Baseline Inspection Overview
SecMaster can scan cloud services for risks in key configuration items, report scan results by category, generate alerts for incidents, and provide hardening suggestions and guidelines.
SecMaster can check key cloud service configurations for your workloads on the cloud based on preconfigured security standards Cloud Security Compliance Check 1.0 and Network Security. In addition, you can add check items and compliance packs to make custom compliance packs to meet your own needs.
Limitations and Constraints
The SecMaster basic and standard editions do not support custom check items or compliance packs.
Baseline Check Methods
- Automated baseline checks
By default, SecMaster performs a check every three days. From 00:00 to 06:00, SecMaster checks all assets in the current region under your account based on compliance pack Cloud Security Compliance Check 1.0.
You can specify a schedule and start time to let SecMaster perform baseline inspection. For details, see Creating a Custom Check Plan.
- Manual baseline checks
There are some manual check items included in baseline inspection. After you finish a manual check, report the check results to SecMaster. The pass rate is calculated based on results from both manual and automatic checks. For automatic check items, you can manually start specific checks.
Process
|
No. |
Operation |
Description |
|---|---|---|
|
1 |
(Optional) Creating a Custom Baseline Check Plan |
SecMaster uses the default check plan to check all assets.
|
|
2 |
(Optional) Starting an Immediate Baseline Check |
The baseline inspection supports periodic and immediate checks.
|
|
3 |
You can view the baseline inspection results after each manual check or automated check. You can quickly learn affected assets and details about the baseline inspection items. |
|
|
4 |
You can handle risky items based on the rectification suggestions. |
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.
