All Products
Search

This Product

    Security Center:Manage anti-ransomware policies and agent

    Document Center

    Security Center:Manage anti-ransomware policies and agent

    Last Updated:May 08, 2025

    After you create an anti-ransomware policy, you can disable or edit the anti-ransomware policy. If you no longer need the anti-ransomware policy, you can delete it. This topic describes how to disable, edit, and delete an anti-ransomware policy. This topic also describes how to manually install and uninstall the anti-ransomware agent.

    Prerequisites

    An anti-ransomware policy is created for your database. For more information, see Create an anti-ransomware policy

    Background information

    If the status of the anti-ransomware policy is Successful, the anti-ransomware policy takes effect. In this case, the data in your database is backed up based on the anti-ransomware policy. If the status of the anti-ransomware policy is Execution failed, we recommend you handle the exception at the earliest opportunity. For more information, see Troubleshoot the issues causing the abnormal status of an anti-ransomware policy for a database and backup tasks.

    Enable or disable an anti-ransomware policy

    1. Log on to the Security Center console. In the top navigation bar, select the region of the asset that you want to manage. You can select China or Outside China.

    2. In the left-side navigation pane, choose Protection Configuration > Host Protection > Anti-ransomware.

    3. In the anti-ransomware policy list of the Anti-ransomware for Databases tab, find the anti-ransomware policy that you want to enable or disable and turn on or turn off the switch in the Policy Status column.

      • Disable an anti-ransomware policy

        To disable an anti-ransomware policy, find the anti-ransomware policy and turn off the switch in the Policy Status column.

        Important

        After you disable the anti-ransomware policy, the data backup task that runs based on the anti-ransomware policy stops. Proceed with caution.

      • Enable an anti-ransomware policy

        The anti-ransomware agent can back up the data in your database based on an anti-ransomware policy only after the anti-ransomware policy is enabled. This protects your database against ransomware. To enable an anti-ransomware policy, turn on the switch in the Policy Status column.

    Edit an anti-ransomware policy

    1. Log on to the Security Center console. In the top navigation bar, select the region of the asset that you want to manage. You can select China or Outside China.

    2. In the left-side navigation pane, choose Protection Configuration > Host Protection > Anti-ransomware.

    3. In the anti-ransomware policy list of the Anti-ransomware for Databases tab, find the anti-ransomware policy that you want to modify and click Edit in the Actions column.

    4. In the Anti-ransomware Policy for Database panel, you can edit Policy Name or Select Instance.

      Parameter

      Description

      Policy Name

      Modify the name of the anti-ransomware policy.

      Select Instance

      You can select:

      • All Instances

      • Specific Instances

      Note

      • ORACLE: Select instances.

      • MSSQL: Select databases.

    5. Enter the username and password of your database account and click Next.

    6. Configure the parameters.

      Parameter

      Description

      Protection Policy

      The anti-ransomware policy that you want to use. You can click Recommended Policy to use the recommended anti-ransomware policy provided by Security Center. If the recommended anti-ransomware policy cannot meet your business requirements, you can modify the policy.

      Full Backup Policy

      The interval at which full backup is performed, the days of a week on which the full backup is performed, and the point in time at which the full backup starts.

      Full backup indicates that you back up all data that exists at a specific point in time. Full backup is time-consuming and requires a large amount of anti-ransomware capacity. We recommend that you set the Interval period parameter to 1 Week.

      Note

      The full backup policy and incremental backup policy take effect at the same time and do not affect each other.

      Incremental Backup Policy

      The interval at which incremental backup is performed and the point in time at which the incremental backup starts.

      Incremental backup indicates that you back up only the data that is newly generated or modified after the last full or incremental backup. Incremental backup requires less time and less anti-ransomware capacity. We recommend that you set the Interval period parameter to 1 Day.

      Backup Data Retention Period

      The retention period of the backup.

      Maximum Backup Network Bandwidth

      The maximum network bandwidth that is allowed during data backup. If you set this parameter to 0, the network bandwidth is unlimited.

    7. Click Finished.

      The anti-ransomware agent backs up the data in your database based on the new anti-ransomware policy.

    Delete an anti-ransomware policy

    If you no longer need the anti-ransomware policy, you can delete it.

    Important

    Note that deleting an anti-ransomware policy will also remove the backup data, and once deleted, the backup data cannot be restored.

    1. Log on to the Security Center console. In the top navigation bar, select the region of the asset that you want to manage. You can select China or Outside China.

    2. In the left-side navigation pane, choose Protection Configuration > Host Protection > Anti-ransomware.

    3. In the anti-ransomware policy list of the Anti-ransomware for Databases tab, find the anti-ransomware policy that you want to delete and click the More icon in the Actions column.

    4. Select Delete from the drop-down list.

    5. In the message that appears, click OK.

      Wait until the anti-ransomware policy is deleted.

    Manually install the anti-ransomware agent

    If an anti-ransomware policy for a database fails to be initialized or you have manually uninstalled the anti-ransomware agent from the server on which the anti-ransomware policy takes effect, you can manually install the anti-ransomware agent on the server.

    1. Log on to the Security Center console. In the top navigation bar, select the region of the asset that you want to manage. You can select China or Outside China.

    2. In the left-side navigation pane, choose Protection Configuration > Host Protection > Anti-ransomware.

    3. In the anti-ransomware policy list of the Anti-ransomware for Databases tab, find the anti-ransomware policy for which you want to install the anti-ransomware agent, and click the More icon in the Actions column.

    4. Select Install Agent from the drop-down list.

      The value of Agent Status for the anti-ransomware policy changes to Installing. The anti-ransomware agent is installed in about 5 minutes.

    Manually uninstall the anti-ransomware agent

    If you no longer need anti-ransomware or if the agent has issues, you can manually uninstall it.

    Important

    After you uninstall the anti-ransomware agent, the anti-ransomware policy that is created for your database no longer backs up the data of your database, and your database is not protected from ransomware. Proceed with caution.

    1. Log on to the Security Center console. In the top navigation bar, select the region of the asset that you want to manage. You can select China or Outside China.

    2. In the left-side navigation pane, choose Protection Configuration > Host Protection > Anti-ransomware.

    3. In the anti-ransomware policy list of the Anti-ransomware for Databases tab, find the anti-ransomware policy for which you want to uninstall the anti-ransomware agent and click the More icon in the Actions column.

    4. Select Uninstall Agent from the drop-down list.

    5. In the message that appears, click OK.

      The value of Agent Status for the anti-ransomware policy changes to Uninstalling. The anti-ransomware agent is uninstalled in about 5 minutes.