ThreatIntelligenceAlertRule interface

Represents Threat Intelligence alert rule.

Extends

Properties

alertRuleTemplateName

The Name of the alert rule template used to create this rule.

description

The description of the alert rule. NOTE: This property will not be serialized. It can only be populated by the server.

displayName

The display name for alerts created by this alert rule. NOTE: This property will not be serialized. It can only be populated by the server.

enabled

Determines whether this alert rule is enabled or disabled.

kind

Polymorphic discriminator, which specifies the different types this object can be

lastModifiedUtc

The last time that this alert has been modified. NOTE: This property will not be serialized. It can only be populated by the server.

severity

The severity for alerts created by this alert rule. NOTE: This property will not be serialized. It can only be populated by the server.

tactics

The tactics of the alert rule NOTE: This property will not be serialized. It can only be populated by the server.

techniques

The techniques of the alert rule NOTE: This property will not be serialized. It can only be populated by the server.

Inherited Properties

etag

Etag of the azure resource

id

Fully qualified resource ID for the resource. Ex - /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/{resourceType}/{resourceName} NOTE: This property will not be serialized. It can only be populated by the server.

name

The name of the resource NOTE: This property will not be serialized. It can only be populated by the server.

systemData

Azure Resource Manager metadata containing createdBy and modifiedBy information. NOTE: This property will not be serialized. It can only be populated by the server.

type

The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts" NOTE: This property will not be serialized. It can only be populated by the server.

Property Details

alertRuleTemplateName

The Name of the alert rule template used to create this rule.

alertRuleTemplateName?: string

Property Value

string

description

The description of the alert rule. NOTE: This property will not be serialized. It can only be populated by the server.

description?: string

Property Value

string

displayName

The display name for alerts created by this alert rule. NOTE: This property will not be serialized. It can only be populated by the server.

displayName?: string

Property Value

string

enabled

Determines whether this alert rule is enabled or disabled.

enabled?: boolean

Property Value

boolean

kind

Polymorphic discriminator, which specifies the different types this object can be

kind: "ThreatIntelligence"

Property Value

"ThreatIntelligence"

lastModifiedUtc

The last time that this alert has been modified. NOTE: This property will not be serialized. It can only be populated by the server.

lastModifiedUtc?: Date

Property Value

Date

severity

The severity for alerts created by this alert rule. NOTE: This property will not be serialized. It can only be populated by the server.

severity?: string

Property Value

string

tactics

The tactics of the alert rule NOTE: This property will not be serialized. It can only be populated by the server.

tactics?: string[]

Property Value

string[]

techniques

The techniques of the alert rule NOTE: This property will not be serialized. It can only be populated by the server.

techniques?: string[]

Property Value

string[]

Inherited Property Details

etag

Etag of the azure resource

etag?: string

Property Value

string

Inherited From AlertRule.etag

id

Fully qualified resource ID for the resource. Ex - /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/{resourceType}/{resourceName} NOTE: This property will not be serialized. It can only be populated by the server.

id?: string

Property Value

string

Inherited From AlertRule.id

name

The name of the resource NOTE: This property will not be serialized. It can only be populated by the server.

name?: string

Property Value

string

Inherited From AlertRule.name

systemData

Azure Resource Manager metadata containing createdBy and modifiedBy information. NOTE: This property will not be serialized. It can only be populated by the server.

systemData?: SystemData

Property Value

Inherited From AlertRule.systemData

type

The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts" NOTE: This property will not be serialized. It can only be populated by the server.

type?: string

Property Value

string

Inherited From AlertRule.type