Checks whether the running processes of each ECS instance include specified processes. If the running processes of each ECS instance include specified processes, the evaluation result is considered compliant. The accuracy of the check result is based on the asset fingerprints of Security Center. Make sure that Security Center Enterprise Edition or Security Center Ultimate is used.
Scenarios
You can check whether specified processes are running on each instance. This helps you meet management and business requirements.
Risk level
Default risk level: medium.
When you apply this rule, you can change the risk level based on your business requirements.
Compliance evaluation logic
- If the running processes of each ECS instance include specified processes, the evaluation result is considered compliant.
- If the running processes of an ECS instance exclude specified processes, the evaluation result is considered incompliant. For more information about how to remediate an incompliant configuration, see Incompliance remediation.
Rule details
| Item | Description |
|---|---|
| Rule name | ecs-instance-running-process-check |
| Rule identifier | ecs-instance-running-process-check |
| Tag | ECS |
| Automatic remediation | Not supported |
| Trigger type | Periodic execution |
| Evaluation frequency | Interval of 24 hours |
| Supported resource type | ECS instance |
| Input parameter | processName |
Incompliance remediation
View the name of each process on an ECS instance. For more information, see Manage servers.