Azure.ResourceManager.SecurityCenter.Models Namespace
Important
Some information relates to prerelease product that may be substantially modified before it’s released. Microsoft makes no warranties, express or implied, with respect to the information provided here.
Classes
| Name | Description |
|---|---|
| AadExternalSecuritySolution |
The AadExternalSecuritySolution. |
| AadSolutionProperties |
The external security solution properties for AAD solutions. |
| AccessTokenAuthentication |
The environment authentication details. |
| ActionableRemediation |
Configuration payload for PR Annotations. |
| ActiveConnectionsNotInAllowedRange |
Number of active connections is not in allowed range. |
| AdditionalWorkspacesProperties |
Provides a compatibility shim for the AdditionalWorkspacesProperties class. |
| AgentlessConfiguration |
Details about Agentless configuration. |
| AlertSyncSettings |
Represents an alert sync setting. |
| AllowlistCustomAlertRule |
A custom alert rule that checks if a value (depends on the custom alert type) is allowed. |
| AmqpC2DMessagesNotInAllowedRange |
Number of cloud to device messages (AMQP protocol) is not in allowed range. |
| AmqpC2DRejectedMessagesNotInAllowedRange |
Number of rejected cloud to device messages (AMQP protocol) is not in allowed range. |
| AmqpD2CMessagesNotInAllowedRange |
Number of device to cloud messages (AMQP protocol) is not in allowed range. |
| ArcAutoProvisioning |
The ARC autoprovisioning configuration. |
| ArcAutoProvisioningAws |
The ARC autoprovisioning configuration for an AWS environment. |
| ArcAutoProvisioningGcp |
The ARC autoprovisioning configuration for an GCP environment. |
| ArmSecurityCenterModelFactory |
A factory class for creating instances of the models for mocking. |
| AtaExternalSecuritySolution |
The AtaExternalSecuritySolution. |
| AtaSolutionProperties |
The external security solution properties for ATA solutions. |
| AttestationEvidence |
Describe the properties of a assignment attestation. |
| AwsEnvironment |
The AWS connector environment data. |
| AwsOrganizationalDataMaster |
The AWS organization data for the master account. |
| AwsOrganizationalDataMember |
The AWS organization data for the member account. |
| AwsOrganizationalInfo |
AWS organizational information. |
| AzureDevOpsOrgListResult |
List of RP resources which supports pagination. |
| AzureDevOpsOrgProperties |
Azure DevOps Organization properties. |
| AzureDevOpsProjectProperties |
Azure DevOps Project properties. |
| AzureDevOpsRepositoryProperties |
Azure DevOps Repository properties. |
| AzureDevOpsScopeEnvironment |
The AzureDevOps scope connector's environment data. |
| AzureResourceDetails |
Details of the Azure resource that was assessed. |
| AzureResourceIdentifier |
Azure resource identifier. |
| AzureServersSetting |
A vulnerability assessments setting on Azure servers in the defined scope. |
| BaselineAdjustedResult |
Provides a compatibility shim for the BaselineAdjustedResult class. |
| BenchmarkReference |
Provides a compatibility shim for the BenchmarkReference class. |
| BlobsScanSummary |
A summary of the scan results of the blobs that were scanned. |
| BuiltInInfoType |
Pre-configured sensitive information type. |
| CategoryConfiguration |
Severity level per category configuration for PR Annotations. |
| CefExternalSecuritySolution |
The CefExternalSecuritySolution. |
| CefSolutionProperties |
The external security solution properties for CEF solutions. |
| ComplianceSegment |
A segment of a compliance assessment. |
| ConnectableResourceInfo |
Describes the allowed inbound and outbound traffic of an Azure resource. |
| ConnectedResourceInfo |
Describes properties of a connected resource. |
| ConnectionFromIPNotAllowed |
Inbound connection from an ip that isn't allowed. Allow list consists of ipv4 or ipv6 range in CIDR notation. |
| ConnectionToIPNotAllowed |
Outbound connection to an ip that isn't allowed. Allow list consists of ipv4 or ipv6 range in CIDR notation. |
| ContainerRegistryVulnerabilityProperties |
Provides a compatibility shim for the ContainerRegistryVulnerabilityProperties class. |
| CspmMonitorAwsOffering |
The CSPM monitoring for AWS offering. |
| CspmMonitorAzureDevOpsOffering |
The CSPM monitoring for AzureDevOps offering. |
| CspmMonitorDockerHubOffering |
The CSPM (Cloud security posture management) monitoring for Docker Hub offering. |
| CspmMonitorGcpOffering |
The CSPM monitoring for GCP offering. |
| CspmMonitorGcpOfferingNativeCloudConnection |
The native cloud connection configuration. |
| CspmMonitorGithubOffering |
The CSPM monitoring for github offering. |
| CspmMonitorGitLabOffering |
The CSPM (Cloud security posture management) monitoring for gitlab offering. |
| CspmMonitorJFrogOffering |
The CSPM (Cloud security posture management) monitoring for JFrog Artifactory offering. |
| CustomAlertRule |
A custom alert rule. Please note this is the abstract base class. The derived classes available for instantiation are: ThresholdCustomAlertRule, TimeWindowCustomAlertRule, AllowlistCustomAlertRule, ListCustomAlertRule, DenylistCustomAlertRule, ConnectionToIPNotAllowed, ConnectionFromIPNotAllowed, LocalUserNotAllowed, ProcessNotAllowed, ActiveConnectionsNotInAllowedRange, AmqpC2DMessagesNotInAllowedRange, MqttC2DMessagesNotInAllowedRange, HttpC2DMessagesNotInAllowedRange, AmqpC2DRejectedMessagesNotInAllowedRange, MqttC2DRejectedMessagesNotInAllowedRange, HttpC2DRejectedMessagesNotInAllowedRange, AmqpD2CMessagesNotInAllowedRange, MqttD2CMessagesNotInAllowedRange, HttpD2CMessagesNotInAllowedRange, DirectMethodInvokesNotInAllowedRange, FailedLocalLoginsNotInAllowedRange, FileUploadsNotInAllowedRange, QueuePurgesNotInAllowedRange, TwinUpdatesNotInAllowedRange, and UnauthorizedOperationsNotInAllowedRange. |
| DataExportSettings |
Provides a compatibility shim for the DataExportSettings class. |
| DefenderCspmAwsOffering |
The CSPM P1 for AWS offering. |
| DefenderCspmAwsOfferingCiem |
Defenders CSPM Permissions Management offering configurations. |
| DefenderCspmAwsOfferingCiemCiemOidc |
AWS Defender CSPM Permissions Management OIDC (open id connect) connection configurations. |
| DefenderCspmAwsOfferingDatabasesDspm |
The databases DSPM configuration. |
| DefenderCspmAwsOfferingDataSensitivityDiscovery |
The Microsoft Defender Data Sensitivity discovery configuration. |
| DefenderCspmAwsOfferingMdcContainersAgentlessDiscoveryK8S |
The Microsoft Defender container agentless discovery K8s configuration. |
| DefenderCspmAwsOfferingMdcContainersImageAssessment |
The Microsoft Defender container image assessment configuration. |
| DefenderCspmAwsOfferingVmScanners |
Provides a compatibility shim for the DefenderCspmAwsOfferingVmScanners class. |
| DefenderCspmDockerHubOffering |
The Defender for CSPM Docker Hub offering configurations. |
| DefenderCspmGcpOffering |
The CSPM P1 for GCP offering. |
| DefenderCspmGcpOfferingCiemDiscovery |
GCP Defenders CSPM Permissions Management OIDC (Open ID connect) connection configurations. |
| DefenderCspmGcpOfferingDataSensitivityDiscovery |
The Microsoft Defender Data Sensitivity discovery configuration. |
| DefenderCspmGcpOfferingMdcContainersAgentlessDiscoveryK8S |
The Microsoft Defender Container agentless discovery configuration. |
| DefenderCspmGcpOfferingMdcContainersImageAssessment |
The Microsoft Defender Container image assessment configuration. |
| DefenderCspmGcpOfferingVmScanners |
The Microsoft Defender for CSPM VM scanning configuration. |
| DefenderCspmJFrogOffering |
The CSPM P1 for JFrog Artifactory offering. |
| DefenderForContainersAwsOffering |
Provides a compatibility shim for the DefenderForContainersAwsOffering class. |
| DefenderForContainersAwsOfferingMdcContainersAgentlessDiscoveryK8S |
The Microsoft Defender container agentless discovery K8s configuration. |
| DefenderForContainersAwsOfferingMdcContainersImageAssessment |
The Microsoft Defender container image assessment configuration. |
| DefenderForContainersAwsOfferingVmScanners |
The Microsoft Defender for Container K8s VM host scanning configuration. |
| DefenderForContainersDockerHubOffering |
The Defender for containers Docker Hub offering configurations. |
| DefenderForContainersGcpOffering |
Provides a compatibility shim for the DefenderForContainersGcpOffering class. |
| DefenderForContainersGcpOfferingDataPipelineNativeCloudConnection |
The native cloud connection configuration. |
| DefenderForContainersGcpOfferingMdcContainersAgentlessDiscoveryK8S |
The Microsoft Defender Container agentless discovery configuration. |
| DefenderForContainersGcpOfferingMdcContainersImageAssessment |
The Microsoft Defender Container image assessment configuration. |
| DefenderForContainersGcpOfferingNativeCloudConnection |
The native cloud connection configuration. |
| DefenderForContainersGcpOfferingVmScanners |
The Microsoft Defender for Container K8s VM host scanning configuration. |
| DefenderForContainersJFrogOffering |
The Defender for Containers for JFrog Artifactory offering. |
| DefenderForDatabasesAwsOffering |
The Defender for Databases AWS offering. |
| DefenderForDatabasesAwsOfferingArcAutoProvisioning |
The ARC autoprovisioning configuration. |
| DefenderForDatabasesAwsOfferingArcAutoProvisioningConfiguration |
Configuration for servers Arc auto provisioning for a given environment. |
| DefenderForDatabasesAwsOfferingDatabasesDspm |
The databases data security posture management (DSPM) configuration. |
| DefenderForDatabasesAwsOfferingRds |
The RDS configuration. |
| DefenderForDatabasesGcpOffering |
The Defender for Databases GCP offering configurations. |
| DefenderForDatabasesGcpOfferingArcAutoProvisioning |
The ARC autoprovisioning configuration. |
| DefenderForServersAwsOffering |
Provides a compatibility shim for the DefenderForServersAwsOffering class. |
| DefenderForServersAwsOfferingArcAutoProvisioning |
Provides a compatibility shim for the DefenderForServersAwsOfferingArcAutoProvisioning class. |
| DefenderForServersAwsOfferingMdeAutoProvisioning |
Provides a compatibility shim for the DefenderForServersAwsOfferingMdeAutoProvisioning class. |
| DefenderForServersAwsOfferingVmScanners |
Provides a compatibility shim for the DefenderForServersAwsOfferingVmScanners class. |
| DefenderForServersAwsOfferingVulnerabilityAssessmentAutoProvisioning |
Provides a compatibility shim for the DefenderForServersAwsOfferingVulnerabilityAssessmentAutoProvisioning class. |
| DefenderForServersGcpOffering |
Provides a compatibility shim for the DefenderForServersGcpOffering class. |
| DefenderForServersGcpOfferingArcAutoProvisioning |
The ARC autoprovisioning configuration. |
| DefenderForServersGcpOfferingMdeAutoProvisioning |
Provides a compatibility shim for the DefenderForServersGcpOfferingMdeAutoProvisioning class. |
| DefenderForServersGcpOfferingVaAutoProvisioning |
The Vulnerability Assessment autoprovisioning configuration. |
| DefenderForServersGcpOfferingVmScanners |
The Microsoft Defender for Server VM scanning configuration. |
| DefenderForStorageSettingProperties |
Defender for Storage resource properties. |
| DenylistCustomAlertRule |
A custom alert rule that checks if a value (depends on the custom alert type) is denied. |
| DevOpsCapability |
Details about DevOps capability. |
| DevOpsConfigurationProperties |
DevOps Configuration properties. |
| DirectMethodInvokesNotInAllowedRange |
Number of direct method invokes is not in allowed range. |
| DiscoveredSecuritySolution |
Provides a compatibility shim for the DiscoveredSecuritySolution class. |
| DockerHubEnvironmentInfo |
The Docker Hub connector environment data. |
| ExecuteGovernanceRuleParams |
Governance rule execution parameters. |
| ExternalSecuritySolution |
The ExternalSecuritySolution. |
| ExternalSecuritySolutionProperties |
The solution properties (correspond to the solution kind). |
| FailedLocalLoginsNotInAllowedRange |
Number of failed local logins is not in allowed range. |
| FilesScanSummary |
A summary of the scan results of the files that were scanned. |
| FileUploadsNotInAllowedRange |
Number of file uploads is not in allowed range. |
| GcpDefenderForDatabasesArcAutoProvisioning |
The native cloud connection configuration. |
| GcpDefenderForServersInfo |
The Defender for servers connection configuration. |
| GcpMemberOrganizationalInfo |
The gcpOrganization data for the member account. |
| GcpOrganizationalInfo |
The gcpOrganization data Please note this is the abstract base class. The derived classes available for instantiation are: GcpParentOrganizationalInfo and GcpMemberOrganizationalInfo. |
| GcpParentOrganizationalInfo |
The gcpOrganization data for the parent account. |
| GcpProjectDetails |
The details about the project represented by the security connector. |
| GcpProjectEnvironment |
The GCP project connector environment data. |
| GitHubOwnerListResult |
List of RP resources which supports pagination. |
| GitHubOwnerProperties |
GitHub Owner properties. |
| GitHubRepositoryProperties |
GitHub Repository properties. |
| GithubScopeEnvironment |
The github scope connector's environment data. |
| GitLabGroupListResult |
List of RP resources which supports pagination. |
| GitLabGroupProperties |
GitLab Group properties. |
| GitLabProjectProperties |
GitLab Project properties. |
| GitLabScopeEnvironmentInfo |
The GitLab scope connector's environment data. |
| GovernanceAssignmentAdditionalInfo |
Describe the additional data of governance assignment - optional. |
| GovernanceEmailNotification |
Provides a compatibility shim for the GovernanceEmailNotification class. |
| GovernanceRuleEmailNotification |
Provides a compatibility shim for the GovernanceRuleEmailNotification class. |
| GovernanceRuleMetadata |
The governance rule metadata. |
| GovernanceRuleOwnerSource |
Provides a compatibility shim for the GovernanceRuleOwnerSource class. |
| HealthDataClassification |
The classification of the health report. |
| HealthReportStatus |
The status of the health report. |
| HttpC2DMessagesNotInAllowedRange |
Number of cloud to device messages (HTTP protocol) is not in allowed range. |
| HttpC2DRejectedMessagesNotInAllowedRange |
Number of rejected cloud to device messages (HTTP protocol) is not in allowed range. |
| HttpD2CMessagesNotInAllowedRange |
Number of device to cloud messages (HTTP protocol) is not in allowed range. |
| InformationProtectionKeyword |
The information type keyword. |
| InformationProtectionSensitivityLabel |
Microsoft information protection sensitivity label. |
| InfoType |
Custom user-defined information type. |
| InventoryList |
Model for inventory to be included or excluded from Agentless. |
| IotSecurityAggregatedAlertTopDevice |
The IotSecurityAggregatedAlertTopDevice. |
| IotSecurityAlertedDevice |
Statistical information about the number of alerts per device during last set number of days. |
| IotSecurityDeviceAlert |
Statistical information about the number of alerts per alert type during last set number of days. |
| IotSecurityDeviceRecommendation |
Statistical information about the number of recommendations per device, per recommendation type. |
| IotSecuritySolutionAnalyticsModelDevicesMetrics |
The IotSecuritySolutionAnalyticsModelDevicesMetrics. |
| IoTSecuritySolutionAnalyticsModelList |
List of Security analytics of your IoT Security solution. |
| IotSecuritySolutionPatch |
The IotSecuritySolutionPatch. |
| IotSeverityMetrics |
IoT Security solution analytics severity metrics. |
| IssueCreationContent |
The issue creation request model. |
| JFrogEnvironmentInfo |
The JFrog Artifactory connector environment data. |
| JitNetworkAccessPolicyInitiateContent |
The JitNetworkAccessPolicyInitiateContent. |
| JitNetworkAccessPolicyInitiatePort |
Provides a compatibility shim for the JitNetworkAccessPolicyInitiatePort class. |
| JitNetworkAccessPolicyInitiateVirtualMachine |
The JitNetworkAccessPolicyInitiateVirtualMachine. |
| JitNetworkAccessPolicyVirtualMachine |
The JitNetworkAccessPolicyVirtualMachine. |
| JitNetworkAccessPortRule |
The JitNetworkAccessPortRule. |
| JitNetworkAccessRequestInfo |
Provides a compatibility shim for the JitNetworkAccessRequestInfo class. |
| JitNetworkAccessRequestPort |
Provides a compatibility shim for the JitNetworkAccessRequestPort class. |
| JitNetworkAccessRequestVirtualMachine |
The JitNetworkAccessRequestVirtualMachine. |
| ListCustomAlertRule |
A List custom alert rule. |
| LocalUserNotAllowed |
Login by a local user that isn't allowed. Allow list consists of login names to allow. |
| LogAnalyticsIdentifier |
Represents a Log Analytics workspace scope identifier. |
| MalwareScan |
Describes the state of a malware scan operation. |
| MalwareScanningProperties |
Properties of Malware Scanning. |
| MalwareScanProperties |
The MalwareScanProperties. |
| MdeOnboardingDataList |
List of all MDE onboarding data resources. |
| MqttC2DMessagesNotInAllowedRange |
Number of cloud to device messages (MQTT protocol) is not in allowed range. |
| MqttC2DRejectedMessagesNotInAllowedRange |
Number of rejected cloud to device messages (MQTT protocol) is not in allowed range. |
| MqttD2CMessagesNotInAllowedRange |
Number of device to cloud messages (MQTT protocol) is not in allowed range. |
| NotificationsSource |
A valid notification source type Please note this is the abstract base class. The derived classes available for instantiation are: NotificationsSourceAlert and NotificationsSourceAttackPath. |
| NotificationsSourceAlert |
Alert notification source. |
| NotificationsSourceAttackPath |
Attack path notification source. |
| OnPremiseResourceDetails |
Details of the On Premise resource that was assessed. |
| OnPremiseSqlResourceDetails |
Details of the On Premise Sql resource that was assessed. |
| OnUploadFilters |
Optional. Determine which blobs get scanned by On Upload malware scanning. An Or operation is performed between each filter type. |
| OnUploadProperties |
Properties of On Upload malware scanning. |
| PartialAssessmentProperties |
Describes properties of an assessment as related to the standard. |
| PrivateLinkResourcePatch |
Request payload for updating a private link resource. Used in PATCH operations to update specific mutable properties without affecting the entire resource configuration. |
| ProcessNotAllowed |
Execution of a process that isn't allowed. Allow list consists of process names to allow. |
| QueuePurgesNotInAllowedRange |
Number of device queue purges is not in allowed range. |
| RecommendationConfigurationProperties |
The type of IoT Security recommendation. |
| RemediationEta |
The ETA (estimated time of arrival) for remediation. |
| RuleResultsInput |
Rule results input. |
| RuleResultsProperties |
Rule results properties. |
| RulesResults |
A list of rules results. |
| RulesResultsContent |
Rules results input. |
| ScanSummary |
A summary of the scan results. |
| SecureScoreControlDefinitionItem |
Information about the security control. |
| SecureScoreControlDetails |
Provides a compatibility shim for the SecureScoreControlDetails class. |
| SecurityAlertEntity |
Changing set of properties depending on the entity type. |
| SecurityAlertResourceIdentifier |
Resource identifier for a security alert entity. |
| SecurityAlertSimulatorBundlesRequestProperties |
Simulate alerts according to this bundles. |
| SecurityAlertSimulatorContent |
Alert Simulator request body. |
| SecurityAlertSimulatorRequestProperties |
Describes properties of an alert simulation request. |
| SecurityAlertSupportingEvidence |
Changing set of properties depending on the supportingEvidence type. |
| SecurityAssessmentCreateOrUpdateContent |
Provides a compatibility shim for the SecurityAssessmentCreateOrUpdateContent class. |
| SecurityAssessmentMetadataPartner |
Describes the partner that created the assessment. |
| SecurityAssessmentMetadataProperties |
Describes properties of an assessment metadata. |
| SecurityAssessmentMetadataPropertiesResult |
Describes properties of an assessment metadata response. |
| SecurityAssessmentPartner |
Data regarding 3rd party partner integration. |
| SecurityAssessmentPropertiesBaseRisk |
External model of risk result. |
| SecurityAssessmentPropertiesBaseRiskPathsItem |
The SecurityAssessmentPropertiesBaseRiskPathsItem. |
| SecurityAssessmentPropertiesBaseRiskPathsItemEdgeItem |
The SecurityAssessmentPropertiesBaseRiskPathsItemEdgeItem. |
| SecurityAssessmentPropertiesBaseRiskPathsItemNodesItem |
The SecurityAssessmentPropertiesBaseRiskPathsItemNodesItem. |
| SecurityAssessmentPublishDates |
The SecurityAssessmentPublishDates. |
| SecurityAssessmentStatus |
The result of the assessment. |
| SecurityAssessmentStatusResult |
The SecurityAssessmentStatusResult. |
| SecurityAutomationAction |
Provides a compatibility shim for the SecurityAutomationAction class. |
| SecurityAutomationActionEventHub |
The target Event Hub to which event data will be exported. To learn more about Microsoft Defender for Cloud continuous export capabilities, visit https://aka.ms/ASCExportLearnMore. |
| SecurityAutomationActionLogicApp |
The logic app action that should be triggered. To learn more about Microsoft Defender for Cloud's Workflow Automation capabilities, visit https://aka.ms/ASCWorkflowAutomationLearnMore. |
| SecurityAutomationActionWorkspace |
The Log Analytics Workspace to which event data will be exported. Security alerts data will reside in the 'SecurityAlert' table and the assessments data will reside in the 'SecurityRecommendation' table (under the 'Security'/'SecurityCenterFree' solutions). Note that in order to view the data in the workspace, the Security Center Log Analytics free/standard solution needs to be enabled on that workspace. To learn more about Microsoft Defender for Cloud continuous export capabilities, visit https://aka.ms/ASCExportLearnMore. |
| SecurityAutomationPatch |
The update model of security automation resource. |
| SecurityAutomationRuleSet |
A rule set which evaluates all its rules upon an event interception. Only when all the included rules in the rule set will be evaluated as 'true', will the event trigger the defined actions. |
| SecurityAutomationScope |
A single automation scope. |
| SecurityAutomationSource |
The source event types which evaluate the security automation set of rules. For example - security alerts and security assessments. To learn more about the supported security events data models schemas - please visit https://aka.ms/ASCAutomationSchemas. |
| SecurityAutomationTriggeringRule |
A rule which is evaluated upon event interception. The rule is configured by comparing a specific value from the event model to an expected value. This comparison is done by using one of the supported operators set. |
| SecurityAutomationValidationStatus |
The security automation model state property bag. |
| SecurityCenterAllowedConnection |
Provides a compatibility shim for the SecurityCenterAllowedConnection class. |
| SecurityCenterCloudOffering |
Base model for cloud offering configurations. |
| SecurityCenterOperationResult |
Long run operation status of governance rule over a given scope. |
| SecurityCenterOperationStatus |
A status describing the success/failure of the enablement/disablement operation. |
| SecurityCenterPatchTags |
A list of key value pairs that describe the resource. |
| SecurityCenterPrivateLinkServiceConnectionState |
A collection of information about the state of the connection between service consumer and provider. |
| SecurityCenterResourceDetails |
Details of the resource that was assessed. |
| SecurityCenterTagsResourceInfo |
Resource details that include resource tags. |
| SecurityCloudResourceDetails |
The resource details of the health report. |
| SecurityConnectorAuthentication |
The environment authentication details Please note this is the abstract base class. The derived classes available for instantiation are: AccessTokenAuthentication. |
| SecurityConnectorEnvironment |
Provides a compatibility shim for the SecurityConnectorEnvironment class. |
| SecurityConnectorEnvironmentDetails |
The environment details of the resource. |
| SecurityConnectorExtension |
A plan's extension properties. |
| SecurityConnectorIdentity |
Identity for the resource. |
| SecurityContactPropertiesNotificationsByRole |
Defines whether to send email notifications from Microsoft Defender for Cloud to persons with specific RBAC roles on the subscription. |
| SecurityCve |
CVE details. |
| SecurityCvss |
CVSS details. |
| SecurityHealthIssue |
The issue that caused the resource to by unhealthy. |
| SecurityInformationTypeInfo |
The information type. |
| SecuritySolution |
Provides a compatibility shim for the SecuritySolution class. |
| SecuritySolutionsReferenceInfo |
The SecuritySolutionsReferenceInfo. |
| SecuritySolutionsReferenceInfoList |
The SecuritySolutionsReferenceInfoList. |
| SecuritySolutionsReferenceInfoProperties |
The SecuritySolutionsReferenceInfoProperties. |
| SecuritySubAssessmentAdditionalInfo |
Additional information for a security sub-assessment. |
| SecurityTaskProperties |
Provides a compatibility shim for the SecurityTaskProperties class. |
| SecurityTopologyResource |
Provides a compatibility shim for the SecurityTopologyResource class. |
| SensitiveDataDiscoveryProperties |
Properties of Sensitive Data Discovery. |
| SensitivityLabel |
The sensitivity label. |
| SensitivitySettingCreateOrUpdateContent |
Request to update data sensitivity settings for sensitive data discovery. |
| SensitivitySettingsListResult |
A list with a single sensitivity settings resource. |
| SensitivitySettingsMipInformation |
Microsoft information protection built-in and custom information types, labels, and integration status. |
| SensitivitySettingsProperties |
The sensitivity settings properties. |
| ServerVulnerabilityAssessmentsList |
List of server vulnerability assessments. |
| ServerVulnerabilityProperties |
Provides a compatibility shim for the ServerVulnerabilityProperties class. |
| SqlServerVulnerabilityProperties |
Provides a compatibility shim for the SqlServerVulnerabilityProperties class. |
| SqlVulnerabilityAssessmentBaseline |
Provides a compatibility shim for the SqlVulnerabilityAssessmentBaseline class. |
| SqlVulnerabilityAssessmentRemediation |
Remediation details. |
| SqlVulnerabilityAssessmentScanOperationResult |
Represents the result of a SQL Vulnerability Assessment scan operation, wrapped in the ARM resource envelope. |
| SqlVulnerabilityAssessmentScanOperationResultProperties |
Represents the properties of a SQL Vulnerability Assessment scan operation result. |
| SqlVulnerabilityAssessmentScanProperties |
Provides a compatibility shim for the SqlVulnerabilityAssessmentScanProperties class. |
| SqlVulnerabilityAssessmentScanResultProperties |
A vulnerability assessment scan result properties for a single rule. |
| SqlVulnerabilityAssessmentSettingsProperties |
SQL Vulnerability Assessment settings properties. |
| StandardAssignmentAttestationInfo |
Additional data about assignment that has Attest effect. |
| StandardAssignmentExemptionInfo |
Additional data about assignment that has Exempt effect. |
| StandardAssignmentMetadata |
The standard assignment metadata. |
| StandardComponentProperties |
Describes properties of an component as related to the standard. |
| StandardMetadata |
The standard metadata. |
| SubAssessmentStatus |
Status of the sub-assessment. |
| SuppressionAlertsScopeElement |
A more specific scope used to identify the alerts to suppress. |
| TargetBranchConfiguration |
Repository branch configuration for PR Annotations. |
| ThresholdCustomAlertRule |
A custom alert rule that checks if a value (depends on the custom alert type) is within the given range. |
| TimeWindowCustomAlertRule |
A custom alert rule that checks if the number of activities (depends on the custom alert type) in a time window is within the given range. |
| TopologySingleResource |
The TopologySingleResource. |
| TopologySingleResourceChild |
The TopologySingleResourceChild. |
| TopologySingleResourceParent |
The TopologySingleResourceParent. |
| TwinUpdatesNotInAllowedRange |
Number of twin updates is not in allowed range. |
| UnauthorizedOperationsNotInAllowedRange |
Number of unauthorized operations is not in allowed range. |
| UserDefinedResourcesProperties |
Properties of the IoT Security solution's user defined resources. |
| VendorReference |
Vendor reference. |
| VmScannersAws |
A VM scanning configuration for a security offering of a Aws environment. |
| VmScannersBase |
A VM scanning configuration for a security offering of a given environment. |
| VmScannersBaseConfiguration |
Configuration for VM scanning. |
| VmScannersGcp |
A VM scanning configuration for a security offering of a GCP environment. |
| VulnerabilityAssessmentRule |
vulnerability assessment rule metadata details. |
| VulnerabilityAssessmentRuleQueryCheck |
The rule query details. |
Structs
| Name | Description |
|---|---|
| AadConnectivityStateType |
The connectivity state of the external AAD solution. |
| ActionableRemediationState |
ActionableRemediation Setting. None - the setting was never set. Enabled - ActionableRemediation is enabled. Disabled - ActionableRemediation is disabled. |
| AdditionalWorkspaceDataType |
Data types sent to workspace. |
| AdditionalWorkspaceType |
Workspace type. |
| AgentlessEnablement |
Agentless Enablement states. |
| AnnotateDefaultBranchState |
Configuration of PR Annotations on default branch. Enabled - PR Annotations are enabled on the resource's default branch. Disabled - PR Annotations are disabled on the resource's default branch. |
| ApplicationSourceResourceType |
The application source, what it affects, e.g. Assessments. |
| AutoDiscovery |
AutoDiscovery states. |
| AutomationTriggeringRuleOperator |
A valid comparer operator to use. A case-insensitive comparison will be applied for String PropertyType. |
| AutomationTriggeringRulePropertyType |
The data type of the compared operands (string, integer, floating point number or a boolean [true/false]]. |
| AutoProvisionState |
Describes what kind of security agent provisioning action to take. |
| AvailableSubPlanType |
The available sub plans. |
| BlobScanResultsConfig |
Optional. Write scan result on BlobIndexTags by default. |
| CustomRecommendationSecurityIssue |
The severity to relate to the assessments generated by this Recommendation. |
| CustomRecommendationSeverity |
The severity to relate to the assessments generated by this Recommendation. |
| DefenderForServersScanningMode |
The scanning mode for the VM scan. |
| DevOpsProvisioningState |
The provisioning state of the resource. Pending - Provisioning pending. Failed - Provisioning failed. Succeeded - Successful provisioning. Canceled - Provisioning canceled. PendingDeletion - Deletion pending. DeletionSuccess - Deletion successful. DeletionFailure - Deletion failure. |
| ExternalSecuritySolutionKind |
The kind of the external solution. |
| GovernanceRuleOwnerSourceType |
The owner type for the governance rule owner source. |
| GovernanceRuleSourceResourceType |
The governance rule source, what the rule affects, e.g. Assessments. |
| GovernanceRuleType |
The rule type of the governance rule, defines the source of the rule e.g. Integrated. |
| ImplementationEffort |
The implementation effort required to remediate this assessment. |
| InformationProtectionPolicyName | |
| InheritFromParentState |
Update Settings. Enabled - Resource should inherit configurations from parent. Disabled - Resource should not inherit configurations from parent. |
| IotSecurityInventoryKind |
Types for inventory kind. |
| IotSecurityInventoryListKind |
Types for inventory list. |
| IotSecurityRecommendationType |
The type of IoT Security recommendation. |
| IotSecuritySolutionDataSource | |
| IotSecuritySolutionExportOption | |
| JitNetworkAccessPortProtocol | |
| JitNetworkAccessPortStatus |
The status of the port. |
| JitNetworkAccessPortStatusReason |
A description of why the |
| KillChainIntent |
The kill chain related intent behind the alert. For list of supported values, and explanations of Azure Security Center's supported kill chain intents. |
| MalwareScanningAutomatedResponseType |
Optional. Specifies the automated response action to take when malware is detected. |
| MinimalRiskLevel |
Defines the minimal attack path risk level which will be sent as email notifications. |
| MipIntegrationStatus |
Microsoft information protection integration status. |
| OnboardingState |
Details about resource onboarding status across all connectors. OnboardedByOtherConnector - this resource has already been onboarded to another connector. This is only applicable to top-level resources. Onboarded - this resource has already been onboarded by the specified connector. NotOnboarded - this resource has not been onboarded to any connector. NotApplicable - the onboarding state is not applicable to the current endpoint. |
| RecommendationConfigStatus |
Recommendation status. When the recommendation status is disabled recommendations are not generated. |
| RecommendationSupportedClouds |
The cloud that the recommendation is supported on. |
| RegulatoryComplianceState |
State of regulatory compliance. |
| ReportedSeverity |
Assessed alert severity. |
| RiskLevel |
The risk level. |
| RuleCategory |
Rule categories. Code - code scanning results. Artifact scanning results. Dependencies scanning results. IaC results. Secrets scanning results. Container scanning results. |
| RuleSeverity |
The rule severity. |
| SecurityAlertMinimalSeverity |
Defines the minimal alert severity which will be sent as email notifications. |
| SecurityAlertNotificationByRoleState |
Aggregative state based on the standard's supported controls states. |
| SecurityAlertReceivingRole |
A possible role to configure sending security notification alerts to. |
| SecurityAlertSeverity |
The risk level of the threat that was detected. Learn more: https://docs.microsoft.com/en-us/azure/security-center/security-center-alerts-overview#how-are-alerts-classified. |
| SecurityAlertSimulatorBundleType |
Alert Simulator supported bundles. |
| SecurityAlertStatus |
The life cycle status of the alert. |
| SecurityAssessmentODataExpand | |
| SecurityAssessmentResourceCategory |
The categories of resource that is at risk when the assessment is unhealthy. |
| SecurityAssessmentResourceStatus |
The status of the resource regarding a single assessment. |
| SecurityAssessmentSeverity |
The severity level of the assessment. |
| SecurityAssessmentStatusCode |
Programmatic code for the status of the assessment. |
| SecurityAssessmentTactic |
Tactic of the assessment. |
| SecurityAssessmentTechnique |
Techniques of the assessment. |
| SecurityAssessmentType |
BuiltIn if the assessment based on built-in Azure Policy definition, Custom if the assessment based on custom Azure Policy definition. |
| SecurityAssessmentUserImpact |
The user impact of the assessment. |
| SecurityCenterCloudName |
The multi cloud resource's cloud name. |
| SecurityCenterConnectionType | |
| SecurityCenterEffect |
Expected effect of this assignment (Audit/Exempt/Attest). |
| SecurityCenterExtensionIsEnabled |
Indicates whether the extension is enabled. |
| SecurityCenterHealthStatus |
The status of the health report. |
| SecurityCenterKind |
The kind of alert simulation. |
| SecurityCenterOperationResultStatus |
The status of the long run operation result of governance rule. |
| SecurityCenterPricingInheritance |
"inherited" = "True" indicates that the current scope inherits its pricing configuration from its parent. The ID of the parent scope that provides the inherited configuration is displayed in the "inheritedFrom" field. On the other hand, "inherited" = "False" indicates that the current scope has its own pricing configuration explicitly set, and does not inherit from its parent. This field is read only and available only for resource-level pricing. |
| SecurityCenterPricingTier |
Indicates whether the Defender plan is enabled on the selected scope. Microsoft Defender for Cloud is provided in two pricing tiers: free and standard. The standard tier offers advanced security capabilities, while the free tier offers basic security features. |
| SecurityCenterPrivateEndpointConnectionProvisioningState |
The current provisioning state. |
| SecurityCenterPrivateEndpointServiceConnectionStatus |
The private endpoint connection status. |
| SecurityCenterProvisioningState |
The current provisioning state of the resource. Indicates the status of the last operation performed on the resource. |
| SecurityCenterPublicNetworkAccess |
This determines if traffic is allowed over public network. By default it is disabled. |
| SecurityCenterResourcesCoverageStatus |
This field is available for subscription-level only, and reflects the coverage status of the resources under the subscription. Please note: The "pricingTier" field reflects the plan status of the subscription. However, since the plan status can also be defined at the resource level, there might be misalignment between the subscription's plan status and the resource status. This field helps indicate the coverage status of the resources. |
| SecurityCenterResourceSource |
The platform where the assessed resource resides. |
| SecurityContactName | |
| SecurityControlType |
The type of security control (for example, BuiltIn). |
| SecurityEventSource |
A valid event source type. |
| SecurityExemptionCategory |
Exemption category of this assignment. |
| SecurityFamily |
Provides a compatibility shim for the SecurityFamily structure. |
| SecurityPolicyEnforce |
If set to "False", it allows the descendants of this scope to override the pricing configuration set on this scope (allows setting inherited="False"). If set to "True", it prevents overrides and forces this pricing configuration on all the descendants of this scope. This field is only available for subscription-level pricing. |
| SecurityScoreODataExpand | |
| SecuritySolutionStatus |
Status of the IoT Security solution. |
| SecurityStandardType |
Standard type (Custom or Default or Compliance only currently). |
| SecurityThreat |
Threats impact of the assessment. |
| SecurityValueType |
The value type of the items in the list. |
| ServerVulnerabilityAssessmentPropertiesProvisioningState |
The provisioningState of the vulnerability assessment capability on the VM. |
| ServerVulnerabilityAssessmentsAzureSettingSelectedProvider |
The selected vulnerability assessments provider on Azure servers in the defined scope. |
| ServerVulnerabilityAssessmentsSettingKindName | |
| SettingKind |
the kind of the settings string. |
| SettingName | |
| SqlVulnerabilityAssessmentScanOperationStatus |
The scan operation status. |
| SqlVulnerabilityAssessmentScanResultRuleStatus |
The rule result status. |
| SqlVulnerabilityAssessmentScanState |
The scan status. |
| SqlVulnerabilityAssessmentScanTriggerType |
The scan trigger type. |
| SqlVulnerabilityAssessmentState |
Represents the state of a SQL Vulnerability Assessment. |
| StandardAssignmentAttestationComplianceState |
Attest category of this assignment. |
| StandardSupportedCloud |
The cloud that the standard is supported on. |
| SubAssessmentStatusCode |
Programmatic code for the status of the assessment. |
| TaskUpdateActionType | |
| UnmaskedIPLoggingStatus |
Unmasked IP address logging status. |
| VulnerabilityAssessmentAutoProvisioningType |
The Vulnerability Assessment solution to be provisioned. Can be either 'TVM' or 'Qualys'. |
| VulnerabilityAssessmentRuleType |
The rule type. |
Enums
| Name | Description |
|---|---|
| SecurityAlertsSuppressionRuleState |
Possible states of the rule. |
| SecurityConnectorIdentityType | |
| SensitivityLabelRank |
The rank of the sensitivity label. |
| StandardSupportedClouds |
The cloud that the standard is supported on. |