Incident interface
Represents an incident in Azure Security Insights.
- Extends
Properties
| additional |
Additional data on the incident NOTE: This property will not be serialized. It can only be populated by the server. |
| classification | The reason the incident was closed |
| classification |
Describes the reason the incident was closed |
| classification |
The classification reason the incident was closed with |
| created |
The time the incident was created NOTE: This property will not be serialized. It can only be populated by the server. |
| description | The description of the incident |
| first |
The time of the first activity in the incident |
| incident |
A sequential number NOTE: This property will not be serialized. It can only be populated by the server. |
| incident |
The deep-link url to the incident in Azure portal NOTE: This property will not be serialized. It can only be populated by the server. |
| labels | List of labels relevant to this incident |
| last |
The time of the last activity in the incident |
| last |
The last time the incident was updated NOTE: This property will not be serialized. It can only be populated by the server. |
| owner | Describes a user that the incident is assigned to |
| provider |
The incident ID assigned by the incident provider |
| provider |
The name of the source provider that generated the incident |
| related |
List of resource ids of Analytic rules related to the incident NOTE: This property will not be serialized. It can only be populated by the server. |
| severity | The severity of the incident |
| status | The status of the incident |
| team |
Describes a team for the incident |
| title | The title of the incident |
Inherited Properties
| etag | Etag of the azure resource |
| id | Fully qualified resource ID for the resource. Ex - /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/{resourceType}/{resourceName} NOTE: This property will not be serialized. It can only be populated by the server. |
| name | The name of the resource NOTE: This property will not be serialized. It can only be populated by the server. |
| system |
Azure Resource Manager metadata containing createdBy and modifiedBy information. NOTE: This property will not be serialized. It can only be populated by the server. |
| type | The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts" NOTE: This property will not be serialized. It can only be populated by the server. |
Property Details
additionalData
Additional data on the incident NOTE: This property will not be serialized. It can only be populated by the server.
additionalData?: IncidentAdditionalDataProperty Value
classification
The reason the incident was closed
classification?: stringProperty Value
string
classificationComment
Describes the reason the incident was closed
classificationComment?: stringProperty Value
string
classificationReason
The classification reason the incident was closed with
classificationReason?: stringProperty Value
string
createdTimeUtc
The time the incident was created NOTE: This property will not be serialized. It can only be populated by the server.
createdTimeUtc?: DateProperty Value
Date
description
The description of the incident
description?: stringProperty Value
string
firstActivityTimeUtc
The time of the first activity in the incident
firstActivityTimeUtc?: DateProperty Value
Date
incidentNumber
A sequential number NOTE: This property will not be serialized. It can only be populated by the server.
incidentNumber?: numberProperty Value
number
incidentUrl
The deep-link url to the incident in Azure portal NOTE: This property will not be serialized. It can only be populated by the server.
incidentUrl?: stringProperty Value
string
labels
lastActivityTimeUtc
The time of the last activity in the incident
lastActivityTimeUtc?: DateProperty Value
Date
lastModifiedTimeUtc
The last time the incident was updated NOTE: This property will not be serialized. It can only be populated by the server.
lastModifiedTimeUtc?: DateProperty Value
Date
owner
Describes a user that the incident is assigned to
owner?: IncidentOwnerInfoProperty Value
providerIncidentId
The incident ID assigned by the incident provider
providerIncidentId?: stringProperty Value
string
providerName
The name of the source provider that generated the incident
providerName?: stringProperty Value
string
relatedAnalyticRuleIds
List of resource ids of Analytic rules related to the incident NOTE: This property will not be serialized. It can only be populated by the server.
relatedAnalyticRuleIds?: string[]Property Value
string[]
severity
The severity of the incident
severity?: stringProperty Value
string
status
The status of the incident
status?: stringProperty Value
string
teamInformation
title
The title of the incident
title?: stringProperty Value
string
Inherited Property Details
etag
id
Fully qualified resource ID for the resource. Ex - /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/{resourceType}/{resourceName} NOTE: This property will not be serialized. It can only be populated by the server.
id?: stringProperty Value
string
Inherited From ResourceWithEtag.id
name
The name of the resource NOTE: This property will not be serialized. It can only be populated by the server.
name?: stringProperty Value
string
Inherited From ResourceWithEtag.name
systemData
Azure Resource Manager metadata containing createdBy and modifiedBy information. NOTE: This property will not be serialized. It can only be populated by the server.
systemData?: SystemDataProperty Value
Inherited From ResourceWithEtag.systemData
type
The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts" NOTE: This property will not be serialized. It can only be populated by the server.
type?: stringProperty Value
string
Inherited From ResourceWithEtag.type
Azure SDK for JavaScript