Checks whether the running processes of each ECS instance include specified processes. If they do, the evaluation result is compliant. The check relies on asset fingerprints from Security Center. Make sure that Security Center Enterprise Edition or Ultimate is used.
Scenarios
Ensure that specified processes are running on each ECS instance to meet management and business requirements.
Risk level
Default risk level: medium.
You can change the risk level when you apply this rule.
Compliance evaluation logic
- If the running processes of an ECS instance include the specified processes, the evaluation result is compliant.
- If the running processes of an ECS instance do not include the specified processes, the evaluation result is incompliant. For more information about how to remediate an incompliant configuration, see Incompliance remediation.
Rule details
| Item | Description |
| Rule name | ecs-instance-running-process-check |
| Rule identifier | ecs-instance-running-process-check |
| Tag | ECS |
| Automatic remediation | Not supported |
| Trigger type | Periodic execution |
| Evaluation frequency | Interval of 24 hours |
| Supported resource type | ECS instance |
| Input parameter | processName |
Incompliance remediation
View the name of each process on an ECS instance. For more information, see Manage servers.