alertTemplate resource type
Namespace: microsoft.graph.security
Important
APIs under the /beta version in Microsoft Graph are subject to change. Use of these APIs in production applications is not supported. To determine whether an API is available in v1.0, use the Version selector.
Describes the alert that is generated in response to a detection by a custom detection rule.
Properties
| Property | Type | Description |
|---|---|---|
| title | String | Name of the alert triggered by the custom detection rule. |
| description | String | Description of the alert triggered by the custom detection rule. |
| severity | microsoft.graph.alertSeverity | Severity assigned to the alert triggered by the custom detection rule. |
| category | String | Category assigned to the alert triggered by the custom detection rule. |
| mitreTechniques | String collection | MITRE technique assigned to the alert triggered by the custom detection rule. |
| recommendedActions | String | Recommended actions to mitigate the threat related to the alert triggered by the custom detection rule. |
| impactedAssets | microsoft.graph.security.impactedAsset collection | Which asset or assets were impacted based on the alert triggered by the custom detection rule. |
Relationships
None.
JSON representation
The following JSON representation shows the resource type.
{
"@odata.type": "#microsoft.graph.security.alertTemplate",
"title": "String",
"description": "String",
"severity": "String",
"category": "String",
"recommendedActions": "String",
"mitreTechniques": [
"String"
],
"impactedAssets": [
{
"@odata.type": "microsoft.graph.security.impactedUserAsset"
}
]
}