Traditional operations and maintenance (O&M) has long been plagued by high labor costs and low efficiency. To address this, Alibaba Cloud has released an intelligent O&M Agent for Bastion Host, integrating the power of the Qwen large model to evolve the product from a mere 'security auditing' tool into a comprehensive 'intelligent O&M hub.' By simplifying workflows through natural language interaction, the Agent ensures precise command execution and real-time risk control, significantly boosting both O&M efficiency and security.
The Intelligent O&M Agent delivers a comprehensive optimization of traditional workflows. Users simply input their O&M requirements in natural language. Upon receiving the request, the Agent leverages Qwen for intent recognition and task generation, which then enters an execution loop following parameter validation.
Relying on the Bastion Host's internal interfaces, the Agent handles authorization, task approval, and execution, while automatically retaining audit logs. The operations are ultimately deployed across hybrid cloud environments—covering ECS, on-premise IDCs, and heterogeneous cloud servers. This achieves closed-loop control from semantic understanding to cross-domain execution, ensuring both security compliance and efficiency without requiring any additional deployment.
Traditional O&M relies heavily on command-line interfaces (CLI), requiring operators to memorize a vast array of commands, such as grep and awk, or complex database query statements.
New hires often need months to memorize commands and troubleshoot syntax errors before they can work independently. Meanwhile, developers or testers often hesitate to perform even simple tasks like viewing logs or checking status due to a lack of underlying system knowledge and fear of making mistakes. Consequently, they must wait for dedicated O&M personnel to intervene.
Even in clustered server environments, traditional O&M still depends on manual, host-by-host logins to execute commands.
Even when using basic scripts, operators must repeatedly adapt to environmental differences across hosts, making true automated parallel processing difficult to achieve.
A routine system patch update or log inspection requires O&M staff to switch frequently between dozens or even hundreds of terminals for manual confirmation, stretching minute-level tasks into hours.
Command-line interactions lack real-time syntax validation and permission isolation mechanisms, relying heavily on the operator's attention.
Under high pressure or fatigue, it is extremely easy to make basic errors, such as incorrect paths with rm -rf or typos in configuration parameters. Due to the lack of pre-operation confirmation and real-time intervention capabilities, once a command is issued, it often directly leads to service interruptions, accidental data deletion, or configuration pollution. Furthermore, troubleshooting the root cause is difficult, posing a significant threat to the stability of core business operations.
Users simply type a request into the chat box, such as "Check CPU, memory, and disk usage on all Linux servers." The Intelligent O&M Agent automatically leverages Qwen3.5-Plus to parse the intent and generates an executable script containing specific commands (e.g., top, free, df), clearly marking the target hosts and task IDs.
There is no need to manually write or copy-paste commands, switch between tools, or memorize syntax. Routine inspection tasks that previously required logging into servers one by one and took over 30 minutes can now be completed—from request to execution—in under 1 minute. This is especially optimized for large-scale cluster scenarios, achieving a fundamental boost in human-machine collaborative efficiency.
Every command generated by the Intelligent O&M Agent is converted into a standard Shell script (containing commands like top, awk, and error handling logic, as shown in the image) and automatically creates a task with a unique ID within the Bastion Host. The entire execution process—including target hosts, accounts, duration, and return values—is comprehensively logged in the "Task Records" module, which supports multi-dimensional search by time, user, and result. Execution outcomes are presented as structured reports (e.g., CPU/memory/disk usage metrics), with raw output logs retained for reference.
This full-trace capability, spanning from intent to execution, not only eliminates manual input errors but also meets compliance audit requirements, ensuring dual protection through proactive risk interception and retrospective traceability.
The Intelligent O&M Agent is natively embedded within the Cloud Bastion Host console. Users can directly access the interface via the left-hand navigation bar under "Intelligent O&M > AI Agent," with no need to install additional components or configure integrations. The system supports unified natural language task execution across ECS instances, on-premise IDCs, and heterogeneous servers (as shown in the preset examples, such as: "Check CPU usage on all Linux servers").
From activation to the first execution, the process requires absolutely no architectural adjustments and has a low learning curve, enabling rapid capability injection into existing O&M systems.
After an intelligent O&M task is executed, the system automatically generates a standardized report. This includes the execution status of each host, along with key metrics like IP address, CPU, memory, disk usage, and system load. There is no need to manually piece together logs or write scripts for aggregation—key indicators are clear at a glance.
It also supports direct identification of abnormal nodes (such as hosts with non-zero loads) while retaining raw outputs for in-depth troubleshooting. This achieves a cognitive shift from "reading commands" to "viewing results," significantly boosting the efficiency of fault response and resource evaluation.
The enterprise needed to regularly scan nearly 100 project system servers for unauthorized software. The traditional method relied on O&M staff manually logging into each server via SSH, executing commands, taking screenshots, and compiling the data into Excel. A single complete inspection took 3–5 hours and was prone to omissions or statistical errors due to fatigue, posing compliance risks.
After integrating the Bastion Host's Intelligent O&M Agent, staff simply input a natural language command: "Scan for unauthorized applications installed on all * hosts." The AI automatically parses the intent, generates and distributes detection scripts in batches, and executes them in parallel across the hybrid cloud environment. The results are presented in structured tables with anomalies highlighted. For the same scenario and scale, the entire process is compressed to under 30 minutes. This achieves a closed-loop efficiency boost, shifting from "manual O&M" to "AI concurrency + structured output," while meeting both internal control and external compliance requirements.
Alibaba Cloud Bastion Host's AI-powered intelligent O&M is an engineering reconstruction based on real-world scenarios. By integrating natural language driving, Agent orchestration, and Qwen's semantic parsing—all backed by the Bastion Host's closed-loop auditing—it transforms discrete manual operations into standardized, traceable automated workflows. It delivers quantifiable improvements in compliance, efficiency, and security, providing a practical intelligent O&M tool for hybrid cloud environments.
Head over to the Alibaba Cloud Bastion Host console now to experience the new era of AI-driven intelligent O&M.
26 posts | 2 followers
FollowAlibaba Cloud Native Community - December 17, 2025
Alibaba Cloud Native Community - August 25, 2025
Alibaba Cloud Native Community - May 21, 2026
OpenAnolis - January 21, 2025
Alibaba Cloud Native Community - November 24, 2025
Alibaba Cloud Native Community - September 4, 2025
26 posts | 2 followers
Follow
AgentBay
Multimodal cloud-based operating environment and expert agent platform, supporting automation and remote control across browsers, desktops, mobile devices, and code.
Learn More
Qwen
Full-range, open-source, multimodal, and multi-functional
Learn More
Security Center
A unified security management system that identifies, analyzes, and notifies you of security threats in real time
Learn More
Alibaba Cloud for Generative AI
Accelerate innovation with generative AI to create new business success
Learn MoreMore Posts by CloudSecurity
