Security Center:Connect IDC assets

How it works

After you install the Security Center agent on one server in the data center, create an IDC probe on that server and configure scan tasks. The probe periodically scans the CIDR block you specify, detects servers in the data center, and adds them to the IDC Probe Finding tab on the Assets > Host page.

Prerequisites

Before you begin, ensure that you have:

• The Security Center agent installed on at least one server in the data center

Add an IDC probe

1. Log on to the Security Center console. In the upper-left corner, select the region of the assets you want to protect: China or Outside China.

2. In the left-side navigation pane, choose System Configuration > Feature Settings.

3. On the Multi-cloud Configuration Management > IDC Probe tab, click Add Probe. Alternatively, go to Assets > Host, hover over the icon in the Add Multi-cloud Asset section, and click Add under IDC to open the Add Assets Outside Cloud panel.

4. In the Add Assets Outside Cloud panel, configure the IDC probe and click Next.

   Field	Description
   Data Center	Name of the data center where the server is deployed
   CIDR Block Settings	CIDR block for the probe to scan. Only class C addresses are supported, for example, 192.168.0.10/24
   Period Settings	How often the probe scans for servers
   Linux Port	Secure Shell (SSH) port of the Linux servers being scanned
   Windows Port	Remote Desktop Protocol (RDP) port of the Windows servers being scanned. Non-standard ports are supported
   Region	City name of the IDC server's location. This value appears as a label on the Assets page

5. Select the servers to run scan tasks. Multiple servers can be selected. Click OK. Make sure the selected servers have the Security Center agent installed and can communicate with servers in the specified CIDR block.

View IDC probe findings

1. Log on to the Security Center console. In the top navigation bar, select the region of the assets you want to manage: China or Outside China.

2. In the left-side navigation pane, choose Assets > Host.

3. Click the IDC Probe Finding tab.

The tab lists all servers detected by the IDC probe. Each entry includes:

If the Agent status is Unknown, check whether the Security Center agent is installed. To use the protection features of Security Center, install the Security Center agent on that server.

Disable an IDC probe

To stop scanning a data center, disable or delete the probe on the Multi-cloud Configuration Management > IDC Probe page.

Once disabled, Security Center stops scanning servers in that data center. New servers added to the data center are not synchronized with Security Center.

Add a server to the whitelist

If you want to prevent the IDC probe from scanning a specific server:

1. Log on to the Security Center console. In the top navigation bar, select the region of the assets you want to manage: China or Outside China.

2. In the left-side navigation pane, choose Assets > Host.

3. Click the IDC Probe Finding tab.

4. In the scan list, find the server and click Add to Whitelist in the Actions column.

After adding a server to the whitelist, the probe no longer scans or records information about it. To review whitelisted servers, click Whitelist in the upper-right corner of the scan results list.

What's next

• Install the Security Center agent on detected servers to enable detection and protection.

• Manage quotas and bind a Security Center edition to servers with the agent installed, so they can use the corresponding protection features.