Help Center> SecMaster> User Guide> Risk Prevention> Baseline Inspection> Handling Baseline Inspection Results
Updated on 2024-04-11 GMT+08:00
View PDF

Handling Baseline Inspection Results

Scenario

To handle the check result, perform the following operations:

  • Handling Unsafe Settings: Rectify the risk check items based on the check result.
  • Reporting Manual Check Results to SecMaster: For manual check items, after you finish each check, report the check result to SecMaster. The pass rate is calculated based on results from both manual and automatic checks.
  • Ignoring a Check Item: If you have custom requirements for a check item, ignore the check item. For example, SecMaster checks whether the session timeout duration is set to 15 minutes, while you need to set it to 20 minutes. In this situation, ignore this check item so that SecMaster no longer executes this check.
  • Importing and Exporting Check Results: You can import or export check results.

Limitations and Constraints

When you import check results, note the following restrictions:

  • Only .xlsx files can be imported.
  • Each time only one file can be imported. Maximum file size: 500 KB and 500 records.
  • Duplicate data will be removed and will not be imported repeatedly.

Prerequisites

  • Your professional edition SecMaster is available.
  • The cloud service baseline has been scanned.

Handling Unsafe Settings

The following describes how to fix unsafe settings discovered by check item IAM user login protection.

  1. Log in to the management console.
  2. Click in the upper left corner of the page and choose Security & Compliance > SecMaster.
  3. In the navigation pane on the left, choose Workspaces > Management. In the workspace list, click the name of the target workspace.

    Figure 1 Workspace management page

  4. In the navigation pane on the left, choose Risk Prevention > Baseline Inspection.

    Figure 2 Accessing the baseline inspection page

  5. On the Security Standards tab, choose Cloud Security Compliance Check 1.0 to view the status of each check item.

    Figure 3 Check item status
    • If the icon of a check item status is green, the configuration is correct and no unsafe settings found.
    • If the icon of a check item status is red, there may be inappropriate configurations and the assets may have potential risks.

  6. In the IAM user login protection row, click View Details in the Operation column to go to the details page.
  7. View the risk details and fix the unsafe settings by referring to details in the Result and Recommendation columns.

    Table 1 Check items

    Parameter

    Description

    Status

    Displays the check status of the current check item.

    • If the result is Passed, the configuration corresponding to the check item is appropriate.
    • If the result is Failed, the configuration corresponding to the check item is inappropriate. The check results will be listed.

    Latest Check

    Last time when the current check item was performed.

    Check Method

    Method used by the current check item.

    Severity

    Severity of the unsafe settings discovered against the current check item.

    Impact

    Security impact caused by unsafe settings discovered against the current check item.

    Standard and Category

    Security standard and category of the current check item.

    Description

    Check content of the current check items.

    Check Process

    Check process of the current check item.

    Reference

    Links of documentation related to the check item.

    Click the reference link to go to the detailed page.

    Resource

    Resource to which the current check item belongs.

    The check result can be Passed or Failed.

    • If the result is Passed, the configuration corresponding to the check item is appropriate.
    • If unsafe settings are found, the detailed information is listed. You can click the button in the Operation column to go to page and fix the configuration.

  8. After all unsafe configurations are rectified, click Check to verify that all risky items have been rectified.

Reporting Manual Check Results to SecMaster

For manual check items, after you finish each check, report the check result to SecMaster. The pass rate is calculated based on results from both manual and automatic checks.

  1. Log in to the management console.
  2. Click in the upper left corner of the page and choose Security & Compliance > SecMaster.
  3. In the navigation pane on the left, choose Workspaces > Management. In the workspace list, click the name of the target workspace.

    Figure 4 Workspace management page

  4. In the navigation pane on the left, choose Risk Prevention > Baseline Inspection.

    Figure 5 Accessing the baseline inspection page

  5. On the Security Standards tab page, locate the row that contains the check item whose result you need to report to SecMaster manually, click Manual Check in the Operation column.
  6. In the displayed dialog box, select a result and click OK.

    Report manual check results every 7 days as your feedback is valid only for 7 days.

Ignoring a Check Item

If you have custom requirements for a check item, ignore the check item. For example, SecMaster checks whether the session timeout duration is set to 15 minutes, while you need to set it to 20 minutes. In this situation, ignore this check item so that SecMaster no longer executes this check.

An ignored check item will be no longer executed. It will not be counted when the Pass Rate is calculated.

  1. Log in to the management console.
  2. Click in the upper left corner of the page and choose Security & Compliance > SecMaster.
  3. In the navigation pane on the left, choose Workspaces > Management. In the workspace list, click the name of the target workspace.

    Figure 6 Workspace management page

  4. In the navigation pane on the left, choose Risk Prevention > Baseline Inspection.

    Figure 7 Accessing the baseline inspection page

  5. On the Security Standards tab, locate the row containing the check item you want to ignore, click Ignore in the Operation column.

    To ignore more than one check item at a time, select all the check items you want to ignore, and click Ignore in the upper left corner of the check item list.

  6. In the displayed dialog box, click OK.

    • The ignored check items will be not executed. They will not be counted when the Pass Rate is calculated.
    • To resume an ignored check item, locate the row containing the ignored check item, and click Unignore in the Operation column. Then, in the displayed dialog box, click OK.

Importing and Exporting Check Results

  1. Log in to the management console.
  2. Click in the upper left corner of the page and choose Security & Compliance > SecMaster.
  3. In the navigation pane on the left, choose Workspaces > Management. In the workspace list, click the name of the target workspace.

    Figure 8 Workspace management page

  4. In the navigation pane on the left, choose Risk Prevention > Baseline Inspection. On the displayed page, click the Result tab.

    Figure 9 Check result tab

  5. Import or export the check result.

    • Import:
      • Only .xlsx files can be imported.
      • Each time only one file can be imported. Maximum file size: 500 KB and 500 records.
      • Duplicate data will be removed and will not be imported repeatedly.
      1. In the upper left corner above the check result list, click Import.
      2. In the dialog box displayed, click Download Template and complete the template.
      3. In the displayed dialog box, click Add File and upload the completed template file.
      4. Click OK.
    • Export:
      1. Select target check items from the result list and click Export in the upper left corner above the check result list.
      2. In the displayed dialog box, select the format and data columns you want.
      3. Click OK.

Parent topic: Baseline Inspection