Managing the System User Whitelist
HSS generates risky account alarms when non-root users are added to the root user group. You can add the trusted non-root users to the system user whitelist. HSS does not generate risky account alarms for users in the system user whitelist.
Adding an Item to the System User Whitelist
- Log in to the management console.
- In the upper left corner of the page, select a region, click
, and choose Security & Compliance > Host Security Service.
- In the navigation pane on the left, choose Detection & Response > Whitelists.
- (Optional) In the upper left corner of the Whitelists page, select the enterprise project to which the server belongs or All projects for Enterprise Project.
If you have not enabled the enterprise project function, skip this step.
- Click the System User Whitelist tab and click Add.
Figure 1 Configuring the system user whitelist
- In the Add to System User Whitelist dialog box, enter the server ID, system username, and remarks.
- Click OK.
Modifying the System User Whitelist
- (Optional) In the upper left corner of the Whitelists page, select the enterprise project to which the server belongs or All projects for Enterprise Project.
If you have not enabled the enterprise project function, skip this step.
- In the row of the target system user whitelist, click Modify in the Operation column.
- In the Modify System User Whitelist dialog box, modify the information and click OK.
Removing an Item from the System User Whitelist
After an account is deleted from the whitelist, HSS will report Unsafe Accounts alarms triggered by the account. Whitelisted items cannot be restored once deleted. Exercise caution when performing this operation. Up to 100 whitelisted system users can be deleted under an account.
- (Optional) In the upper left corner of the Whitelists page, select the enterprise project to which the server belongs or All projects for Enterprise Project.
If you have not enabled the enterprise project function, skip this step.
- In the Operation column of a whitelist item, click Delete.
To delete multiple whitelist items at a time, select them and click Delete above the list. To delete all the whitelist items, directly click Delete.
- In the displayed dialog box, confirm the information to be deleted, enter DELETE, and click OK.
- Return to the system user whitelist list. Verify that the deleted system users are not displayed.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot