If you no longer require Security Center to protect a server, you can uninstall the Security Center agent from the server. This topic describes how to use the Security Center console and commands to uninstall the Security Center agent.
Impacts
The following list describes the impacts after you uninstall the Security Center agent from a server:
Security Center no longer protects the server or detects vulnerabilities or baseline risks on the server. Web tamper proofing and anti-ransomware that you enabled stop protecting the server.
Security Center no longer provides the virus detection and removal feature or the intrusion prevention feature for the server.
Security Center no longer collects security logs from the server or delivers security logs to a dedicated Simple Log Service Logstore.
Security Center no longer protects containers or provides the container microsegmentation feature in runtime.
The alerts that are generated on the server and the Security Center configurations of the server are deleted. If you reinstall the Security Center agent on the server, the historical alerts and quarantined files are not associated with the server.
Prerequisites
If you want to uninstall the Security Center agent from your server by using applications as an administrator, make sure that the Malicious Host Behavior Prevention and Client Protection features are disabled in the Security Center console before you uninstall the agent. To disable the features, you can click the server on the Host page and turn on the required switches in the Defense Status section of the Basic information tab.
The status of the Security Center agent for your server is Online. If the status is Offline, the server cannot respond to the instruction to uninstall the agent.
Uninstall the Security Center agent in the Security Center console
Log on to the Security Center console. In the top navigation bar, select the region of the asset that you want to manage. The following regions are supported: China and Outside China.
In the left-side navigation pane, choose .
On the Agent tab of the Feature Settings page, click the Uninstall tab, find the server from which you want to uninstall the Security Center agent, and then click Uninstall in the Actions column.
In the Note dialog box, select a reason for uninstallation, enter your suggestions, and then click OK.
You can enter a server name or an IP address in the search box to find the required server.
After you click OK, the system automatically uninstalls the agent from the server. In most cases, the agent status changes from Online to Offline within a few minutes to up to 3 hours after the Security Center agent is uninstalled. The historical asset information about the specified server is retained in the Security Center console. If your server is not deployed on Alibaba Cloud and the Security Center agent is offline, you can unbind your server from Security Center. After you unbind your server, the historical asset information about the server is automatically deleted, and the quota consumed by the server is released. For more information, see Change the protection status of a server.
Uninstall the Security Center agent by running a command
You can select a method from the following table to uninstall the Security Center agent based on the operating system of your server.
Operating system | Method |
Linux |
|
Windows | Download the uninstallation script and run the script as an administrator. |
Reinstall the Security Center agent
If you want to reinstall the Security Center agent after the agent is uninstalled, manually install the agent. For more information, see Manually install the Security Center agent.
After the agent is uninstalled, Security Center still protects your server for 24 hours. If you want to reinstall the agent, install the agent 24 hours later. If you want to reinstall the agent within 24 hours after the agent is uninstalled, you must run the installation command at least three times and ignore the error messages during the installation. Otherwise, the reinstalled agent is automatically uninstalled.