检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
CN-Hong Kong, TR-Istanbul, AP-Bangkok, AF-Johannesburg, LA-Mexico City2, LA-Sao Paulo1, LA-Santiago, AP-Jakarta, ME-Riyadh, AF-Cairo, and AP-Manila cfw-flow Traffic logs cfw-risk Attack logs O&M security Cloud Bastion Host (CBH) Tenant-side cloud service cbh-audit Bastion host audit
Log Audit Buy later Security Analysis Buy later Security Orchestration Buy later Tag Tag key: test Tag value: 01 Tags attached to SecMaster to identify resources. For details about tags, see Tag Management Service.
Cloud Trace Service (CTS) CTS generates traces to enable you to get a history of operations performed on SecMaster, allowing you to query, audit, and backtrack resource operation requests initiated from the management console as well as the responses to those requests.
Billing mode: yearly/monthly Edition: Professional edition ECS quota: 50 Value-added package: large screen, log audit, security analysis, and security orchestration The following shows the operation process in this scenario.
Log audit If you have purchased a pay-per-use SecMaster edition, the security data collection and retention services you buy separately are also billed on a pay-per-use basis.
Log Audit Function description: It collects varied types of log data and stores the collected data for security analysis. You can set New Log for each day and Log Retention Duration.
Audit Logs Audit Cloud Trace Service (CTS) records operations on the cloud resources in your account. You can use the logs generated by CTS to perform security analysis, track resource changes, audit compliance, and locate faults.
Related audit logs and alert data are synchronized to SecMaster. Ensure the security of databases and assets on the cloud. DBSS Service Overview Parent topic: Product Consulting
After enabling CTS, you can view all generated traces to query, audit, and review performed SecMaster operations. For details, see Cloud Trace Service User Guide. Table 1 shows the details about the SecMaster operations on CTS.
Log audit If you have purchased a yearly/monthly SecMaster edition, the security data collection and retention services you buy separately are also billed on a yearly/monthly basis.
It can detect and defend against intrusions in real time, control traffic in a unified manner, analyze traffic and visualize results, audit logs, and trace traffic sources. You can scale CFW resources as needed.
This edition provides baseline inspection, log audit, and other features to help you assess environment compliance with security requirements. This edition can retain security data aggregated into SecMaster up to 180 days.
V0 does not record Cloud Eye audit logs, and V1 records Cloud Eye audit logs. request_start_time String Request start time. ctx_request_id String Request ID, which uniquely identifies a request to be traced. request_method String Request method (GET/POST). remote_ip String Remote
Notification Ransomware host isolation WAF clear Non-domain Policy Workflows HSS alert synchronization CIS_PostgreSQL Restricting the IP Addresses That Can Connect to Databases Asset protection information notification Host Auto Storage AirGap Breaker CIS_MySQL Enabling Database Audit
Value-added package (large screen, log audit, security analysis, and security orchestration) Changing the billing mode Not supported Only the professional edition supports changing the billing mode from pay-per-use to yearly/monthly.
It can detect and defend against intrusions in real time, control traffic in a unified manner, analyze traffic and visualize results, audit logs, and trace traffic sources. You can scale CFW resources as needed.
Log Audit Function description: It collects varied types of log data and stores the collected data for security analysis. You can set New Log for each day and Log Retention Duration.
Security Shared Responsibilities Identity Authentication and Access Control Data Protection Technologies Audit Logs Service Resilience Using Cloud Eye to Monitor SecMaster Certificates Security Orchestration
By default, audit logs are stored in the database. You can dump audit logs to OBS to ensure that audit logs are backed up and to make it easier for you to view audit logs.
Data aggregated into SecMaster can be retained for up to 180 days to meet audit requirements.
