pulumi-azure-kotlin/com.pulumi.azure.sentinel.kotlin.outputs

Package-level declarations

Types

data class AlertRuleAnomalyBuiltInMultiSelectObservation(val description: String? = null, val name: String? = null, val supportedValues: List<String>? = null, val values: List<String>? = null)
data class AlertRuleAnomalyBuiltInPrioritizedExcludeObservation(val description: String? = null, val exclude: String? = null, val name: String? = null, val prioritize: String? = null)
data class AlertRuleAnomalyBuiltInRequiredDataConnector(val connectorId: String? = null, val dataTypes: List<String>? = null)
data class AlertRuleAnomalyBuiltInSingleSelectObservation(val description: String? = null, val name: String? = null, val supportedValues: List<String>? = null, val value: String? = null)
data class AlertRuleAnomalyBuiltInThresholdObservation(val description: String? = null, val max: String? = null, val min: String? = null, val name: String? = null, val value: String? = null)
data class AlertRuleAnomalyDuplicateMultiSelectObservation(val description: String? = null, val name: String, val supportedValues: List<String>? = null, val values: List<String>)
data class AlertRuleAnomalyDuplicatePrioritizedExcludeObservation(val description: String? = null, val exclude: String? = null, val name: String, val prioritize: String? = null)
data class AlertRuleAnomalyDuplicateRequiredDataConnector(val connectorId: String? = null, val dataTypes: List<String>? = null)
data class AlertRuleAnomalyDuplicateSingleSelectObservation(val description: String? = null, val name: String, val supportedValues: List<String>? = null, val value: String)
data class AlertRuleAnomalyDuplicateThresholdObservation(val description: String? = null, val max: String? = null, val min: String? = null, val name: String, val value: String)
Link copied to clipboard
data class AlertRuleFusionSource(val enabled: Boolean? = null, val name: String, val subTypes: List<AlertRuleFusionSourceSubType>? = null)
Link copied to clipboard
data class AlertRuleFusionSourceSubType(val enabled: Boolean? = null, val name: String, val severitiesAlloweds: List<String>)
Link copied to clipboard
data class AlertRuleNrtAlertDetailsOverride(val descriptionFormat: String? = null, val displayNameFormat: String? = null, val dynamicProperties: List<AlertRuleNrtAlertDetailsOverrideDynamicProperty>? = null, val severityColumnName: String? = null, val tacticsColumnName: String? = null)
Link copied to clipboard
data class AlertRuleNrtEntityMapping(val entityType: String, val fieldMappings: List<AlertRuleNrtEntityMappingFieldMapping>)
Link copied to clipboard
data class AlertRuleNrtEntityMappingFieldMapping(val columnName: String, val identifier: String)
Link copied to clipboard
data class AlertRuleNrtEventGrouping(val aggregationMethod: String)
Link copied to clipboard
data class AlertRuleNrtIncident(val createIncidentEnabled: Boolean, val grouping: AlertRuleNrtIncidentGrouping)
Link copied to clipboard
data class AlertRuleNrtIncidentGrouping(val byAlertDetails: List<String>? = null, val byCustomDetails: List<String>? = null, val byEntities: List<String>? = null, val enabled: Boolean? = null, val entityMatchingMethod: String? = null, val lookbackDuration: String? = null, val reopenClosedIncidents: Boolean? = null)
Link copied to clipboard
data class AlertRuleNrtSentinelEntityMapping(val columnName: String)
Link copied to clipboard
data class AlertRuleScheduledAlertDetailsOverride(val descriptionFormat: String? = null, val displayNameFormat: String? = null, val dynamicProperties: List<AlertRuleScheduledAlertDetailsOverrideDynamicProperty>? = null, val severityColumnName: String? = null, val tacticsColumnName: String? = null)
Link copied to clipboard
data class AlertRuleScheduledEntityMappingFieldMapping(val columnName: String, val identifier: String)
Link copied to clipboard
data class AlertRuleScheduledEventGrouping(val aggregationMethod: String)
Link copied to clipboard
data class AlertRuleScheduledIncident(val createIncidentEnabled: Boolean, val grouping: AlertRuleScheduledIncidentGrouping)
Link copied to clipboard
data class AlertRuleScheduledIncidentGrouping(val byAlertDetails: List<String>? = null, val byCustomDetails: List<String>? = null, val byEntities: List<String>? = null, val enabled: Boolean? = null, val entityMatchingMethod: String? = null, val lookbackDuration: String? = null, val reopenClosedIncidents: Boolean? = null)
Link copied to clipboard
data class AlertRuleScheduledSentinelEntityMapping(val columnName: String)
Link copied to clipboard
data class AuthomationRuleActionIncident(val classification: String? = null, val classificationComment: String? = null, val labels: List<String>? = null, val order: Int, val ownerId: String? = null, val severity: String? = null, val status: String? = null)
Link copied to clipboard
data class AuthomationRuleActionPlaybook(val logicAppId: String, val order: Int, val tenantId: String? = null)
Link copied to clipboard
data class AutomationRuleActionIncident(val classification: String? = null, val classificationComment: String? = null, val labels: List<String>? = null, val order: Int, val ownerId: String? = null, val severity: String? = null, val status: String? = null)
Link copied to clipboard
data class AutomationRuleActionPlaybook(val logicAppId: String, val order: Int, val tenantId: String? = null)
data class GetAlertRuleAnomalyMultiSelectObservation(val description: String, val name: String, val supportedValues: List<String>, val values: List<String>)
data class GetAlertRuleAnomalyPrioritizedExcludeObservation(val description: String, val exclude: String, val name: String, val prioritize: String)
Link copied to clipboard
data class GetAlertRuleAnomalyRequiredDataConnector(val connectorId: String, val dataTypes: List<String>)
Link copied to clipboard
data class GetAlertRuleAnomalyResult(val anomalySettingsVersion: Int, val anomalyVersion: String, val description: String, val displayName: String, val enabled: Boolean, val frequency: String, val id: String, val logAnalyticsWorkspaceId: String, val mode: String, val multiSelectObservations: List<GetAlertRuleAnomalyMultiSelectObservation>, val name: String, val prioritizedExcludeObservations: List<GetAlertRuleAnomalyPrioritizedExcludeObservation>, val requiredDataConnectors: List<GetAlertRuleAnomalyRequiredDataConnector>, val settingsDefinitionId: String, val singleSelectObservations: List<GetAlertRuleAnomalySingleSelectObservation>, val tactics: List<String>, val techniques: List<String>, val thresholdObservations: List<GetAlertRuleAnomalyThresholdObservation>)

A collection of values returned by getAlertRuleAnomaly.

data class GetAlertRuleAnomalySingleSelectObservation(val description: String, val name: String, val supportedValues: List<String>, val value: String)
Link copied to clipboard
data class GetAlertRuleAnomalyThresholdObservation(val description: String, val max: String, val min: String, val name: String, val value: String)
Link copied to clipboard
data class GetAlertRuleResult(val id: String, val logAnalyticsWorkspaceId: String, val name: String)

A collection of values returned by getAlertRule.

Link copied to clipboard
data class GetAlertRuleTemplateNrtTemplate(val description: String, val query: String, val severity: String, val tactics: List<String>)
Link copied to clipboard
data class GetAlertRuleTemplateResult(val displayName: String, val id: String, val logAnalyticsWorkspaceId: String, val name: String, val nrtTemplates: List<GetAlertRuleTemplateNrtTemplate>, val scheduledTemplates: List<GetAlertRuleTemplateScheduledTemplate>, val securityIncidentTemplates: List<GetAlertRuleTemplateSecurityIncidentTemplate>)

A collection of values returned by getAlertRuleTemplate.

Link copied to clipboard
data class GetAlertRuleTemplateScheduledTemplate(val description: String, val query: String, val queryFrequency: String, val queryPeriod: String, val severity: String, val tactics: List<String>, val triggerOperator: String, val triggerThreshold: Int)
data class GetAlertRuleTemplateSecurityIncidentTemplate(val description: String, val productFilter: String)
Link copied to clipboard
data class MetadataAuthor(val email: String? = null, val link: String? = null, val name: String? = null)
Link copied to clipboard
data class MetadataCategory(val domains: List<String>? = null, val verticals: List<String>? = null)
Link copied to clipboard
data class MetadataSource(val id: String? = null, val kind: String, val name: String? = null)
Link copied to clipboard
data class MetadataSupport(val email: String? = null, val link: String? = null, val name: String? = null, val tier: String)
data class ThreatIntelligenceIndicatorExternalReference(val description: String? = null, val hashes: Map<String, String>? = null, val id: String? = null, val sourceName: String? = null, val url: String? = null)
data class ThreatIntelligenceIndicatorGranularMarking(val language: String? = null, val markingRef: String? = null, val selectors: List<String>? = null)
data class ThreatIntelligenceIndicatorKillChainPhase(val name: String? = null)
Link copied to clipboard
data class ThreatIntelligenceIndicatorParsedPattern(val patternTypeKey: String? = null, val patternTypeValues: List<ThreatIntelligenceIndicatorParsedPatternPatternTypeValue>? = null)
data class ThreatIntelligenceIndicatorParsedPatternPatternTypeValue(val value: String? = null, val valueType: String? = null)