Enabling Application Protection

Prerequisite

You have purchased HSS premium, WTP, or container edition.

Constraints

Currently, only Linux servers are supported.
So far, only Java applications can be protected.
Servers that are not protected by HSS premium, WTP, or container editions do not support application protection operations.

Procedure

Log in to the management console.
In the upper left corner of the page, select a region, click , and choose Security & Compliance > Host Security Service.

Figure 1 Accessing HSS
In the displayed dialog box, click Try the new edition to switch to the HSS (New) console.
- Currently, HSS is available in the following regions: CN South-Guangzhou, CN-Hong Kong, AP-Bangkok, and AP-Singapore.
- On the HSS (New) console, you can click Back to Old Console in the upper left corner to switch to the HSS (Old) console.
Choose Prevention > Application Protection. Click the Protected Servers tab.

If your servers are managed by enterprise projects, you can select an enterprise project to view or operate the asset and scan information.

Figure 2 Protection settings
Click Add Server. Select servers in the dialog box that is displayed.

You can select a default security policy or create a security policy.

Figure 3 Selecting the target server and policy
Click Add and Enable Protection.
On the Protected Servers tab, click the status in the RASP Protection column.

Figure 4 Viewing the progress of enabling protection
Check the RASP software installation progress. Wait until the message "Installation completed." is displayed.

Figure 5 Installation completed
Log in to the server, go to the Spring Boot startup path, and copy the parameters from the Configure Startup Parameters step to the command box. See Figure 6.

Figure 6 Configuring startup parameters
Restart the microservice to apply the protection settings.
On the Protected Servers tab, check the protection status in the Microservice Protection column. If the status is Active, the protection has been enabled.