This topic provides answers to some frequently asked questions about the purchase of Security Center.

I used the free trial of Security Center Ultimate before. Can I apply for the free trial again?

No, you cannot apply for the free trial again.

Each Alibaba Cloud account is limited to one free trial for Security Center Ultimate.

How do I apply for a 7-day free trial of Security Center Ultimate?

Before you apply for the 7-day free trial of Security Center Ultimate, the following conditions must be met. Otherwise, you cannot apply for the 7-day free trial of Security Center Ultimate.
  • The Security Center Basic edition is activated for your Alibaba Cloud account.

    None of the following Security Center editions is purchased: Anti-virus, Advanced, Enterprise, and Ultimate. By default, the Security Center Basic edition is activated for all Alibaba Cloud accounts.

    Note If you have purchased a paid edition of Security Center but did not renew the subscription after it expired, Security Center is automatically downgraded to the Basic edition. In this case, you cannot apply for a 7-day free trial of the Security Center Ultimate edition.
  • You have not applied for a 7-day free trial of the Security Center Ultimate edition before.
  • At least one Elastic Compute Service (ECS) instance is purchased.
After you confirm that the conditions are met, perform the following steps to apply for the 7-day free trial of Security Center Ultimate:
  1. Go to the Security Center product page.
  2. Click Free Trial and log on to the Security Center console by using your Alibaba Cloud account.
  3. In the 7-Day Free Trial dialog box, click Free Trial of Ultimate Edition.
Note Each Alibaba Cloud account is limited to one free trial for Security Center Ultimate. For more information about how to apply for the 7-day free trial of Security Center Ultimate, see Apply for a free trial of the Security Center Ultimate edition.

If I have 100 ECS instances, can I activate Security Center only for 10 ECS instances?

No, you cannot activate Security Center only for specific Elastic Compute Service (ECS) instances within your Alibaba Cloud account.

If you purchase a paid edition of Security Center, you must activate Security Center for all ECS instances within your Alibaba Cloud account.

This way, Security Center protects all ECS instances. If you activate Security Center for specific ECS instances, only the specified ECS instances are protected, and unprotected instances are vulnerable. In this case, if one ECS instance is compromised, other ECS instances may also be compromised. As a result, the overall security of your business is affected.

When you purchase a paid edition of Security Center, you must set the Protected Servers parameter. The value of the Protected Servers parameter indicates the total number of servers within your Alibaba Cloud account. The default value is the total number of your ECS instances and servers that are not deployed on Alibaba Cloud but have the Security Center agent installed within your Alibaba Cloud account.

If you install the Security Center agent on additional servers after you purchase Security Center, an alert is generated to indicate that the number of your current servers exceeds the value of the Protected Servers parameter. The additional servers include servers that are not deployed on Alibaba Cloud, servers in data centers, and newly purchased ECS instances. In this case, Security Center prompts you to pay the charges for the additional servers on which the Security Center agent is installed after you purchase a paid edition of Security Center.

Can I purchase Security Center on a monthly basis?

Yes, you can purchase and renew Security Center on a monthly basis. For more information, see Billing.

The list price of the Advanced edition is USD 9.5 per month. Why is the price on the buy page higher than USD 9.5?

The price on the buy page is based on the following two factors:
  • Protected Servers

    The Protected Servers parameter specifies the total number of assets that are protected by Security Center. The assets include Alibaba Cloud Elastic Compute Service (ECS) instances and third-party servers that have the Security Center agent installed. The default value is the total number of ECS instances and third-party servers that have the Security Center agent installed within your Alibaba Cloud account. If the number of protected servers is greater than 1, the price on the buy page is higher than USD 9.5 per month.

  • Enabled value-added features

    Security Center provides value-added features, such as web tamper proofing, log analysis, and anti-ransomware. When you purchase Security Center, the default values of the Log Analysis and Anti-ransomware parameters are used. If you do not need log analysis and anti-ransomware, set the Log Analysis and Anti-ransomware parameters to 0 GB when you purchase the Anti-virus edition.

Are there differences among the editions of Security Center?

Yes, different editions of Security Center provide different features.

Security Center has the following editions: Basic, Anti-virus, Advanced, Enterprise, and Ultimate. The following list introduces these editions:

  • Basic (Introduction to Security Center Basic)

    The Basic edition offers basic Security Hardening services free of charge. You can use the services to detect unusual logons to your servers, distributed denial of service (DDoS) attacks, common vulnerabilities on your servers, and configuration risks of cloud services. If you select Security Hardening when you purchase an Elastic Compute Service (ECS) instance, Security Center Basic is automatically activated.

  • Anti-virus

    The Anti-virus edition uses the subscription billing method. It offers security services, such as alerting and antivirus.

  • Advanced

    The Advanced edition uses the subscription billing method. It offers security services, such as alerting, antivirus, vulnerability detection and fixing, and security reports.

  • Enterprise

    The Enterprise edition uses the subscription billing method and provides a wide array of security services. The services include alerting, antivirus, vulnerability detection and fixing, baseline checks, asset fingerprints, and attack analysis.

  • Ultimate

    The Ultimate edition uses the subscription billing method and provides a wide array of security services. The services include container image scan, threat detection on Kubernetes containers, Radar, alerting, antivirus, vulnerability detection and fixing, baseline checks, asset fingerprints, and attack analysis.

Which edition of Security Center provides the automatic vulnerability fixing feature?

The Advanced, Enterprise, and Ultimate editions of Security Center provide the automatic vulnerability fixing feature. To use the automatic vulnerability fixing feature, you can purchase the Advanced, Enterprise, or Ultimate edition or upgrade Security Center to one of these editions. For more information about how to purchase and upgrade Security Center, see Purchase Security Center and Upgrade and downgrade Security Center.

Which edition of Security Center is required if I want to meet the testing and evaluation requirements for classified protection?

You must purchase the Enterprise or Ultimate edition of Security Center and separately purchase log analysis, which is a value-added feature. For more information about how to enable log analysis, see Enable log analysis.

Note The Enterprise and Ultimate editions of Security Center support the baseline check feature that is required to comply with the requirements for classified protection. You can use the baseline check feature along with log analysis to meet the testing and evaluation requirements for classified protection. Log data is retained for 180 days.

Which Alibaba Cloud services do not support the Security Center agent?

The Security Center agent can be installed only on ECS instances and ECS bare metal instances. The agent is not supported in other Alibaba Cloud services, such as Server Load Balancer (SLB), Object Storage Service (OSS), Simple Application Server, and Elastic Desktop Service.

Does Security Center protect servers within different Alibaba Cloud accounts?

I have two Alibaba Cloud accounts, Account A and Account B, and 15 servers. A total of 10 servers belong to Account A and the rest 5 servers belong to Account B. I want to manage all servers within the two accounts in a centralized manner. Can I set Protected Servers to 15 when I purchase Security Center by using Account A?

No, Security Center cannot protect servers within different Alibaba Cloud accounts. If you activate Security Center for servers within Account A, Security Center protects only these servers. In this case, Security Center cannot protect servers within Account B.

I do not have an ECS instance. Can I use Security Center to protect servers in data centers?

Yes, Security Center can protect Alibaba Cloud ECS instances, servers in data centers, and third-party cloud servers. Security Center protects servers only if the servers have the Security Center agent installed. For more information, see Install the Security Center agent and Use Security Center to protect servers in on-premises data centers.

Can Security Center protect third-party cloud servers?

Yes, Security Center can protect third-party cloud servers, such as Amazon Web Services (AWS), Tencent Cloud, QingCloud, and UCloud servers. Security Center protects servers only if the servers have the Security Center agent installed. For more information, see Install the Security Center agent on the servers that are not deployed on Alibaba Cloud.

How do I use Security Center to protect servers in data centers and third-party cloud servers?

To use Security Center to protect the servers in data centers and third-party cloud servers, you must first install the Security Center agent on these servers. For more information, see the following table.

Server type How to use Security Center to protect the servers
Alibaba Cloud ECS instances If you select Security Hardening when you purchase an ECS instance, the Security Center agent is automatically installed on the instance, and Security Center Basic is automatically activated. The Basic edition of Security Center is free of charge.
Note Security Center Basic detects only unusual logons and urgent vulnerabilities. The Basic edition is suitable for individual users.
If you do not select Security Hardening when you purchase an ECS instance or Security Center shows that the Security Center agent is offline, perform the following steps to enable Security Center to protect the ECS instance:
  1. Upgrade Security Center to the Anti-virus, Advanced, Enterprise, or Ultimate edition. For more information, see Purchase Security Center.
    Note Security Center Basic detects only unusual logons and urgent vulnerabilities. The Basic edition is suitable for individual users.
  2. Log on to the Security Center console.
  3. Install the Security Center agent on the ECS instance. For more information, see Manually install the Security Center agent.
Third-party cloud servers If you want to use Security Center to protect the third-party cloud servers, perform the following steps:
  1. Upgrade Security Center to the Anti-virus, Advanced, Enterprise, or Ultimate edition. For more information, see Purchase Security Center.
    Note Security Center Basic detects only unusual logons and urgent vulnerabilities. The Basic edition is suitable for individual users.
  2. Log on to the Security Center console.
  3. Install the Security Center agent on the ECS instance. For more information, see Manually install the Security Center agent.
Servers in data centers

Does Security Center remove viruses?

Yes, the Anti-virus, Advanced, Enterprise, and Ultimate editions of Security Center detect and automatically remove common viruses. For more information, see Description.