The client protection feature proactively blocks the malicious behavior of uninstalling the Security Center Agent. This feature ensures that Security Center provides stable protection services. This topic describes how to enable the client protection feature for your servers. It also describes the versions of operating systems and kernels supported by the client protection feature.

Background information

After you enable the client protection feature, Security Center provides default security protection for the process files in the directory of the Security Center agent. Security Center also blocks all malicious behavior that attempts to uninstall the Security Center agent but is not performed in the Security Center console. This prevents attackers from gaining access to servers and uninstalling the Security Center agent. This also prevents the accidental termination of the Security Center agent by other processes. If the Security Center agent is uninstalled or terminated, Security Center fails to protect your servers. We recommend that you enable the client protection feature for all servers.

The client protection feature is available only for the servers that run the supported versions of operating systems and kernels. For more information about the versions of operating systems and kernels supported by this feature, see Versions of operating systems and kernels supported by client protection.

Note
  • If the client protection feature is enabled for a server, you cannot directly uninstall the Security Center agent from the server by using all methods such as uninstalling the application as an administrator. This protects your server in a comprehensive manner. You must disable the client protection feature before you uninstall the Security Center agent from your server.
  • You can uninstall the Security Center agent in the Security Center console regardless of whether you enable the client protection feature. For more information about how to uninstall the Security Center agent, see Uninstall the Security Center agent.

Limits

All editions of Security Center support this feature. For more information about the features that each edition supports, see Features.

Enable client protection for a server

  1. Log on to the Security Center console.
  2. In the left-side navigation pane, click Settings.
  3. In the Client Protection section of the General tab, turn on Defense Mode.Client protection
    After you perform the preceding operations, the client protection feature is enabled for the servers that are within the scope specified by Protection Scope and have the Security Center agent installed.
  4. Click Manage for Protection Scope.
  5. In the Client Protection dialog box, select the servers for which you want to enable the client protection feature.Client protection
    The client protection feature is enabled for the servers in the Protected section and is disabled for the servers in the Unprotected section.
  6. Click OK.
    Note If you enable Client Protection for your servers, the operation immediately takes effect. If you disable Client Protection for your servers, the operation takes effect five minutes later.

Versions of operating systems and kernels supported by client protection

Operating system Operating system version Kernel version
64-bit Windows Windows Server 2008 R2, Windows Server 2012 R2, Windows Server 2016, and Windows Server 2019 All editions
64-bit CentOS 6.5, 6.8, 6.9, 6.10, 7.2, 7.3, 7.4, 7.5, 7.6, and 7.7
  • 3.10.0-957.5.1.el7.x86_64
  • 3.10.0-957.27.2.el7.x86_64
  • 3.10.0-957.21.3.el7.x86_64
  • 3.10.0-957.12.2.el7.x86_64
  • 3.10.0-957.10.1.el7.x86_64
  • 3.10.0-957.1.3.el7.x86_64
  • 3.10.0-862.9.1.el7.x86_64
  • 3.10.0-862.14.4.el7.x86_64
  • 3.10.0-693.5.2.el7.x86_64
  • 3.10.0-693.21.1.el7.x86_64
  • 3.10.0-693.2.2.el7.x86_64
  • 3.10.0-514.6.2.el7.x86_64
  • 3.10.0-514.26.2.el7.x86_64
  • 3.10.0-514.21.1.el7.x86_64
  • 3.10.0-514.10.2.el7.x86_64
  • 3.10.0-1062.4.3.el7.x86_64
  • 3.10.0-1062.4.2.el7.x86_64
  • 3.10.0-1062.1.2.el7.x86_64
  • 3.10.0-1062.1.1.el7.x86_64
  • 2.6.32-754.23.1.el6.x86_64
  • 2.6.32-754.17.1.el6.x86_64
  • 2.6.32-696.6.3.el6.x86_64
  • 2.6.32-696.3.2.el6.x86_64
  • 2.6.32-696.16.1.el6.x86_64
  • 2.6.32-696.10.1.el6.x86_64
  • 2.6.32-642.6.2.el6.x86_64
  • 2.6.32-642.13.1.el6.x86_64
  • 2.6.32-573.22.1.el6.x86_64
  • 2.6.32-431.23.3.el6.x86_64
32-bit and 64-bit Ubuntu 14.04, 16.04, and 18.04
  • 4.15.0-52-generic
  • 4.15.0-45-generic
  • 4.15.0-42-generic
  • 4.4.0-96-generic
  • 4.4.0-93-generic
  • 4.4.0-63-generic
  • 4.4.0-62-generic
  • 4.4.0-154-generic
  • 4.4.0-151-generic
  • 4.4.0-146-generic
  • 4.4.0-142-generic
  • 4.4.0-117-generic
  • 4.4.0-105-generic