ALIYUN::SAS::Instance is used to purchase Security Center.
Syntax
{
"Type": "ALIYUN::SAS::Instance",
"Properties": {
"QuotaForApplicationProtection": Integer,
"ThreatAnalysis": Boolean,
"QuotaForMaliciousFileDetectionSDK": Integer,
"ContainerImageScan": Integer,
"ThreatAnalysisLogStorageCapacity": Integer,
"AutoRenew": Boolean,
"MaliciousFileDetectionSDK": Boolean,
"VCore": Integer,
"Period": Integer,
"VulnerabilityFixing": Boolean,
"QuotaForCloudHoneypot": Integer,
"QuotaForWebTamperProofing": Integer,
"AutoPay": Boolean,
"Edition": String,
"ConfigurationAssessment": Boolean,
"LogAnalysis": Integer,
"ProtectedServers": Integer,
"CloudHoneypot": Boolean,
"WebTamperProtection": Boolean,
"QuotaForConfigurationAssessment": Integer,
"QuotaForVulnerabilityFixing": Integer,
"AntiRansomware": Integer,
"PeriodUnit": String
}
}Properties
Property | Type | Required | Editable | Description | Constraint |
QuotaForApplicationProtection | Integer | No | No | The quota for the application protection feature. | You can use the feature to identify and block attacks on applications during application runtime and provide self-protection. We recommend that you set the quota for the application protection feature to the number of application processes that you want to protect each month on your hosts. A larger quota provides protection at a lower unit price. For more information, see Billing overview. |
ThreatAnalysis | Boolean | No | No | Specifies whether to enable the threat analysis feature. | The feature can detect and handle the security events of multiple cloud services, such as Cloud Firewall and Virtual Private Cloud (VPC), across multiple Alibaba Cloud accounts. This helps improve the operational efficiency of events. If you purchased the log storage capacity for the log analysis feature, we recommend that you set the Log Storage Capacity of Threat Analysis parameter to a value that is three times the purchased log storage capacity. The threat analysis feature stores the logs of multiple Alibaba Cloud accounts and cloud services that are added. Therefore, you must purchase sufficient log storage capacity for threat analysis. |
QuotaForMaliciousFileDetectionSDK | Integer | No | No | The quota for the feature of SDK for malicious file detection. | The feature uses a large number of file libraries in the cloud and a multi-architecture detection engine to detect webshell files, malicious scripts, binary programs, and macro viruses in a precise manner. The feature can also detect multiple malicious files at a time in various scenarios. |
ContainerImageScan | Integer | No | No | The container image scan feature. | This is a value-added feature. If you set the quota for the container image scan feature to a value greater than 0, the feature is automatically purchased. We recommend that you set the quota for the container image scan feature to the number of images for which you want to detect container vulnerabilities each month. Security Center identifies an image based on a unique digest value. If the digest value of an image is not changed, the quota for the container image scan feature is deducted by one only for the first scan. If the digest value of an image is changed, the quota for the container image scan feature is deducted each time the image is scanned. For example, if you want to scan 10 images and the images are estimated to be updated 20 times within the validity period of Security Center, you must set the quota for the container image scan feature to 30. The value 30 indicates that the quota for the container image scan feature equals the number of images that you want to scan plus the estimated total number of times the images are updated. The number 20 indicates that the digest values of the images are estimated to be changed 20 times. This property is available only when you use the Advanced, Enterprise, Ultimate, or Value-added Plan edition. |
ThreatAnalysisLogStorageCapacity | Integer | No | No | The log storage capacity for the threat analysis feature. | None. |
AutoRenew | Boolean | No | No | Specifies whether to enable auto-renewal if Security Center uses the subscription billing method. | Valid values:
Note The auto-renewal cycle varies based on the unit of the subscription duration. If you purchase Security Center on a yearly basis, the auto-renewal cycle is one year. For example, if you select Auto-renewal and purchase a two-year subscription, the auto-renewal cycle is one year. |
MaliciousFileDetectionSDK | Boolean | No | No | Specifies whether to enable the feature of SDK for malicious file detection. | We recommend that you set the quota for the feature of SDK for malicious file detection to the number of files that you want to detect each month. The feature uses a large number of file libraries in the cloud and a multi-architecture detection engine to detect webshell files, malicious scripts, binary programs, and macro viruses in a precise manner. The feature can also detect multiple malicious files at a time in various scenarios. |
VCore | Integer | No | No | The number of cores of servers that you want to protect by using Security Center. | The default value indicates the minimum number of cores that you must purchase. This property is required only when you use the Anti-virus or Ultimate edition. |
Period | Integer | Yes | No | The subscription duration. |
|
VulnerabilityFixing | Boolean | No | No | Specifies whether to enable the vulnerability fixing feature. | This property is required only when you use the Anti-virus or Value-added Plan edition. You can use the feature to fix Linux software vulnerabilities and Windows system vulnerabilities that are detected on your servers with a few clicks. We recommend that you set the quota for the vulnerability fixing feature to the total number of vulnerabilities that you want to fix each month. Note
|
QuotaForCloudHoneypot | Integer | No | No | The quota for the cloud honeypot feature. | None. |
QuotaForWebTamperProofing | Integer | No | No | The quota for the web tamper proofing feature. | The feature monitors web directories in real time and can restore files or directories that are tampered with based on backups. This prevents important website information from being tampered with. |
AutoPay | Boolean | No | No | Specifies whether to enable automatic payment. | Valid values:
|
Edition | String | No | No | The edition. | Valid values:
|
ConfigurationAssessment | Boolean | No | No | Specifies whether to enable the configuration assessment feature. | The feature detects configuration errors and security risks of cloud services from the following dimensions: identity and permission management, security risks in Alibaba Cloud services, and compliance risks. This ensures security of the running environment of your cloud services. |
LogAnalysis | Integer | No | No | Specifies whether to enable the log analysis feature. | This is a value-added feature. If you set the log storage capacity for the log analysis feature to a value greater than 0, the feature is automatically purchased. The unit of the log storage capacity is GB. The log analysis feature retrieves data from all logs, including host, network, and security logs. This allows you to trace and analyze security events. Note The Enterprise and Ultimate editions of Security Center support 16 types of logs. The Anti-virus and Advanced editions of Security Center support only 12 subtypes of host logs and security logs, but do not support network logs. |
ProtectedServers | Integer | No | No | The number of servers that you want to protect by using Security Center. | The default value is the number of Elastic Compute Service (ECS) instances plus the number of third-party servers on which the Security Center agent is installed within your account. If you want to increase the number of servers to be protected during the subscription, we recommend that you set this property to the estimated total number of servers to be protected within your account. You do not need to specify this property when you use the Anti-virus or Value-added Plan edition. |
CloudHoneypot | Boolean | No | No | Specifies whether to enable the cloud honeypot feature. | The feature can capture attacks at the earliest opportunity. You can use this feature to detect attacks and protect your core assets in an efficient manner in attack and defense scenarios. |
WebTamperProtection | Boolean | No | No | Specifies whether to enable the web tamper proofing feature. | The feature monitors web directories in real time and can restore files or directories that are tampered with based on backups. This prevents important website information from being tampered with. |
QuotaForConfigurationAssessment | Integer | No | No | The quota for the configuration assessment feature. | None. |
QuotaForVulnerabilityFixing | Integer | No | No | The quota for the vulnerability fixing feature. | You must specify this property based on the total number of vulnerabilities that you want to fix each month. The quota indicates the total number of vulnerabilities that you want to fix on all servers each month, regardless of the vulnerability names. For example, if you use Security Center on 10 servers to fix the same vulnerability, the quota is deducted by 10. |
AntiRansomware | Integer | No | No | The anti-ransomware feature. | Security Center provides a comprehensive anti-ransomware solution to protect your business. We recommend that you set the quota for the anti-ransomware feature to 50. The unit of the quota is GB. |
PeriodUnit | String | Yes | No | The unit of the subscription duration. | Valid values:
|
Return values
Fn::GetAtt
InstanceId: the instance ID.