Evaluates whether proactive defense of the specified type is enabled in Security Center.
Scenarios
Enable proactive defense in Security Center to protect cloud hosts, on-premises servers, and containers.
Risk level
Default risk level: high.
You can change the risk level to suit your business requirements.
Compliance evaluation logic
- If proactive defense of the specified type is enabled in the Security Center console, the evaluation result is Compliant.
- If proactive defense of the specified type is not enabled in the Security Center console, the evaluation result is Incompliant. To remediate this, see the "Incompliance remediation" section of this topic.
Rule details
| Item | Description |
| Rule name | security-center-defense-config-check |
| Rule identifier | security-center-defense-config-check |
| Tag | SecurityCenter |
| Automatic remediation | Not supported |
| Trigger type | Periodic execution |
| Evaluation frequency | Interval of 24 hours |
| Supported resource type | All resources |
| Input parameter | Type: The default value is auto_breaking. |
Incompliance remediation
Enable the proactive defense feature of the specified type in the Security Center console. For more information, see Virus detection and removal.