Security Center provides the configuration assessment feature that checks whether the configuration settings of your cloud services contain risks. This topic describes how to manually run configuration checks on your cloud services, and set a detection interval to automate periodic checks.

Background information

Security Center supports manual and automated periodic checks to scan for configuration risks in cloud services.
  • Manual checks: On the Cloud Platform Configuration Assessment page, click Check Now to check whether the configurations of your cloud services contain risks.
  • Automated periodic checks: By default, Security Center automatically runs configuration checks during 00:00:00-06:00:00 every other day. You can also set a custom time period to automatically check whether the configurations of your cloud services contain risks. This helps you detect and manage configuration risks at the earliest opportunity.

Manual checks

  1. Log on to the Security Center.
  2. In the left-side navigation pane, click Precaution > Config Assessment.
  3. On the Cloud Platform Configuration Assessment page, click Check Now to check whether the configurations of all your cloud services services contain risks. After you run a check, the number of affected assets is displayed on this page.
    Note Do not perform any other operations until the check is completed.
    After the check is completed, detected risks are listed based on the severity in descending order.

Automated checks

  1. Log on to the Security Center.
  2. In the left-side navigation pane, click Precaution > Config Assessment.
  3. Click Settings in the upper-right corner of the Cloud Platform Configuration Assessment page.
  4. In the Settings dialog box, set the Detection Cycle and Detection Time.
    • Detection Cycle: supports Monday to Sunday. You can select multiple days.
    • Detection Time: Select one of the four time periods: 24:00:00-06:00:00 , 06:00:00-12:00:00 , 12:00:00-18:00:00 , and 18:00:00-24:00:00 .
  5. Click OK.
    During the selected period, Security Center will automatically run checks based on all check items.

What to do next

After the check is completed, you can go to the Cloud Platform Configuration Assessment page to view the results and manage detected risks. For more information, see View and manage configuration risks.