Cloud Service Baseline Overview

SecMaster can scan cloud services for risks in key configuration items, report scan results by category, generate alerts for incidents, and provide hardening suggestions and guidelines.

You can check key cloud service configurations for your workloads on the cloud-based security standards Cloud Security Compliance Check 1.0 and Network Security.

The default baseline check plan checks your assets every three days from 00:00 to 06:00. For details about how to set other check plans, see Configuring a Baseline Inspection Plan.

Limitations and Constraints

The SecMaster basic edition does not support baseline inspection. The basic edition does not support viewing of cloud service baseline details. To learn about your cloud service configuration status and ensure your cloud service configurations are appropriate, you are advised to use the professional edition. For details, see Buying the Professional Edition.

Process

**Table 1** Process
No.	Operation	Description
1	(Optional) Configuring a Baseline Inspection Plan	SecMaster uses the default check plan to check all assets. The default check plan checks your assets under your account every three days from 00:00 to 06:00. Customize check specifications and time based on your requirements.
2	Executing a Baseline Inspection Plan	The baseline inspection supports periodic and immediate checks. Periodic check: The system automatically executes the default check plan or the check plans you configure. Immediate check: You can add or modify a custom check plan and start the check plan immediately. In this way, you can check whether the servers have certain unsafe configurations in real time.
3	Viewing Baseline Inspection Results	You can view the baseline inspection results, affected assets, and details about the baseline inspection items.
4	Handling Baseline Inspection Results	You can handle risky items based on the rectification suggestions.