Control: 8.7 Ensure that scheduled vulnerability scan is enabled on all servers
Description
Ensure that scheduled vulnerability scan is enabled on all servers.
Remediation
From Console
- Login to Security Center Console.
- Select
Vulnerabilities. - Click
Settings. - Apply all type of vulnerabilities.
EnableHigh and Medium vulnerabilities scan level.
Usage
Run the control in your terminal:
powerpipe control run alicloud_compliance.control.cis_v100_8_7Snapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run alicloud_compliance.control.cis_v100_8_7 --shareSQL
This control uses a named query:
select 'arn:acs:::' || account_id as resource, 'info' as status, 'Manual verification required.' as reason , account_id as account_idfrom alicloud_account;