你当前正在访问 Microsoft Azure Global Edition 技术文档网站。 如果需要访问由世纪互联运营的 Microsoft Azure 中国技术文档网站,请访问 https://docs.azure.cn。
Microsoft.Azure.Management.Security.Models Namespace
Important
Some information relates to prerelease product that may be substantially modified before it’s released. Microsoft makes no warranties, express or implied, with respect to the information provided here.
Classes
AadConnectivityState |
Defines values for AadConnectivityState. |
AadConnectivityStateAutoGenerated |
Describes an Azure resource with kind |
AadExternalSecuritySolution |
Represents an AAD identity protection solution which sends logs to an OMS workspace. |
AadSolutionProperties |
The external security solution properties for AAD solutions |
ActionType |
Defines values for ActionType. |
ActiveConnectionsNotInAllowedRange |
Number of active connections is not in allowed range. |
AdaptiveApplicationControlGroup | |
AdaptiveApplicationControlGroupData |
Represents a machines group and set of rules to be allowed running on a machine |
AdaptiveApplicationControlGroups |
Represents a list of VM/server groups and set of rules that are Recommended by Microsoft Defender for Cloud to be allowed |
AdaptiveApplicationControlIssueSummary |
Represents a summary of the alerts of the machine group |
AdaptiveNetworkHardening |
The resource whose properties describes the Adaptive Network Hardening settings for some Azure resource |
AdaptiveNetworkHardeningEnforceRequest | |
AdaptiveNetworkHardeningProperties |
Adaptive Network Hardening resource properties |
AdditionalData |
Details of the sub-assessment |
AdditionalWorkspaceDataType |
Defines values for AdditionalWorkspaceDataType. |
AdditionalWorkspacesProperties |
Properties of the additional workspaces. |
AdditionalWorkspaceType |
Defines values for AdditionalWorkspaceType. |
AdvancedThreatProtectionProperties |
The Advanced Threat Protection settings. |
AdvancedThreatProtectionSetting |
The Advanced Threat Protection resource. |
Alert |
Security alert |
AlertEntity |
Changing set of properties depending on the entity type. |
AlertProperties |
describes security alert properties. |
AlertPropertiesSupportingEvidence |
Changing set of properties depending on the supportingEvidence type. |
AlertSeverity |
Defines values for AlertSeverity. |
AlertSimulatorBundlesRequestProperties |
Simulate alerts according to this bundles. |
AlertSimulatorRequestBody |
Alert Simulator request body. |
AlertSimulatorRequestProperties |
Describes properties of an alert simulation request |
AlertsSuppressionRule |
Describes the suppression rule |
AlertsSuppressionRuleProperties |
describes AlertsSuppressionRule properties |
AlertStatus |
Defines values for AlertStatus. |
AlertSyncSettingProperties |
The alert sync setting properties |
AlertSyncSettings |
Represents an alert sync setting |
AllowedConnectionsResource |
The resource whose properties describes the allowed traffic between Azure resources |
AllowedConnectionsResourceProperties |
Describes the allowed traffic between Azure resources |
AllowlistCustomAlertRule |
A custom alert rule that checks if a value (depends on the custom alert type) is allowed. |
AmqpC2DMessagesNotInAllowedRange |
Number of cloud to device messages (AMQP protocol) is not in allowed range. |
AmqpC2DRejectedMessagesNotInAllowedRange |
Number of rejected cloud to device messages (AMQP protocol) is not in allowed range. |
AmqpD2CMessagesNotInAllowedRange |
Number of device to cloud messages (AMQP protocol) is not in allowed range. |
Application |
Security Application over a given scope |
ApplicationCondition |
Application's condition |
ApplicationConditionOperator |
Defines values for ApplicationConditionOperator. |
ApplicationProperties |
Describes properties of an application |
ApplicationSourceResourceType |
Defines values for ApplicationSourceResourceType. |
AscLocation |
The ASC location of the subscription is in the "name" field |
AssessedResourceType |
Defines values for AssessedResourceType. |
AssessmentLinks |
Links relevant to the assessment |
AssessmentStatus |
The result of the assessment |
AssessmentStatusCode |
Defines values for AssessmentStatusCode. |
AssessmentStatusResponse |
The result of the assessment |
AssessmentType |
Defines values for AssessmentType. |
AtaExternalSecuritySolution |
Represents an ATA security solution which sends logs to an OMS workspace |
AtaSolutionProperties |
The external security solution properties for ATA solutions |
AuthenticationDetailsProperties |
Settings for cloud authentication management |
AuthenticationProvisioningState |
Defines values for AuthenticationProvisioningState. |
AuthenticationType |
Defines values for AuthenticationType. |
Automation |
The security automation resource. |
AutomationAction |
The action that should be triggered. |
AutomationActionEventHub |
The target Event Hub to which event data will be exported. To learn more about Microsoft Defender for Cloud continuous export capabilities, visit https://aka.ms/ASCExportLearnMore |
AutomationActionLogicApp |
The logic app action that should be triggered. To learn more about Microsoft Defender for Cloud's Workflow Automation capabilities, visit https://aka.ms/ASCWorkflowAutomationLearnMore |
AutomationActionWorkspace |
The Log Analytics Workspace to which event data will be exported. Security alerts data will reside in the 'SecurityAlert' table and the assessments data will reside in the 'SecurityRecommendation' table (under the 'Security'/'SecurityCenterFree' solutions). Note that in order to view the data in the workspace, the Security Center Log Analytics free/standard solution needs to be enabled on that workspace. To learn more about Microsoft Defender for Cloud continuous export capabilities, visit https://aka.ms/ASCExportLearnMore |
AutomationProperties |
A set of properties that defines the behavior of the automation configuration. To learn more about the supported security events data models schemas - please visit https://aka.ms/ASCAutomationSchemas. |
AutomationRuleSet |
A rule set which evaluates all its rules upon an event interception. Only when all the included rules in the rule set will be evaluated as 'true', will the event trigger the defined actions. |
AutomationScope |
A single automation scope. |
AutomationSource |
The source event types which evaluate the security automation set of rules. For example - security alerts and security assessments. To learn more about the supported security events data models schemas - please visit https://aka.ms/ASCAutomationSchemas. |
AutomationTriggeringRule |
A rule which is evaluated upon event interception. The rule is configured by comparing a specific value from the event model to an expected value. This comparison is done by using one of the supported operators set. |
AutomationValidationStatus |
The security automation model state property bag. |
AutoProvision |
Defines values for AutoProvision. |
AutoProvisioningSetting |
Auto provisioning setting |
AutoProvisioningSettingProperties |
describes properties of an auto provisioning setting |
AwAssumeRoleAuthenticationDetailsProperties |
AWS cloud account connector based assume role, the role enables delegating access to your AWS resources. The role is composed of role Amazon Resource Name (ARN) and external ID. For more details, refer to <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_create_for-user.html">Creating a Role to Delegate Permissions to an IAM User (write only)</a> |
AwsCredsAuthenticationDetailsProperties |
AWS cloud account connector based credentials, the credentials is composed of access key ID and secret key, for more details, refer to <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_users_create.html">Creating an IAM User in Your AWS Account (write only)</a> |
AwsEnvironmentData |
The aws connector environment data |
AwsOrganizationalData |
The awsOrganization data |
AwsOrganizationalDataMaster |
The awsOrganization data for the master account |
AwsOrganizationalDataMember |
The awsOrganization data for the member account |
AzureDevOpsScopeEnvironmentData |
The AzureDevOps scope connector's environment data |
AzureResourceDetails |
Details of the Azure resource that was assessed |
AzureResourceIdentifier |
Azure resource identifier. |
AzureResourceLink |
Describes an Azure resource with kind |
AzureTrackedResourceLocation |
Describes an Azure resource with location |
Baseline |
Baseline details. |
BaselineAdjustedResult |
The rule result adjusted with baseline. |
BenchmarkReference |
The benchmark references. |
BundleType |
Defines values for BundleType. |
Categories |
Defines values for Categories. |
CefExternalSecuritySolution |
Represents a security solution which sends CEF logs to an OMS workspace |
CefSolutionProperties |
The external security solution properties for CEF solutions |
CloudName |
Defines values for CloudName. |
CloudOffering |
The security offering details |
Code |
Defines values for Code. |
Compliance |
Compliance of a scope |
ComplianceProperties |
The Compliance score (percentage) of a Subscription is a sum of all Resources' Compliances under the given Subscription. A Resource Compliance is defined as the compliant ('healthy') Policy Definitions out of all Policy Definitions applicable to a given resource. |
ComplianceResult |
a compliance result |
ComplianceResultProperties |
Compliance result data |
ComplianceSegment |
A segment of a compliance assessment. |
Condition |
Governance rule's condition |
ConnectableResource |
Describes the allowed inbound and outbound traffic of an Azure resource |
ConnectedResource |
Describes properties of a connected resource |
ConnectedWorkspace |
Represents an OMS workspace to which the solution is connected |
ConnectionFromIpNotAllowed |
Inbound connection from an ip that isn't allowed. Allow list consists of ipv4 or ipv6 range in CIDR notation. |
ConnectionStrings |
Connection string for ingesting security data and logs |
ConnectionToIpNotAllowed |
Outbound connection to an ip that isn't allowed. Allow list consists of ipv4 or ipv6 range in CIDR notation. |
ConnectionType |
Defines values for ConnectionType. |
ConnectorSetting |
The connector setting |
ConnectorSettingProperties |
Describes properties of a connector setting |
ContainerRegistryVulnerabilityProperties |
Additional context fields for container registry Vulnerability assessment |
ControlType |
Defines values for ControlType. |
CreatedByType |
Defines values for CreatedByType. |
CspmMonitorAwsOffering |
The CSPM monitoring for AWS offering |
CspmMonitorAwsOfferingNativeCloudConnection |
The native cloud connection configuration |
CspmMonitorAzureDevOpsOffering |
The CSPM monitoring for AzureDevOps offering |
CspmMonitorGcpOffering |
The CSPM monitoring for GCP offering |
CspmMonitorGcpOfferingNativeCloudConnection |
The native cloud connection configuration |
CspmMonitorGithubOffering |
The CSPM monitoring for github offering |
CustomAlertRule |
A custom alert rule. |
CustomAssessmentAutomation |
Custom Assessment Automation |
CustomAssessmentAutomationProperties |
describes the Custom Assessment Automation properties |
CustomAssessmentAutomationRequest |
Custom Assessment Automation request |
CustomAssessmentAutomationRequestProperties |
describes the Custom Assessment Automation properties |
CustomEntityStoreAssignment |
Custom entity store assignment |
CustomEntityStoreAssignmentProperties |
describes the custom entity store assignment properties |
CustomEntityStoreAssignmentRequest |
describes the custom entity store assignment request |
CustomEntityStoreAssignmentRequestProperties |
describes properties of custom entity store assignment request |
CVE |
CVE details |
Cvss |
CVSS details |
DataExportSettingProperties |
The data export setting properties |
DataExportSettings |
Represents a data export setting |
DataSource |
Defines values for DataSource. |
DefenderCspmAwsOffering |
The CSPM P1 for Aws offering |
DefenderCspmAwsOfferingVmScanners |
The Microsoft Defender for Server VM scanning configuration |
DefenderCspmAwsOfferingVmScannersConfiguration |
configuration for Microsoft Defender for Server VM scanning |
DefenderCspmGcpOffering |
The CSPM P1 for GCP offering |
DefenderFoDatabasesAwsOffering |
The Defender for Databases AWS offering |
DefenderFoDatabasesAwsOfferingArcAutoProvisioning |
The ARC autoprovisioning configuration |
DefenderFoDatabasesAwsOfferingRds |
The RDS configuration |
DefenderForContainersAwsOffering |
The Defender for Containers AWS offering |
DefenderForContainersAwsOfferingCloudWatchToKinesis |
The cloudwatch to kinesis connection configuration |
DefenderForContainersAwsOfferingContainerVulnerabilityAssessment |
The container vulnerability assessment configuration |
DefenderForContainersAwsOfferingContainerVulnerabilityAssessmentTask |
The container vulnerability assessment task configuration |
DefenderForContainersAwsOfferingKinesisToS3 |
The kinesis to s3 connection configuration |
DefenderForContainersAwsOfferingKubernetesScubaReader |
The kubernetes to scuba connection configuration |
DefenderForContainersAwsOfferingKubernetesService |
The kubernetes service connection configuration |
DefenderForContainersGcpOffering |
The containers GCP offering |
DefenderForContainersGcpOfferingDataPipelineNativeCloudConnection |
The native cloud connection configuration |
DefenderForContainersGcpOfferingNativeCloudConnection |
The native cloud connection configuration |
DefenderForDatabasesGcpOffering |
The Defender for Databases GCP offering configurations |
DefenderForDatabasesGcpOfferingArcAutoProvisioning |
The ARC autoprovisioning configuration |
DefenderForDatabasesGcpOfferingDefenderForDatabasesArcAutoProvisioning |
The native cloud connection configuration |
DefenderForDevOpsAzureDevOpsOffering |
The Defender for DevOps for Azure DevOps offering |
DefenderForDevOpsGithubOffering |
The Defender for DevOps for Github offering |
DefenderForServersAwsOffering |
The Defender for Servers AWS offering |
DefenderForServersAwsOfferingArcAutoProvisioning |
The ARC autoprovisioning configuration |
DefenderForServersAwsOfferingDefenderForServers |
The Defender for servers connection configuration |
DefenderForServersAwsOfferingMdeAutoProvisioning |
The Microsoft Defender for Endpoint autoprovisioning configuration |
DefenderForServersAwsOfferingSubPlan |
configuration for the servers offering subPlan |
DefenderForServersAwsOfferingVaAutoProvisioning |
The Vulnerability Assessment autoprovisioning configuration |
DefenderForServersAwsOfferingVaAutoProvisioningConfiguration |
configuration for Vulnerability Assessment autoprovisioning |
DefenderForServersAwsOfferingVmScanners |
The Microsoft Defender for Server VM scanning configuration |
DefenderForServersAwsOfferingVmScannersConfiguration |
configuration for Microsoft Defender for Server VM scanning |
DefenderForServersGcpOffering |
The Defender for Servers GCP offering configurations |
DefenderForServersGcpOfferingArcAutoProvisioning |
The ARC autoprovisioning configuration |
DefenderForServersGcpOfferingDefenderForServers |
The Defender for servers connection configuration |
DefenderForServersGcpOfferingMdeAutoProvisioning |
The Microsoft Defender for Endpoint autoprovisioning configuration |
DefenderForServersGcpOfferingSubPlan |
configuration for the servers offering subPlan |
DefenderForServersGcpOfferingVaAutoProvisioning |
The Vulnerability Assessment autoprovisioning configuration |
DefenderForServersGcpOfferingVaAutoProvisioningConfiguration |
configuration for Vulnerability Assessment autoprovisioning |
DenylistCustomAlertRule |
A custom alert rule that checks if a value (depends on the custom alert type) is denied. |
DeviceSecurityGroup |
The device security group resource |
DeviceSecurityGroupProperties |
describes properties of a security group. |
Direction |
Defines values for Direction. |
DirectMethodInvokesNotInAllowedRange |
Number of direct method invokes is not in allowed range. |
DiscoveredSecuritySolution | |
DiscoveredSecuritySolutionProperties | |
EffectiveNetworkSecurityGroups |
Describes the Network Security Groups effective on a network interface |
EndOfSupportStatus |
Defines values for EndOfSupportStatus. |
EnvironmentData |
The security connector environment data. |
EnvironmentType |
Defines values for EnvironmentType. |
ErrorAdditionalInfo |
The resource management error additional info. |
ETag |
Entity tag is used for comparing two or more entities from the same requested resource. |
EventSource |
Defines values for EventSource. |
ExecuteGovernanceRuleParams |
Governance rule execution parameters |
ExpandControlsEnum |
Defines values for ExpandControlsEnum. |
ExpandEnum |
Defines values for ExpandEnum. |
ExportData |
Defines values for ExportData. |
Extension |
A plan's extension properties |
ExternalSecuritySolution |
Represents a security solution external to Microsoft Defender for Cloud which sends information to an OMS workspace and whose data is displayed by Microsoft Defender for Cloud. |
ExternalSecuritySolutionKind |
Defines values for ExternalSecuritySolutionKind. |
ExternalSecuritySolutionKindAutoGenerated |
Describes an Azure resource with kind |
ExternalSecuritySolutionProperties |
The solution properties (correspond to the solution kind) |
FailedLocalLoginsNotInAllowedRange |
Number of failed local logins is not in allowed range. |
FileUploadsNotInAllowedRange |
Number of file uploads is not in allowed range. |
GcpCredentialsDetailsProperties |
GCP cloud account connector based service to service credentials, the credentials are composed of the organization ID and a JSON API key (write only) |
GcpOrganizationalData |
The gcpOrganization data |
GcpOrganizationalDataMember |
The gcpOrganization data for the member account |
GcpOrganizationalDataOrganization |
The gcpOrganization data for the parent account |
GcpProjectDetails |
The details about the project represented by the security connector |
GcpProjectEnvironmentData |
The GCP project connector environment data |
GithubScopeEnvironmentData |
The github scope connector's environment data |
GovernanceAssignment |
Governance assignment over a given scope |
GovernanceAssignmentAdditionalData |
Describe the additional data of governance assignment - optional |
GovernanceAssignmentProperties |
Describes properties of an governance assignment |
GovernanceEmailNotification |
The governance email weekly notification configuration. |
GovernanceRule |
Governance rule over a given scope |
GovernanceRuleConditionOperator |
Defines values for GovernanceRuleConditionOperator. |
GovernanceRuleEmailNotification |
The governance email weekly notification configuration |
GovernanceRuleMetadata |
The governance rule metadata |
GovernanceRuleOwnerSource |
Describe the owner source of governance rule |
GovernanceRuleOwnerSourceType |
Defines values for GovernanceRuleOwnerSourceType. |
GovernanceRuleProperties |
Describes properties of an governance rule |
GovernanceRulesDeleteHeaders | |
GovernanceRulesExecuteHeaders | |
GovernanceRulesOperationResultsHeaders | |
GovernanceRuleSourceResourceType |
Defines values for GovernanceRuleSourceResourceType. |
GovernanceRuleType |
Defines values for GovernanceRuleType. |
HttpC2DMessagesNotInAllowedRange |
Number of cloud to device messages (HTTP protocol) is not in allowed range. |
HttpC2DRejectedMessagesNotInAllowedRange |
Number of rejected cloud to device messages (HTTP protocol) is not in allowed range. |
HttpD2CMessagesNotInAllowedRange |
Number of device to cloud messages (HTTP protocol) is not in allowed range. |
HybridComputeProvisioningState |
Defines values for HybridComputeProvisioningState. |
HybridComputeSettingsProperties |
Settings for hybrid compute management |
ImplementationEffort |
Defines values for ImplementationEffort. |
InformationProtectionAwsOffering |
The information protection for AWS offering |
InformationProtectionAwsOfferingInformationProtection |
The native cloud connection configuration |
InformationProtectionKeyword |
The information type keyword. |
InformationProtectionPolicy |
Information protection policy. |
InformationProtectionPolicyName |
Defines values for InformationProtectionPolicyName. |
InformationProtectionPolicyProperties |
describes properties of an information protection policy. |
InformationType |
The information type. |
IngestionConnectionString |
Connection string for ingesting security data and logs |
IngestionSetting |
Configures how to correlate scan data and logs with resources associated with the subscription. |
IngestionSettingToken |
Configures how to correlate scan data and logs with resources associated with the subscription. |
Intent |
Defines values for Intent. |
IoTSecurityAggregatedAlert |
Security Solution Aggregated Alert information |
IoTSecurityAggregatedAlertProperties |
IoT Security solution aggregated alert details. |
IoTSecurityAggregatedAlertPropertiesTopDevicesListItem | |
IoTSecurityAggregatedRecommendation |
IoT Security solution recommendation information. |
IoTSecurityAggregatedRecommendationProperties |
IoT Security solution aggregated recommendation information |
IoTSecurityAlertedDevice |
Statistical information about the number of alerts per device during last set number of days. |
IoTSecurityDeviceAlert |
Statistical information about the number of alerts per alert type during last set number of days |
IoTSecurityDeviceRecommendation |
Statistical information about the number of recommendations per device, per recommendation type. |
IoTSecuritySolutionAnalyticsModel |
Security analytics of your IoT Security solution |
IoTSecuritySolutionAnalyticsModelList |
List of Security analytics of your IoT Security solution |
IoTSecuritySolutionAnalyticsModelProperties |
Security analytics properties of your IoT Security solution |
IoTSecuritySolutionAnalyticsModelPropertiesDevicesMetricsItem | |
IoTSecuritySolutionModel |
IoT Security solution configuration and resource information. |
IoTSecuritySolutionProperties |
Security Solution setting data |
IoTSeverityMetrics |
IoT Security solution analytics severity metrics. |
IsEnabled |
Defines values for IsEnabled. |
JitNetworkAccessPolicy | |
JitNetworkAccessPolicyInitiatePort | |
JitNetworkAccessPolicyInitiateRequest | |
JitNetworkAccessPolicyInitiateVirtualMachine | |
JitNetworkAccessPolicyProperties | |
JitNetworkAccessPolicyVirtualMachine | |
JitNetworkAccessPortRule | |
JitNetworkAccessRequest | |
JitNetworkAccessRequestPort | |
JitNetworkAccessRequestVirtualMachine | |
Kind |
Defines values for Kind. |
KindAutoGenerated |
Describes an Azure resource with kind |
ListCustomAlertRule |
A List custom alert rule. |
LocalUserNotAllowed |
Login by a local user that isn't allowed. Allow list consists of login names to allow. |
Location |
Describes an Azure resource with location |
LogAnalyticsIdentifier |
Represents a Log Analytics workspace scope identifier. |
MdeOnboardingData |
The resource of the configuration or data needed to onboard the machine to MDE |
MdeOnboardingDataList |
List of all MDE onboarding data resources |
MdeOnboardingDataProperties |
Properties of the MDE configuration or data parameter needed to onboard the machine to MDE |
MinimalSeverity |
Defines values for MinimalSeverity. |
MqttC2DMessagesNotInAllowedRange |
Number of cloud to device messages (MQTT protocol) is not in allowed range. |
MqttC2DRejectedMessagesNotInAllowedRange |
Number of rejected cloud to device messages (MQTT protocol) is not in allowed range. |
MqttD2CMessagesNotInAllowedRange |
Number of device to cloud messages (MQTT protocol) is not in allowed range. |
OfferingType |
Defines values for OfferingType. |
OnPremiseResourceDetails |
Details of the On Premise resource that was assessed |
OnPremiseSqlResourceDetails |
Details of the On Premise Sql resource that was assessed |
Operation |
Possible operation in the REST API of Microsoft.Security |
OperationDisplay |
Security operation display |
OperationResult |
Defines values for OperationResult. |
OperationResultAutoGenerated |
Long run operation status of governance rule over a given scope |
OperationStatus |
A status describing the success/failure of the extension's enablement/disablement operation. |
Operator |
Defines values for Operator. |
OrganizationMembershipType |
Defines values for OrganizationMembershipType. |
Page<T> |
Defines a page in Azure responses. |
PathRecommendation |
Represents a path that is recommended to be allowed and its properties |
PermissionProperty |
Defines values for PermissionProperty. |
Pricing |
Microsoft Defender for Cloud is provided in two pricing tiers: free and standard. The standard tier offers advanced security capabilities, while the free tier offers basic security features. |
PricingList |
List of pricing configurations response. |
PricingProperties |
Pricing properties for the relevant scope |
PricingTier |
Defines values for PricingTier. |
ProcessNotAllowed |
Execution of a process that isn't allowed. Allow list consists of process names to allow. |
PropertyType |
Defines values for PropertyType. |
ProtectionMode |
The protection mode of the collection/file types. Exe/Msi/Script are used for Windows, Executable is used for Linux. |
Protocol |
Defines values for Protocol. |
ProvisioningState |
Defines values for ProvisioningState. |
ProxyServerProperties |
For a non-Azure machine that is not connected directly to the internet, specify a proxy server that the non-Azure machine can use. |
PublisherInfo |
Represents the publisher information of a process/rule |
QueryCheck |
The rule query details. |
QueuePurgesNotInAllowedRange |
Number of device queue purges is not in allowed range. |
RecommendationConfigStatus |
Defines values for RecommendationConfigStatus. |
RecommendationConfigurationProperties |
The type of IoT Security recommendation. |
RecommendationType |
Defines values for RecommendationType. |
RegulatoryComplianceAssessment |
Regulatory compliance assessment details and state |
RegulatoryComplianceAssessmentProperties |
Regulatory compliance assessment data |
RegulatoryComplianceControl |
Regulatory compliance control details and state |
RegulatoryComplianceControlProperties |
Regulatory compliance control data |
RegulatoryComplianceStandard |
Regulatory compliance standard details and state |
RegulatoryComplianceStandardProperties |
Regulatory compliance standard data |
Remediation |
Remediation details. |
RemediationEta |
The ETA (estimated time of arrival) for remediation |
ReportedSeverity |
Defines values for ReportedSeverity. |
Resource |
Describes an Azure resource. |
ResourceDetails |
Details of the resource that was assessed |
ResourceIdentifier |
A resource identifier for an alert which can be used to direct the alert to the right product exposure group (tenant, workspace, subscription etc.). |
ResourceIdentifierType |
Defines values for ResourceIdentifierType. |
ResourceStatus |
Defines values for ResourceStatus. |
Roles |
Defines values for Roles. |
Rule |
Describes remote addresses that is recommended to communicate with the Azure resource on some (Protocol, Port, Direction). All other remote addresses are recommended to be blocked |
RuleResults |
Rule results. |
RuleResultsInput |
Rule results input. |
RuleResultsProperties |
Rule results properties. |
RuleSeverity |
Defines values for RuleSeverity. |
RulesResults |
A list of rules results. |
RulesResultsInput |
Rules results input. |
RuleStatus |
Defines values for RuleStatus. |
RuleType |
Defines values for RuleType. |
Scan |
A vulnerability assessment scan record. |
ScanningMode |
Defines values for ScanningMode. |
ScanProperties |
A vulnerability assessment scan record properties. |
ScanResult |
A vulnerability assessment scan result for a single rule. |
ScanResultProperties |
A vulnerability assessment scan result properties for a single rule. |
ScanResults |
A list of vulnerability assessment scan results. |
Scans |
A list of vulnerability assessment scan records. |
ScanState |
Defines values for ScanState. |
ScanTriggerType |
Defines values for ScanTriggerType. |
ScopeElement |
A more specific scope used to identify the alerts to suppress. |
ScoreDetails |
Calculation result data |
SecureScoreControlDefinitionItem |
Information about the security control. |
SecureScoreControlDefinitionItemProperties |
Security Control Definition Properties. |
SecureScoreControlDefinitionSource |
The type of the security control (For example, BuiltIn) |
SecureScoreControlDetails |
Details of the security control, its score, and the health status of the relevant resources. |
SecureScoreControlScore |
Calculation result data |
SecureScoreControlScoreDetails |
Calculation result data in control level |
SecureScoreItem |
Secure score item data model |
SecureScoreItemProperties |
Describes properties of a calculated secure score. |
SecurityAlertNotificationByRoleState |
Defines values for SecurityAlertNotificationByRoleState. |
SecurityAlertNotificationState |
Defines values for SecurityAlertNotificationState. |
SecurityAssessment |
Security assessment on a resource |
SecurityAssessmentMetadata |
Security assessment metadata |
SecurityAssessmentMetadataPartnerData |
Describes the partner that created the assessment |
SecurityAssessmentMetadataProperties |
Describes properties of an assessment metadata. |
SecurityAssessmentMetadataPropertiesResponse |
Describes properties of an assessment metadata response. |
SecurityAssessmentMetadataPropertiesResponsePublishDates | |
SecurityAssessmentMetadataResponse |
Security assessment metadata response |
SecurityAssessmentPartnerData |
Data regarding 3rd party partner integration |
SecurityAssessmentProperties |
Describes properties of an assessment. |
SecurityAssessmentPropertiesBase |
Describes properties of an assessment. |
SecurityAssessmentPropertiesResponse |
Describes properties of an assessment. |
SecurityAssessmentResponse |
Security assessment on a resource - response format |
SecurityConnector |
The security connector resource. |
SecurityConnectorProperties |
A set of properties that defines the security connector configuration. |
SecurityContact |
Contact details and configurations for notifications coming from Microsoft Defender for Cloud. |
SecurityContactProperties |
Describes security contact properties |
SecurityContactPropertiesAlertNotifications |
Defines whether to send email notifications about new security alerts |
SecurityContactPropertiesNotificationsByRole |
Defines whether to send email notifications from Microsoft Defender for Cloud to persons with specific RBAC roles on the subscription. |
SecurityFamily |
Defines values for SecurityFamily. |
SecuritySolution | |
SecuritySolutionProperties | |
SecuritySolutionsReferenceData | |
SecuritySolutionsReferenceDataList | |
SecuritySolutionsReferenceDataProperties | |
SecuritySolutionStatus |
Defines values for SecuritySolutionStatus. |
SecuritySubAssessment |
Security sub-assessment on a resource |
SecuritySubAssessmentProperties |
Describes properties of an sub-assessment. |
SecurityTask |
Security task that we recommend to do in order to strengthen security |
SecurityTaskParameters |
Changing set of properties, depending on the task type that is derived from the name field |
SecurityTaskProperties |
Describes properties of a task. |
SensitivityLabel |
The sensitivity label. |
ServerVulnerabilityAssessment |
Describes the server vulnerability assessment details on a resource |
ServerVulnerabilityAssessmentProperties |
describes ServerVulnerabilityAssessment properties. |
ServerVulnerabilityAssessmentsList |
List of server vulnerability assessments |
ServerVulnerabilityProperties |
Additional context fields for server vulnerability assessment |
ServicePrincipalProperties |
Details of the service principal. |
Setting |
The kind of the security setting |
SettingKind |
Defines values for SettingKind. |
SettingName |
Defines values for SettingName. |
Severity |
Defines values for Severity. |
SeverityEnum |
Defines values for SeverityEnum. |
Software |
Represents a software data |
SoftwareProperties |
Software Inventory resource properties |
Source |
Defines values for Source. |
SqlServerVulnerabilityProperties |
Details of the resource that was assessed |
State |
Defines values for State. |
Status |
Defines values for Status. |
StatusReason |
Defines values for StatusReason. |
SubAssessmentStatus |
Status of the sub-assessment |
SubAssessmentStatusCode |
Defines values for SubAssessmentStatusCode. |
SubPlan |
Defines values for SubPlan. |
SupportedCloudEnum |
Defines values for SupportedCloudEnum. |
SuppressionAlertsScope | |
SystemData |
Metadata pertaining to creation and last modification of the resource. |
Tactics |
Defines values for Tactics. |
Tags |
A list of key value pairs that describe the resource. |
TagsResource |
A container holding only the Tags for a resource, allowing the user to update the tags. |
TaskUpdateActionType |
Defines values for TaskUpdateActionType. |
Techniques |
Defines values for Techniques. |
Threats |
Defines values for Threats. |
ThresholdCustomAlertRule |
A custom alert rule that checks if a value (depends on the custom alert type) is within the given range. |
TimeWindowCustomAlertRule |
A custom alert rule that checks if the number of activities (depends on the custom alert type) in a time window is within the given range. |
TopologyResource | |
TopologyResourceProperties | |
TopologySingleResource | |
TopologySingleResourceChild | |
TopologySingleResourceParent | |
TrackedResource |
Describes an Azure tracked resource. |
TransportProtocol |
Defines values for TransportProtocol. |
TwinUpdatesNotInAllowedRange |
Number of twin updates is not in allowed range. |
Type |
Defines values for Type. |
UnauthorizedOperationsNotInAllowedRange |
Number of unauthorized operations is not in allowed range. |
UnmaskedIpLoggingStatus |
Defines values for UnmaskedIpLoggingStatus. |
UpdateIotSecuritySolutionData | |
UpdateIoTSecuritySolutionProperties |
Update Security Solution setting data |
UserDefinedResourcesProperties |
Properties of the IoT Security solution's user defined resources. |
UserImpact |
Defines values for UserImpact. |
UserRecommendation |
Represents a user that is recommended to be allowed for a certain rule |
ValueType |
Defines values for ValueType. |
VaRule |
vulnerability assessment rule metadata details. |
VendorReference |
Vendor reference |
VmRecommendation |
Represents a machine that is part of a machine group |
WorkspaceSetting |
Configures where to store the OMS agent data for workspaces under a scope |
WorkspaceSettingProperties |
Workspace setting data |
Enums
AdaptiveNetworkHardeningEnforceAction |
Defines values for AdaptiveNetworkHardeningEnforceAction. |
AdvancedThreatProtectionSettingName |
Defines values for AdvancedThreatProtectionSettingName. |
JitNetworkAccessPolicyInitiateType |
Defines values for JitNetworkAccessPolicyInitiateType. |
Rank |
Defines values for Rank. |
RuleState |
Defines values for RuleState. |
ServerVulnerabilityAssessmentName |
Defines values for ServerVulnerabilityAssessmentName. |