Updated on 2024-04-15 GMT+08:00

Enterprise/Premium Edition

The enterprise and premium editions provides different levels of protection for your servers. You can apply for and enable them as needed.

Check Frequency

HSS performs a full scan in the early morning every day.

After you enable server protection, you can view scan results after the automatic scan in the next early morning, or perform a manual scan immediately.

Prerequisite

The agent has been installed on the servers to be protected, the agent status is Online, and the protection status is Unprotected.

Constraints

  • Linux

    On servers running the EulerOS with ARM, HSS does not block the IP addresses suspected of SSH brute-force attacks, but only generates alarms.

  • Windows
    • Authorize the Windows firewall when you enable protection for a Windows server. Do not disable the Windows firewall during the HSS in-service period. If the Windows firewall is disabled, HSS cannot block brute-force attack IP addresses.
    • If the Windows firewall is manually enabled, HSS may also fail to block brute-force attack IP addresses.

Procedure

  1. Log in to the management console.
  2. In the upper left corner of the page, click , select a region, and choose Security > Host Security Service.
  3. In the navigation pane, choose Asset Management > Servers & Quota. Click the Servers tab.
  4. Enable protection for one or multiple servers.

    • Enabling protection for a server
      Click Enable in the Operation column of a server. In the dialog box that is displayed, confirm the server information.
      Table 1 Protection parameters

      Parameter

      Description

      Example Value

      Edition

      Select the enterprise or premium edition.

      • Enterprise edition: It provides support for the DJCP MLPS certification. Main features include asset fingerprint management, vulnerability management, malicious program detection, web shell detection, and abnormal process behavior detection.
      • Premium edition: It helps you with the DJCP MLPS certification and provides advanced features, including application protection, ransomware prevention, high-risk command detection, privilege escalation detection, and abnormal shell detection.

      Enterprise

    • Enabling protection in batches
      Select multiple servers and click Enable above the server list. In the dialog box that is displayed, confirm the server information.
      Table 2 Protection parameters

      Parameter

      Description

      Example Value

      Edition

      Select the enterprise or premium edition.

      • Enterprise edition: It provides support for the DJCP MLPS certification. Main features include asset fingerprint management, vulnerability management, malicious program detection, web shell detection, and abnormal process behavior detection.
      • Premium edition: It helps you with the DJCP MLPS certification and provides advanced features, including application protection, ransomware prevention, high-risk command detection, privilege escalation detection, and abnormal shell detection.

      Enterprise

  5. Confirm the information and click OK. If the protection status of the target servers is Protected, the protection has been enabled.