The Advanced and Enterprise editions of Security Center provide the baseline check feature to detect baseline risks on your servers. This topic describes how to run a baseline check.

Prerequisites

  • You have purchased the Advanced or Enterprise Edition of Security Center. Only the Advanced and Enterprise Editions support the baseline check feature.
    Note Before you use the baseline check feature, upgrade the Basic or Basic Anti-Virus Edition to the Advanced or Enterprise Edition.
  • A custom policy for baseline checks is created. For more information, see Set baseline check policies.
    Note Only the Enterprise edition of Security Center supports custom policies for baseline checks. If no custom policies are created, Security Center runs baseline checks based on the default policy. The default policy does not cover all check items. Therefore, the items that you want to check may not be included in the policy.

Background information

For more information about check items, see Check items.

The baseline check feature supports manual checks and periodic checks that run automatically.

  • Periodic and automatic checks: periodic checks that run automatically based on the default policy or custom policies. The default policy automatically starts a baseline check at 00:00:00 every second day.
  • Manual checks: If you have created or modified a custom policy, you can select it in the Select Policy drop-down list on the Baseline Check page, and click Check Now to start a manual check. Manual baseline checks allow you to scan for baseline risks in real time.

Run a manual baseline check

  1. Log on to the Security Center console.
  2. In the left-side navigation pane, choose Precaution > Baseline Check.
  3. In the Select Policy drop-down list, select a policy to run a manual check.
    Select a policy
  4. Click Check Now.
    Check Now

    You can view the task progress and detailed check results.

    • The progress is updated in the View Progress section in real time.Real-time task progress
    • You can click View Progress to view the task details, including the number of servers that complete the check, number of servers that fail the check, and causes of check failures. You can click View Solution to view the solutions on how to handle failures.Task details

      You can click Refresh to update the progress.

    • View baseline risks in the result list.

      After the baseline check is completed, the result is displayed on the Baseline Check page.

      Baseline risks
      Note If the number in the Failed Items/Affected Servers column is not 0, baseline risks have been detected on your servers.

What to do next

After you run a baseline check, you can view and manage detected risks on the Baseline Check page. For more information, see View and manage baseline risks.