Azure.ResourceManager.SecurityCenter.Models Namespace

Classes

Name Description
AadExternalSecuritySolution

The AadExternalSecuritySolution.

AadSolutionProperties

The external security solution properties for AAD solutions.

AccessTokenAuthentication

The environment authentication details.

ActionableRemediation

Configuration payload for PR Annotations.

ActiveConnectionsNotInAllowedRange

Number of active connections is not in allowed range.

AdditionalWorkspacesProperties

Provides a compatibility shim for the AdditionalWorkspacesProperties class.

AgentlessConfiguration

Details about Agentless configuration.

AlertSyncSettings

Represents an alert sync setting.

AllowlistCustomAlertRule

A custom alert rule that checks if a value (depends on the custom alert type) is allowed.

AmqpC2DMessagesNotInAllowedRange

Number of cloud to device messages (AMQP protocol) is not in allowed range.

AmqpC2DRejectedMessagesNotInAllowedRange

Number of rejected cloud to device messages (AMQP protocol) is not in allowed range.

AmqpD2CMessagesNotInAllowedRange

Number of device to cloud messages (AMQP protocol) is not in allowed range.

ArcAutoProvisioning

The ARC autoprovisioning configuration.

ArcAutoProvisioningAws

The ARC autoprovisioning configuration for an AWS environment.

ArcAutoProvisioningGcp

The ARC autoprovisioning configuration for an GCP environment.

ArmSecurityCenterModelFactory

A factory class for creating instances of the models for mocking.

AtaExternalSecuritySolution

The AtaExternalSecuritySolution.

AtaSolutionProperties

The external security solution properties for ATA solutions.

AttestationEvidence

Describe the properties of a assignment attestation.

AwsEnvironment

The AWS connector environment data.

AwsOrganizationalDataMaster

The AWS organization data for the master account.

AwsOrganizationalDataMember

The AWS organization data for the member account.

AwsOrganizationalInfo

AWS organizational information.

AzureDevOpsOrgListResult

List of RP resources which supports pagination.

AzureDevOpsOrgProperties

Azure DevOps Organization properties.

AzureDevOpsProjectProperties

Azure DevOps Project properties.

AzureDevOpsRepositoryProperties

Azure DevOps Repository properties.

AzureDevOpsScopeEnvironment

The AzureDevOps scope connector's environment data.

AzureResourceDetails

Details of the Azure resource that was assessed.

AzureResourceIdentifier

Azure resource identifier.

AzureServersSetting

A vulnerability assessments setting on Azure servers in the defined scope.

BaselineAdjustedResult

Provides a compatibility shim for the BaselineAdjustedResult class.

BenchmarkReference

Provides a compatibility shim for the BenchmarkReference class.

BlobsScanSummary

A summary of the scan results of the blobs that were scanned.

BuiltInInfoType

Pre-configured sensitive information type.

CategoryConfiguration

Severity level per category configuration for PR Annotations.

CefExternalSecuritySolution

The CefExternalSecuritySolution.

CefSolutionProperties

The external security solution properties for CEF solutions.

ComplianceSegment

A segment of a compliance assessment.

ConnectableResourceInfo

Describes the allowed inbound and outbound traffic of an Azure resource.

ConnectedResourceInfo

Describes properties of a connected resource.

ConnectionFromIPNotAllowed

Inbound connection from an ip that isn't allowed. Allow list consists of ipv4 or ipv6 range in CIDR notation.

ConnectionToIPNotAllowed

Outbound connection to an ip that isn't allowed. Allow list consists of ipv4 or ipv6 range in CIDR notation.

ContainerRegistryVulnerabilityProperties

Provides a compatibility shim for the ContainerRegistryVulnerabilityProperties class.

CspmMonitorAwsOffering

The CSPM monitoring for AWS offering.

CspmMonitorAzureDevOpsOffering

The CSPM monitoring for AzureDevOps offering.

CspmMonitorDockerHubOffering

The CSPM (Cloud security posture management) monitoring for Docker Hub offering.

CspmMonitorGcpOffering

The CSPM monitoring for GCP offering.

CspmMonitorGcpOfferingNativeCloudConnection

The native cloud connection configuration.

CspmMonitorGithubOffering

The CSPM monitoring for github offering.

CspmMonitorGitLabOffering

The CSPM (Cloud security posture management) monitoring for gitlab offering.

CspmMonitorJFrogOffering

The CSPM (Cloud security posture management) monitoring for JFrog Artifactory offering.

CustomAlertRule

A custom alert rule. Please note this is the abstract base class. The derived classes available for instantiation are: ThresholdCustomAlertRule, TimeWindowCustomAlertRule, AllowlistCustomAlertRule, ListCustomAlertRule, DenylistCustomAlertRule, ConnectionToIPNotAllowed, ConnectionFromIPNotAllowed, LocalUserNotAllowed, ProcessNotAllowed, ActiveConnectionsNotInAllowedRange, AmqpC2DMessagesNotInAllowedRange, MqttC2DMessagesNotInAllowedRange, HttpC2DMessagesNotInAllowedRange, AmqpC2DRejectedMessagesNotInAllowedRange, MqttC2DRejectedMessagesNotInAllowedRange, HttpC2DRejectedMessagesNotInAllowedRange, AmqpD2CMessagesNotInAllowedRange, MqttD2CMessagesNotInAllowedRange, HttpD2CMessagesNotInAllowedRange, DirectMethodInvokesNotInAllowedRange, FailedLocalLoginsNotInAllowedRange, FileUploadsNotInAllowedRange, QueuePurgesNotInAllowedRange, TwinUpdatesNotInAllowedRange, and UnauthorizedOperationsNotInAllowedRange.

DataExportSettings

Provides a compatibility shim for the DataExportSettings class.

DefenderCspmAwsOffering

The CSPM P1 for AWS offering.

DefenderCspmAwsOfferingCiem

Defenders CSPM Permissions Management offering configurations.

DefenderCspmAwsOfferingCiemCiemOidc

AWS Defender CSPM Permissions Management OIDC (open id connect) connection configurations.

DefenderCspmAwsOfferingDatabasesDspm

The databases DSPM configuration.

DefenderCspmAwsOfferingDataSensitivityDiscovery

The Microsoft Defender Data Sensitivity discovery configuration.

DefenderCspmAwsOfferingMdcContainersAgentlessDiscoveryK8S

The Microsoft Defender container agentless discovery K8s configuration.

DefenderCspmAwsOfferingMdcContainersImageAssessment

The Microsoft Defender container image assessment configuration.

DefenderCspmAwsOfferingVmScanners

Provides a compatibility shim for the DefenderCspmAwsOfferingVmScanners class.

DefenderCspmDockerHubOffering

The Defender for CSPM Docker Hub offering configurations.

DefenderCspmGcpOffering

The CSPM P1 for GCP offering.

DefenderCspmGcpOfferingCiemDiscovery

GCP Defenders CSPM Permissions Management OIDC (Open ID connect) connection configurations.

DefenderCspmGcpOfferingDataSensitivityDiscovery

The Microsoft Defender Data Sensitivity discovery configuration.

DefenderCspmGcpOfferingMdcContainersAgentlessDiscoveryK8S

The Microsoft Defender Container agentless discovery configuration.

DefenderCspmGcpOfferingMdcContainersImageAssessment

The Microsoft Defender Container image assessment configuration.

DefenderCspmGcpOfferingVmScanners

The Microsoft Defender for CSPM VM scanning configuration.

DefenderCspmJFrogOffering

The CSPM P1 for JFrog Artifactory offering.

DefenderForContainersAwsOffering

Provides a compatibility shim for the DefenderForContainersAwsOffering class.

DefenderForContainersAwsOfferingMdcContainersAgentlessDiscoveryK8S

The Microsoft Defender container agentless discovery K8s configuration.

DefenderForContainersAwsOfferingMdcContainersImageAssessment

The Microsoft Defender container image assessment configuration.

DefenderForContainersAwsOfferingVmScanners

The Microsoft Defender for Container K8s VM host scanning configuration.

DefenderForContainersDockerHubOffering

The Defender for containers Docker Hub offering configurations.

DefenderForContainersGcpOffering

Provides a compatibility shim for the DefenderForContainersGcpOffering class.

DefenderForContainersGcpOfferingDataPipelineNativeCloudConnection

The native cloud connection configuration.

DefenderForContainersGcpOfferingMdcContainersAgentlessDiscoveryK8S

The Microsoft Defender Container agentless discovery configuration.

DefenderForContainersGcpOfferingMdcContainersImageAssessment

The Microsoft Defender Container image assessment configuration.

DefenderForContainersGcpOfferingNativeCloudConnection

The native cloud connection configuration.

DefenderForContainersGcpOfferingVmScanners

The Microsoft Defender for Container K8s VM host scanning configuration.

DefenderForContainersJFrogOffering

The Defender for Containers for JFrog Artifactory offering.

DefenderForDatabasesAwsOffering

The Defender for Databases AWS offering.

DefenderForDatabasesAwsOfferingArcAutoProvisioning

The ARC autoprovisioning configuration.

DefenderForDatabasesAwsOfferingArcAutoProvisioningConfiguration

Configuration for servers Arc auto provisioning for a given environment.

DefenderForDatabasesAwsOfferingDatabasesDspm

The databases data security posture management (DSPM) configuration.

DefenderForDatabasesAwsOfferingRds

The RDS configuration.

DefenderForDatabasesGcpOffering

The Defender for Databases GCP offering configurations.

DefenderForDatabasesGcpOfferingArcAutoProvisioning

The ARC autoprovisioning configuration.

DefenderForServersAwsOffering

Provides a compatibility shim for the DefenderForServersAwsOffering class.

DefenderForServersAwsOfferingArcAutoProvisioning

Provides a compatibility shim for the DefenderForServersAwsOfferingArcAutoProvisioning class.

DefenderForServersAwsOfferingMdeAutoProvisioning

Provides a compatibility shim for the DefenderForServersAwsOfferingMdeAutoProvisioning class.

DefenderForServersAwsOfferingVmScanners

Provides a compatibility shim for the DefenderForServersAwsOfferingVmScanners class.

DefenderForServersAwsOfferingVulnerabilityAssessmentAutoProvisioning

Provides a compatibility shim for the DefenderForServersAwsOfferingVulnerabilityAssessmentAutoProvisioning class.

DefenderForServersGcpOffering

Provides a compatibility shim for the DefenderForServersGcpOffering class.

DefenderForServersGcpOfferingArcAutoProvisioning

The ARC autoprovisioning configuration.

DefenderForServersGcpOfferingMdeAutoProvisioning

Provides a compatibility shim for the DefenderForServersGcpOfferingMdeAutoProvisioning class.

DefenderForServersGcpOfferingVaAutoProvisioning

The Vulnerability Assessment autoprovisioning configuration.

DefenderForServersGcpOfferingVmScanners

The Microsoft Defender for Server VM scanning configuration.

DefenderForStorageSettingProperties

Defender for Storage resource properties.

DenylistCustomAlertRule

A custom alert rule that checks if a value (depends on the custom alert type) is denied.

DevOpsCapability

Details about DevOps capability.

DevOpsConfigurationProperties

DevOps Configuration properties.

DirectMethodInvokesNotInAllowedRange

Number of direct method invokes is not in allowed range.

DiscoveredSecuritySolution

Provides a compatibility shim for the DiscoveredSecuritySolution class.

DockerHubEnvironmentInfo

The Docker Hub connector environment data.

ExecuteGovernanceRuleParams

Governance rule execution parameters.

ExternalSecuritySolution

The ExternalSecuritySolution.

ExternalSecuritySolutionProperties

The solution properties (correspond to the solution kind).

FailedLocalLoginsNotInAllowedRange

Number of failed local logins is not in allowed range.

FilesScanSummary

A summary of the scan results of the files that were scanned.

FileUploadsNotInAllowedRange

Number of file uploads is not in allowed range.

GcpDefenderForDatabasesArcAutoProvisioning

The native cloud connection configuration.

GcpDefenderForServersInfo

The Defender for servers connection configuration.

GcpMemberOrganizationalInfo

The gcpOrganization data for the member account.

GcpOrganizationalInfo

The gcpOrganization data Please note this is the abstract base class. The derived classes available for instantiation are: GcpParentOrganizationalInfo and GcpMemberOrganizationalInfo.

GcpParentOrganizationalInfo

The gcpOrganization data for the parent account.

GcpProjectDetails

The details about the project represented by the security connector.

GcpProjectEnvironment

The GCP project connector environment data.

GitHubOwnerListResult

List of RP resources which supports pagination.

GitHubOwnerProperties

GitHub Owner properties.

GitHubRepositoryProperties

GitHub Repository properties.

GithubScopeEnvironment

The github scope connector's environment data.

GitLabGroupListResult

List of RP resources which supports pagination.

GitLabGroupProperties

GitLab Group properties.

GitLabProjectProperties

GitLab Project properties.

GitLabScopeEnvironmentInfo

The GitLab scope connector's environment data.

GovernanceAssignmentAdditionalInfo

Describe the additional data of governance assignment - optional.

GovernanceEmailNotification

Provides a compatibility shim for the GovernanceEmailNotification class.

GovernanceRuleEmailNotification

Provides a compatibility shim for the GovernanceRuleEmailNotification class.

GovernanceRuleMetadata

The governance rule metadata.

GovernanceRuleOwnerSource

Provides a compatibility shim for the GovernanceRuleOwnerSource class.

HealthDataClassification

The classification of the health report.

HealthReportStatus

The status of the health report.

HttpC2DMessagesNotInAllowedRange

Number of cloud to device messages (HTTP protocol) is not in allowed range.

HttpC2DRejectedMessagesNotInAllowedRange

Number of rejected cloud to device messages (HTTP protocol) is not in allowed range.

HttpD2CMessagesNotInAllowedRange

Number of device to cloud messages (HTTP protocol) is not in allowed range.

InformationProtectionKeyword

The information type keyword.

InformationProtectionSensitivityLabel

Microsoft information protection sensitivity label.

InfoType

Custom user-defined information type.

InventoryList

Model for inventory to be included or excluded from Agentless.

IotSecurityAggregatedAlertTopDevice

The IotSecurityAggregatedAlertTopDevice.

IotSecurityAlertedDevice

Statistical information about the number of alerts per device during last set number of days.

IotSecurityDeviceAlert

Statistical information about the number of alerts per alert type during last set number of days.

IotSecurityDeviceRecommendation

Statistical information about the number of recommendations per device, per recommendation type.

IotSecuritySolutionAnalyticsModelDevicesMetrics

The IotSecuritySolutionAnalyticsModelDevicesMetrics.

IoTSecuritySolutionAnalyticsModelList

List of Security analytics of your IoT Security solution.

IotSecuritySolutionPatch

The IotSecuritySolutionPatch.

IotSeverityMetrics

IoT Security solution analytics severity metrics.

IssueCreationContent

The issue creation request model.

JFrogEnvironmentInfo

The JFrog Artifactory connector environment data.

JitNetworkAccessPolicyInitiateContent

The JitNetworkAccessPolicyInitiateContent.

JitNetworkAccessPolicyInitiatePort

Provides a compatibility shim for the JitNetworkAccessPolicyInitiatePort class.

JitNetworkAccessPolicyInitiateVirtualMachine

The JitNetworkAccessPolicyInitiateVirtualMachine.

JitNetworkAccessPolicyVirtualMachine

The JitNetworkAccessPolicyVirtualMachine.

JitNetworkAccessPortRule

The JitNetworkAccessPortRule.

JitNetworkAccessRequestInfo

Provides a compatibility shim for the JitNetworkAccessRequestInfo class.

JitNetworkAccessRequestPort

Provides a compatibility shim for the JitNetworkAccessRequestPort class.

JitNetworkAccessRequestVirtualMachine

The JitNetworkAccessRequestVirtualMachine.

ListCustomAlertRule

A List custom alert rule.

LocalUserNotAllowed

Login by a local user that isn't allowed. Allow list consists of login names to allow.

LogAnalyticsIdentifier

Represents a Log Analytics workspace scope identifier.

MalwareScan

Describes the state of a malware scan operation.

MalwareScanningProperties

Properties of Malware Scanning.

MalwareScanProperties

The MalwareScanProperties.

MdeOnboardingDataList

List of all MDE onboarding data resources.

MqttC2DMessagesNotInAllowedRange

Number of cloud to device messages (MQTT protocol) is not in allowed range.

MqttC2DRejectedMessagesNotInAllowedRange

Number of rejected cloud to device messages (MQTT protocol) is not in allowed range.

MqttD2CMessagesNotInAllowedRange

Number of device to cloud messages (MQTT protocol) is not in allowed range.

NotificationsSource

A valid notification source type Please note this is the abstract base class. The derived classes available for instantiation are: NotificationsSourceAlert and NotificationsSourceAttackPath.

NotificationsSourceAlert

Alert notification source.

NotificationsSourceAttackPath

Attack path notification source.

OnPremiseResourceDetails

Details of the On Premise resource that was assessed.

OnPremiseSqlResourceDetails

Details of the On Premise Sql resource that was assessed.

OnUploadFilters

Optional. Determine which blobs get scanned by On Upload malware scanning. An Or operation is performed between each filter type.

OnUploadProperties

Properties of On Upload malware scanning.

PartialAssessmentProperties

Describes properties of an assessment as related to the standard.

PrivateLinkResourcePatch

Request payload for updating a private link resource. Used in PATCH operations to update specific mutable properties without affecting the entire resource configuration.

ProcessNotAllowed

Execution of a process that isn't allowed. Allow list consists of process names to allow.

QueuePurgesNotInAllowedRange

Number of device queue purges is not in allowed range.

RecommendationConfigurationProperties

The type of IoT Security recommendation.

RemediationEta

The ETA (estimated time of arrival) for remediation.

RuleResultsInput

Rule results input.

RuleResultsProperties

Rule results properties.

RulesResults

A list of rules results.

RulesResultsContent

Rules results input.

ScanSummary

A summary of the scan results.

SecureScoreControlDefinitionItem

Information about the security control.

SecureScoreControlDetails

Provides a compatibility shim for the SecureScoreControlDetails class.

SecurityAlertEntity

Changing set of properties depending on the entity type.

SecurityAlertResourceIdentifier

Resource identifier for a security alert entity.

SecurityAlertSimulatorBundlesRequestProperties

Simulate alerts according to this bundles.

SecurityAlertSimulatorContent

Alert Simulator request body.

SecurityAlertSimulatorRequestProperties

Describes properties of an alert simulation request.

SecurityAlertSupportingEvidence

Changing set of properties depending on the supportingEvidence type.

SecurityAssessmentCreateOrUpdateContent

Provides a compatibility shim for the SecurityAssessmentCreateOrUpdateContent class.

SecurityAssessmentMetadataPartner

Describes the partner that created the assessment.

SecurityAssessmentMetadataProperties

Describes properties of an assessment metadata.

SecurityAssessmentMetadataPropertiesResult

Describes properties of an assessment metadata response.

SecurityAssessmentPartner

Data regarding 3rd party partner integration.

SecurityAssessmentPropertiesBaseRisk

External model of risk result.

SecurityAssessmentPropertiesBaseRiskPathsItem

The SecurityAssessmentPropertiesBaseRiskPathsItem.

SecurityAssessmentPropertiesBaseRiskPathsItemEdgeItem

The SecurityAssessmentPropertiesBaseRiskPathsItemEdgeItem.

SecurityAssessmentPropertiesBaseRiskPathsItemNodesItem

The SecurityAssessmentPropertiesBaseRiskPathsItemNodesItem.

SecurityAssessmentPublishDates

The SecurityAssessmentPublishDates.

SecurityAssessmentStatus

The result of the assessment.

SecurityAssessmentStatusResult

The SecurityAssessmentStatusResult.

SecurityAutomationAction

Provides a compatibility shim for the SecurityAutomationAction class.

SecurityAutomationActionEventHub

The target Event Hub to which event data will be exported. To learn more about Microsoft Defender for Cloud continuous export capabilities, visit https://aka.ms/ASCExportLearnMore.

SecurityAutomationActionLogicApp

The logic app action that should be triggered. To learn more about Microsoft Defender for Cloud's Workflow Automation capabilities, visit https://aka.ms/ASCWorkflowAutomationLearnMore.

SecurityAutomationActionWorkspace

The Log Analytics Workspace to which event data will be exported. Security alerts data will reside in the 'SecurityAlert' table and the assessments data will reside in the 'SecurityRecommendation' table (under the 'Security'/'SecurityCenterFree' solutions). Note that in order to view the data in the workspace, the Security Center Log Analytics free/standard solution needs to be enabled on that workspace. To learn more about Microsoft Defender for Cloud continuous export capabilities, visit https://aka.ms/ASCExportLearnMore.

SecurityAutomationPatch

The update model of security automation resource.

SecurityAutomationRuleSet

A rule set which evaluates all its rules upon an event interception. Only when all the included rules in the rule set will be evaluated as 'true', will the event trigger the defined actions.

SecurityAutomationScope

A single automation scope.

SecurityAutomationSource

The source event types which evaluate the security automation set of rules. For example - security alerts and security assessments. To learn more about the supported security events data models schemas - please visit https://aka.ms/ASCAutomationSchemas.

SecurityAutomationTriggeringRule

A rule which is evaluated upon event interception. The rule is configured by comparing a specific value from the event model to an expected value. This comparison is done by using one of the supported operators set.

SecurityAutomationValidationStatus

The security automation model state property bag.

SecurityCenterAllowedConnection

Provides a compatibility shim for the SecurityCenterAllowedConnection class.

SecurityCenterCloudOffering

Base model for cloud offering configurations.

SecurityCenterOperationResult

Long run operation status of governance rule over a given scope.

SecurityCenterOperationStatus

A status describing the success/failure of the enablement/disablement operation.

SecurityCenterPatchTags

A list of key value pairs that describe the resource.

SecurityCenterPrivateLinkServiceConnectionState

A collection of information about the state of the connection between service consumer and provider.

SecurityCenterResourceDetails

Details of the resource that was assessed.

SecurityCenterTagsResourceInfo

Resource details that include resource tags.

SecurityCloudResourceDetails

The resource details of the health report.

SecurityConnectorAuthentication

The environment authentication details Please note this is the abstract base class. The derived classes available for instantiation are: AccessTokenAuthentication.

SecurityConnectorEnvironment

Provides a compatibility shim for the SecurityConnectorEnvironment class.

SecurityConnectorEnvironmentDetails

The environment details of the resource.

SecurityConnectorExtension

A plan's extension properties.

SecurityConnectorIdentity

Identity for the resource.

SecurityContactPropertiesNotificationsByRole

Defines whether to send email notifications from Microsoft Defender for Cloud to persons with specific RBAC roles on the subscription.

SecurityCve

CVE details.

SecurityCvss

CVSS details.

SecurityHealthIssue

The issue that caused the resource to by unhealthy.

SecurityInformationTypeInfo

The information type.

SecuritySolution

Provides a compatibility shim for the SecuritySolution class.

SecuritySolutionsReferenceInfo

The SecuritySolutionsReferenceInfo.

SecuritySolutionsReferenceInfoList

The SecuritySolutionsReferenceInfoList.

SecuritySolutionsReferenceInfoProperties

The SecuritySolutionsReferenceInfoProperties.

SecuritySubAssessmentAdditionalInfo

Additional information for a security sub-assessment.

SecurityTaskProperties

Provides a compatibility shim for the SecurityTaskProperties class.

SecurityTopologyResource

Provides a compatibility shim for the SecurityTopologyResource class.

SensitiveDataDiscoveryProperties

Properties of Sensitive Data Discovery.

SensitivityLabel

The sensitivity label.

SensitivitySettingCreateOrUpdateContent

Request to update data sensitivity settings for sensitive data discovery.

SensitivitySettingsListResult

A list with a single sensitivity settings resource.

SensitivitySettingsMipInformation

Microsoft information protection built-in and custom information types, labels, and integration status.

SensitivitySettingsProperties

The sensitivity settings properties.

ServerVulnerabilityAssessmentsList

List of server vulnerability assessments.

ServerVulnerabilityProperties

Provides a compatibility shim for the ServerVulnerabilityProperties class.

SqlServerVulnerabilityProperties

Provides a compatibility shim for the SqlServerVulnerabilityProperties class.

SqlVulnerabilityAssessmentBaseline

Provides a compatibility shim for the SqlVulnerabilityAssessmentBaseline class.

SqlVulnerabilityAssessmentRemediation

Remediation details.

SqlVulnerabilityAssessmentScanOperationResult

Represents the result of a SQL Vulnerability Assessment scan operation, wrapped in the ARM resource envelope.

SqlVulnerabilityAssessmentScanOperationResultProperties

Represents the properties of a SQL Vulnerability Assessment scan operation result.

SqlVulnerabilityAssessmentScanProperties

Provides a compatibility shim for the SqlVulnerabilityAssessmentScanProperties class.

SqlVulnerabilityAssessmentScanResultProperties

A vulnerability assessment scan result properties for a single rule.

SqlVulnerabilityAssessmentSettingsProperties

SQL Vulnerability Assessment settings properties.

StandardAssignmentAttestationInfo

Additional data about assignment that has Attest effect.

StandardAssignmentExemptionInfo

Additional data about assignment that has Exempt effect.

StandardAssignmentMetadata

The standard assignment metadata.

StandardComponentProperties

Describes properties of an component as related to the standard.

StandardMetadata

The standard metadata.

SubAssessmentStatus

Status of the sub-assessment.

SuppressionAlertsScopeElement

A more specific scope used to identify the alerts to suppress.

TargetBranchConfiguration

Repository branch configuration for PR Annotations.

ThresholdCustomAlertRule

A custom alert rule that checks if a value (depends on the custom alert type) is within the given range.

TimeWindowCustomAlertRule

A custom alert rule that checks if the number of activities (depends on the custom alert type) in a time window is within the given range.

TopologySingleResource

The TopologySingleResource.

TopologySingleResourceChild

The TopologySingleResourceChild.

TopologySingleResourceParent

The TopologySingleResourceParent.

TwinUpdatesNotInAllowedRange

Number of twin updates is not in allowed range.

UnauthorizedOperationsNotInAllowedRange

Number of unauthorized operations is not in allowed range.

UserDefinedResourcesProperties

Properties of the IoT Security solution's user defined resources.

VendorReference

Vendor reference.

VmScannersAws

A VM scanning configuration for a security offering of a Aws environment.

VmScannersBase

A VM scanning configuration for a security offering of a given environment.

VmScannersBaseConfiguration

Configuration for VM scanning.

VmScannersGcp

A VM scanning configuration for a security offering of a GCP environment.

VulnerabilityAssessmentRule

vulnerability assessment rule metadata details.

VulnerabilityAssessmentRuleQueryCheck

The rule query details.

Structs

Name Description
AadConnectivityStateType

The connectivity state of the external AAD solution.

ActionableRemediationState

ActionableRemediation Setting. None - the setting was never set. Enabled - ActionableRemediation is enabled. Disabled - ActionableRemediation is disabled.

AdditionalWorkspaceDataType

Data types sent to workspace.

AdditionalWorkspaceType

Workspace type.

AgentlessEnablement

Agentless Enablement states.

AnnotateDefaultBranchState

Configuration of PR Annotations on default branch. Enabled - PR Annotations are enabled on the resource's default branch. Disabled - PR Annotations are disabled on the resource's default branch.

ApplicationSourceResourceType

The application source, what it affects, e.g. Assessments.

AutoDiscovery

AutoDiscovery states.

AutomationTriggeringRuleOperator

A valid comparer operator to use. A case-insensitive comparison will be applied for String PropertyType.

AutomationTriggeringRulePropertyType

The data type of the compared operands (string, integer, floating point number or a boolean [true/false]].

AutoProvisionState

Describes what kind of security agent provisioning action to take.

AvailableSubPlanType

The available sub plans.

BlobScanResultsConfig

Optional. Write scan result on BlobIndexTags by default.

CustomRecommendationSecurityIssue

The severity to relate to the assessments generated by this Recommendation.

CustomRecommendationSeverity

The severity to relate to the assessments generated by this Recommendation.

DefenderForServersScanningMode

The scanning mode for the VM scan.

DevOpsProvisioningState

The provisioning state of the resource. Pending - Provisioning pending. Failed - Provisioning failed. Succeeded - Successful provisioning. Canceled - Provisioning canceled. PendingDeletion - Deletion pending. DeletionSuccess - Deletion successful. DeletionFailure - Deletion failure.

ExternalSecuritySolutionKind

The kind of the external solution.

GovernanceRuleOwnerSourceType

The owner type for the governance rule owner source.

GovernanceRuleSourceResourceType

The governance rule source, what the rule affects, e.g. Assessments.

GovernanceRuleType

The rule type of the governance rule, defines the source of the rule e.g. Integrated.

ImplementationEffort

The implementation effort required to remediate this assessment.

InformationProtectionPolicyName
InheritFromParentState

Update Settings. Enabled - Resource should inherit configurations from parent. Disabled - Resource should not inherit configurations from parent.

IotSecurityInventoryKind

Types for inventory kind.

IotSecurityInventoryListKind

Types for inventory list.

IotSecurityRecommendationType

The type of IoT Security recommendation.

IotSecuritySolutionDataSource
IotSecuritySolutionExportOption
JitNetworkAccessPortProtocol
JitNetworkAccessPortStatus

The status of the port.

JitNetworkAccessPortStatusReason

A description of why the status has its value.

KillChainIntent

The kill chain related intent behind the alert. For list of supported values, and explanations of Azure Security Center's supported kill chain intents.

MalwareScanningAutomatedResponseType

Optional. Specifies the automated response action to take when malware is detected.

MinimalRiskLevel

Defines the minimal attack path risk level which will be sent as email notifications.

MipIntegrationStatus

Microsoft information protection integration status.

OnboardingState

Details about resource onboarding status across all connectors. OnboardedByOtherConnector - this resource has already been onboarded to another connector. This is only applicable to top-level resources. Onboarded - this resource has already been onboarded by the specified connector. NotOnboarded - this resource has not been onboarded to any connector. NotApplicable - the onboarding state is not applicable to the current endpoint.

RecommendationConfigStatus

Recommendation status. When the recommendation status is disabled recommendations are not generated.

RecommendationSupportedClouds

The cloud that the recommendation is supported on.

RegulatoryComplianceState

State of regulatory compliance.

ReportedSeverity

Assessed alert severity.

RiskLevel

The risk level.

RuleCategory

Rule categories. Code - code scanning results. Artifact scanning results. Dependencies scanning results. IaC results. Secrets scanning results. Container scanning results.

RuleSeverity

The rule severity.

SecurityAlertMinimalSeverity

Defines the minimal alert severity which will be sent as email notifications.

SecurityAlertNotificationByRoleState

Aggregative state based on the standard's supported controls states.

SecurityAlertReceivingRole

A possible role to configure sending security notification alerts to.

SecurityAlertSeverity

The risk level of the threat that was detected. Learn more: https://docs.microsoft.com/en-us/azure/security-center/security-center-alerts-overview#how-are-alerts-classified.

SecurityAlertSimulatorBundleType

Alert Simulator supported bundles.

SecurityAlertStatus

The life cycle status of the alert.

SecurityAssessmentODataExpand
SecurityAssessmentResourceCategory

The categories of resource that is at risk when the assessment is unhealthy.

SecurityAssessmentResourceStatus

The status of the resource regarding a single assessment.

SecurityAssessmentSeverity

The severity level of the assessment.

SecurityAssessmentStatusCode

Programmatic code for the status of the assessment.

SecurityAssessmentTactic

Tactic of the assessment.

SecurityAssessmentTechnique

Techniques of the assessment.

SecurityAssessmentType

BuiltIn if the assessment based on built-in Azure Policy definition, Custom if the assessment based on custom Azure Policy definition.

SecurityAssessmentUserImpact

The user impact of the assessment.

SecurityCenterCloudName

The multi cloud resource's cloud name.

SecurityCenterConnectionType
SecurityCenterEffect

Expected effect of this assignment (Audit/Exempt/Attest).

SecurityCenterExtensionIsEnabled

Indicates whether the extension is enabled.

SecurityCenterHealthStatus

The status of the health report.

SecurityCenterKind

The kind of alert simulation.

SecurityCenterOperationResultStatus

The status of the long run operation result of governance rule.

SecurityCenterPricingInheritance

"inherited" = "True" indicates that the current scope inherits its pricing configuration from its parent. The ID of the parent scope that provides the inherited configuration is displayed in the "inheritedFrom" field. On the other hand, "inherited" = "False" indicates that the current scope has its own pricing configuration explicitly set, and does not inherit from its parent. This field is read only and available only for resource-level pricing.

SecurityCenterPricingTier

Indicates whether the Defender plan is enabled on the selected scope. Microsoft Defender for Cloud is provided in two pricing tiers: free and standard. The standard tier offers advanced security capabilities, while the free tier offers basic security features.

SecurityCenterPrivateEndpointConnectionProvisioningState

The current provisioning state.

SecurityCenterPrivateEndpointServiceConnectionStatus

The private endpoint connection status.

SecurityCenterProvisioningState

The current provisioning state of the resource. Indicates the status of the last operation performed on the resource.

SecurityCenterPublicNetworkAccess

This determines if traffic is allowed over public network. By default it is disabled.

SecurityCenterResourcesCoverageStatus

This field is available for subscription-level only, and reflects the coverage status of the resources under the subscription. Please note: The "pricingTier" field reflects the plan status of the subscription. However, since the plan status can also be defined at the resource level, there might be misalignment between the subscription's plan status and the resource status. This field helps indicate the coverage status of the resources.

SecurityCenterResourceSource

The platform where the assessed resource resides.

SecurityContactName
SecurityControlType

The type of security control (for example, BuiltIn).

SecurityEventSource

A valid event source type.

SecurityExemptionCategory

Exemption category of this assignment.

SecurityFamily

Provides a compatibility shim for the SecurityFamily structure.

SecurityPolicyEnforce

If set to "False", it allows the descendants of this scope to override the pricing configuration set on this scope (allows setting inherited="False"). If set to "True", it prevents overrides and forces this pricing configuration on all the descendants of this scope. This field is only available for subscription-level pricing.

SecurityScoreODataExpand
SecuritySolutionStatus

Status of the IoT Security solution.

SecurityStandardType

Standard type (Custom or Default or Compliance only currently).

SecurityThreat

Threats impact of the assessment.

SecurityValueType

The value type of the items in the list.

ServerVulnerabilityAssessmentPropertiesProvisioningState

The provisioningState of the vulnerability assessment capability on the VM.

ServerVulnerabilityAssessmentsAzureSettingSelectedProvider

The selected vulnerability assessments provider on Azure servers in the defined scope.

ServerVulnerabilityAssessmentsSettingKindName
SettingKind

the kind of the settings string.

SettingName
SqlVulnerabilityAssessmentScanOperationStatus

The scan operation status.

SqlVulnerabilityAssessmentScanResultRuleStatus

The rule result status.

SqlVulnerabilityAssessmentScanState

The scan status.

SqlVulnerabilityAssessmentScanTriggerType

The scan trigger type.

SqlVulnerabilityAssessmentState

Represents the state of a SQL Vulnerability Assessment.

StandardAssignmentAttestationComplianceState

Attest category of this assignment.

StandardSupportedCloud

The cloud that the standard is supported on.

SubAssessmentStatusCode

Programmatic code for the status of the assessment.

TaskUpdateActionType
UnmaskedIPLoggingStatus

Unmasked IP address logging status.

VulnerabilityAssessmentAutoProvisioningType

The Vulnerability Assessment solution to be provisioned. Can be either 'TVM' or 'Qualys'.

VulnerabilityAssessmentRuleType

The rule type.

Enums

Name Description
SecurityAlertsSuppressionRuleState

Possible states of the rule.

SecurityConnectorIdentityType
SensitivityLabelRank

The rank of the sensitivity label.

StandardSupportedClouds

The cloud that the standard is supported on.