Updated on 2024-12-30 GMT+08:00

Handling Check Results

This section describes how to handle check results. You may need to carry out any of the following:

  • Handling Unsafe Settings: Rectify the risky check items based on the check result.
  • Check Result Feedback: For manual check items you performed offline, report the check result to SecMaster. The pass rate is calculated based on results from both manual and automatic checks.
  • Ignoring a Check Item: If you have custom requirements for a check item, ignore the check item. For example, SecMaster checks whether the session timeout duration is set to 15 minutes, while you need to set it to 20 minutes. In this situation, ignore this check item so that SecMaster no longer executes this check.
  • Importing Check Results: Export the online check result to a local PC.
  • Exporting Check Results: Import offline check results to the SecMaster baseline inspection page.

Limitations and Constraints

When you import check results, note the following restrictions:

  • Only .xlsx files can be imported.
  • Each time only one file can be imported. Maximum file size: 500 KB and 500 records.
  • Duplicate data will be removed and will not be imported repeatedly.

Prerequisites

  • The cloud service baseline has been scanned.

Handling Unsafe Settings

  1. Log in to the management console.
  2. Click in the upper left corner of the management console and select a region or project.
  3. Click in the upper left corner of the page and choose Security & Compliance > SecMaster.
  4. In the navigation pane on the left, choose Workspaces > Management. In the workspace list, click the name of the target workspace.

    Figure 1 Workspace management page

  5. In the navigation pane on the left, choose Risk Prevention > Baseline Inspection.

    Figure 2 Accessing the check result page

  6. In the check result list in the lower part of the check result page, click the name of the target check item to go to its details page.
  7. View the description of the check item and rectify the fault based on the suggestions in the Recommendation column

    After all unsafe configurations are rectified, click Check Now to verify that all risky items have been rectified.

Check Result Feedback

For manual check items you performed offline, report check results to SecMaster. The pass rate is calculated based on results from both manual and automatic checks.

  1. Log in to the management console.
  2. Click in the upper left corner of the management console and select a region or project.
  3. Click in the upper left corner of the page and choose Security & Compliance > SecMaster.
  4. In the navigation pane on the left, choose Workspaces > Management. In the workspace list, click the name of the target workspace.

    Figure 3 Workspace management page

  5. In the navigation pane on the left, choose Risk Prevention > Baseline Inspection.

    Figure 4 Accessing the check result page

  6. In the check result list in the lower part of the Check Result tab, click Manual Check in the Operation column of the target check item.
  7. In the displayed dialog box, select a result and click OK.

    Report manual check results every 7 days as your feedback is valid only for 7 days.

Ignoring a Check Item

If you have custom requirements for a check item, ignore the check item. For example, SecMaster checks whether the session timeout duration is set to 15 minutes, while you need to set it to 20 minutes. In this situation, ignore this check item so that SecMaster no longer executes this check.

An ignored check item will be no longer executed. It will not be counted when the Pass Rate is calculated.

  1. Log in to the management console.
  2. Click in the upper left corner of the management console and select a region or project.
  3. Click in the upper left corner of the page and choose Security & Compliance > SecMaster.
  4. In the navigation pane on the left, choose Workspaces > Management. In the workspace list, click the name of the target workspace.

    Figure 5 Workspace management page

  5. In the navigation pane on the left, choose Risk Prevention > Baseline Inspection. On the displayed page, click the Security Standards tab. Then, click the Compliance Pack tab.

    Figure 6 Accessing the Compliance Pack tab

  6. Click the name of the target compliance pack to go to its details page.
  7. Search for the target check item in the compliance pack list and click Ignore in the Operation column.
  8. In the displayed dialog box, click OK.

    • The ignored check items will be not executed. They will not be counted when the Pass Rate is calculated.
    • To resume an ignored check item, locate the row containing the ignored check item, and click Cancel Ignore in the Operation column. Then, in the displayed dialog box, click OK.

Importing Check Results

  1. Log in to the management console.
  2. Click in the upper left corner of the management console and select a region or project.
  3. Click in the upper left corner of the page and choose Security & Compliance > SecMaster.
  4. In the navigation pane on the left, choose Workspaces > Management. In the workspace list, click the name of the target workspace.

    Figure 7 Workspace management page

  5. In the navigation pane on the left, choose Risk Prevention > Baseline Inspection.

    Figure 8 Accessing the check result page

  6. In the upper left corner above the check result list, click Import.
  7. In the dialog box displayed, click Download Template and complete the template.
  8. In the displayed dialog box, click Add File and upload the completed template file.

    • Only .xlsx files can be imported.
    • Each time only one file can be imported. Maximum file size: 500 KB and 500 records.
    • Duplicate data will be removed and will not be imported repeatedly.

  9. Click Import.

Exporting Check Results

  1. Log in to the management console.
  2. Click in the upper left corner of the management console and select a region or project.
  3. Click in the upper left corner of the page and choose Security & Compliance > SecMaster.
  4. In the navigation pane on the left, choose Workspaces > Management. In the workspace list, click the name of the target workspace.

    Figure 9 Workspace management page

  5. In the navigation pane on the left, choose Risk Prevention > Baseline Inspection. On the displayed page, click the Security Standards tab. Then, click the Compliance Pack tab.

    Figure 10 Accessing the Compliance Pack tab

  6. Select the target compliance pack and click Export in the upper left corner above the compliance pack list.
  7. In the displayed dialog box, select the format and data columns you want.
  8. Click OK.