Evaluates whether each ECS instance has specified software installed. An instance that includes the specified software is considered compliant. Check results rely on asset fingerprints from Security Center. Make sure that you use Security Center Enterprise Edition or Ultimate.
Scenarios
Ensures that required software is installed on all ECS instances to meet your management and business requirements.
Risk level
Default risk level: medium.
You can change the risk level when you apply this rule.
Compliance evaluation logic
- If an ECS instance has the specified software installed, the evaluation result is compliant.
- If an ECS instance does not have the specified software installed, the evaluation result is non-compliant. To remediate a non-compliant configuration, see Incompliance remediation.
- This rule does not apply to ECS instances that are not in the Running state.
Rule details
| Item | Description |
| Rule name | ecs-instance-installed-software-check |
| Rule identifier | ecs-instance-installed-software-check |
| Tag | ECS |
| Automatic remediation | Not supported |
| Trigger type | Periodic execution |
| Evaluation frequency | Interval of 24 hours |
| Supported resource type | ECS instance |
| Input parameter | softwareName |
Incompliance remediation
View the installed software on an ECS instance. For more information, see Manage servers.