified time according to the check plan. For example, the system performs the check every three days by default, and the check is performed from 00:00 to 06:00 each time. You can view the check results on the Check Result page.

6. In the navigation pane on the left, choose Risk Prevention > Baseline Inspection.
   Figure 3 Accessing the check result page
   

7. On the Check Result tab, view the check results of check items. For details about the parameters, see Table 1.

   Table 1 Check result parameters

   Parameter	Description
   Risks By Severity	Risks found in the last baseline check are listed by severity as well as the corresponding resource quantity. Severity: Critical, High, Medium, Low, and Informational.
   Security Policy Check Results	This graph shows how many failed and passed check items your cloud services have in the last baseline check.
   Security Standard Compliance Status	This part shows how well your workloads comply with each security standard. You will see a percentage of passed check items in total check items for each standard.
   Check Pass Rate	Rate of the passed check items in the latest baseline check. Check pass rate = Passed check items/(Passed check items + failed check items + check item errors) x 100%. Note that check items not performed are not counted.
   Security Standards and the check result list	All security standards and check results are displayed. To view the check results of a specific compliance pack, click the security standard on the left. The check result details will be displayed on the right. To display certain columns only, click the setting button in the upper right corner of the check result list and complete the settings (for example, whether to wrap lines and whether to fix the operation column). To view details about a check item, click the name of the check item to go to its details page. On the check item details page, view details about description, check process, check result, and checked resources.