Alibaba Cloud Security Center provides ECS with basic security services such as unusual logon detection, vulnerability scan, and baseline check. You can check the security status of your ECS instances in the ECS console or Security Center console.

What are basic security services?

Alibaba Cloud Security Center provides basic security services for ECS, which collect and visualize security logs and fingerprints of ECS assets. Main basic security services security prevention and intrusion detection are available free of charge. You can view security information about ECS assets on the Overview page of the ECS console or in the Security Center console. For more information, see Security Center Documentation.

Billing methods

In Security Center Basic Edition, basic security services for ECS are provided for free.

If you want to upgrade to Security Center Advanced or Enterprise Edition, log on to the Security Center console to try Security Center Advanced or Enterprise Edition for free or purchase it. For the billing methods of Security Center Advanced Edition and Enterprise Edition, see Billing method in the Security Center documentation.

Security Center agent

The Security Center agent is a lightweight security control that can be installed on ECS instances. If the Security Center agent is not installed on an ECS instance, the ECS instance is not protected by Security Center. The security data of this instance, such as vulnerabilities, alerts, and baseline vulnerabilities, and asset fingerprints, will not be displayed in the ECS console. For the installation paths of the Security Center agent, see Security Center agent.

You can perform the following steps to install or uninstall the Security Center agent:

  • Have the Security Center agent automatically installed when you create an ECS instance.
    1. Log on to the ECS console.
    2. In the left-side navigation pane, choose Instances & Images > Instances.
    3. In the top navigation bar, select a region.
    4. Create an ECS instance by referring to Create an instance by using the wizard. In the Image section on the Basic Configurations page, select Security Enhancement. The Security Center agent is then automatically installed on the new ECS instance.
    Note You can also automatically install the Security Center agent by using the following method: Call the RunInstances operation with SecurityEnhancementStrategy set to Active.
  • Manually install the Security Center agent on an existing ECS instance.
    1. Log on to the ECS console.
    2. On the Overview page, click the shield-like Alibaba Cloud Security icon to log on to the Security Center console.
    3. Install the Security Center agent by referring to Install the Security Center agent in the Security Center documentation.
  • Uninstall the Security Center agent.
    1. Log on to the ECS console.
    2. On the Overview page, click the Alibaba Cloud Security icon to log on to the Security Center console.
    3. Uninstall the Security Center agent by referring to Uninstall the Security Center agent in the Security Center documentation.

Check the security status of your ECS instance

Perform the following steps to check the security status of your ECS instance:
  1. Log on to the ECS console.
  2. In the left-side navigation pane, choose Instances & Images > Instances.
  3. In the top navigation bar, select a region.
  4. Check the security status of your ECS instance in either of the following ways:
    • On the Instances page, view the Alibaba Cloud Security icon in the Monitoring column corresponding to your ECS instance. If the icon is orange, there are vulnerability or security alerts present in the instance. You can click the icon to log on to the Security Center console and view the alert details.
    • Click the instance ID to go to the Instance Details page. On the Instance Details page, view the Alibaba Cloud Security icon. If the icon is orange, there are vulnerability or security alerts present in the instance. You can click the icon to log on to the Security Center console and view the alert details.

Configure alert notifications

Basic security services allow you to configure alert notifications to be sent for security alert items by SMS, email, or internal message. Perform the following steps to configure alert notifications:

  1. Log on to the ECS console.
  2. On the Overview page, click the Alibaba Cloud Security icon to log on to the Security Center console.
  3. In the left-side navigation pane, Choose Operation > Settings. On the Settings page, click the Notifications tab.
  4. In the Alerts row, select severities and configure the methods and time for sending alert notifications.
    Note If you have upgraded to Alibaba Cloud Security Advanced or Enterprise Edition, see Security events in the Security Center documentation for more alert notification methods.

Related topics