- What's New
- Function Overview
- Service Overview
- Billing
- Getting Started
-
User Guide
- Buying SecMaster
- Authorizing SecMaster
- Viewing Security Overview
- Workspaces
- Viewing Purchased Resources
- Security Situation
- Resource Manager
- Risk Prevention
- Threat Operations
- Security Orchestration
-
Playbook Overview
- Ransomware Incident Response Solution
- Attack Link Analysis Alert Notification
- HSS Isolation and Killing of Malware
- Automatic Renaming of Alert Names
- Auto High-Risk Vulnerability Notification
- Automatic Notification of High-Risk Alerts
- Auto Blocking for High-risk Alerts
- Real-time Notification of Critical Organization and Management Operations
-
Settings
- Data Integration
-
Log Data Collection
- Data Collection Overview
- Adding a Node
- Configuring a Component
- Adding a Connection
- Creating and Editing a Parser
- Adding and Editing a Collection Channel
- Managing Connections
- Managing Parsers
- Managing Collection Channels
- Viewing Collection Nodes
- Managing Nodes and Components
- Partitioning a Disk
- Logstash Configuration Description
- Connector Rules
- Parser Rules
- Upgrading the Component Controller
- Customizing Directories
- Permissions Management
- Key Operations Recorded by CTS
-
Best Practices
-
Log Access and Transfer Operation Guide
- Solution Overview
- Resource Planning
- Process Flow
-
Procedure
- (Optional) Step 1: Buy an ECS
- (Optional) Step 2: Buy a Data Disk
- (Optional) Step 3: Attach a Data Disk
- Step 4: Create a Non-administrator IAM User
- Step 5: Configure Network Connection
- Step 6: Install the Component Controller (isap-agent)
- Step 7: Install the Log Collection Component (Logstash)
- (Optional) Step 8: Creating a Log Storage Pipeline
- Step 9: Configure a Connector
- (Optional) Step 10: Configure a Log Parser
- Step 11: Configure a Log Collection Channel
- Step 12: Verify Log Access and Transfer
- Credential Leakage Response Solution
-
Log Access and Transfer Operation Guide
-
API Reference
- Before You Start
- API Overview
- Calling APIs
-
API
- Alert Management
- Incident Management
- Indicator Management
- Playbook Management
- Alert Rule Management
- Playbook Version Management
- Playbook Rule Management
- Playbook Instance Management
- Playbook Approval Management
- Playbook Action Management
- Incident Relationship Management
- Data Class Management
- Workflow Management
- Data Space Management
- Pipelines
- Workspace Management
- Metering and Billing
- Metric Query
- Baseline Inspection
- Appendix
- FAQs
Overview
SecMaster automatically discovers and manages all assets on and off the cloud and displays the real-time security status of your assets.
- Cloud assets: assets on this cloud, for example, Elastic Cloud Server (ECS), Web Application Firewall (WAF), Relational Database Service (RDS), Elastic IP (EIP), and Virtual Private Cloud (VPC).
- Off-cloud assets: assets not on this cloud, for example, on-premises servers, IDC servers, or servers on third-party cloud platforms.
With SecMaster, you can:
- Manage cloud assets: Set asset subscription, view asset information, import or export assets, and edit or delete assets.
- Manage off-cloud assets: View asset information, import or export assets, and edit or delete assets.
To manage off-cloud assets, you need to import asset information into SecMaster first. This is the only difference from management of cloud assets.
On the Resource Manager page, you can view the security status statistics of all resources under your account. This helps you quickly locate security risks and find solutions.
Asset Source and Corresponding Security Products
|
Asset Type |
Asset Name |
Source |
Security Product |
|---|---|---|---|
|
Cloud asset |
Servers |
Elastic Cloud Server (ECS) |
Host Security Service (HSS) |
|
Cloud asset |
Website |
Web Application Firewall (WAF) |
Web Application Firewall (WAF) |
|
Cloud asset |
Database |
Relational Database Service (RDS) |
Database Security Service (DBSS) |
|
Cloud asset |
VPC |
Virtual Private Cloud (VPC) |
Cloud Firewall (CFW) |
|
Cloud asset |
EIP |
Elastic IP (EIP) |
CNAD Basic (Anti-DDoS) |
|
Off-cloud asset |
Device |
Off-cloud assets include on-premises servers, IDC servers, servers on third-party cloud platforms. In a word, off-cloud assets include assets that are not on Huawei Cloud. |
-- |
 NOTE:
After the asset information is synchronized to SecMaster, the protection status of assets will be displayed on the SecMaster console. The protection status is as follows:
|
|||
Limitations and Constraints
After asset subscription, you can click System Synchronize Assets on the Resource Manager page to synchronize asset information again. The basic edition allows you to synchronize assets one time per day, and the standard or professional edition allows you to synchronize assets 20 times per day. If you exceed this threshold, the system displays error message "Insufficient resource synchronization quota." In this case, synchronize assets again the next day.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.
