tiIndicator: submitTiIndicators

Artigo
08/14/2024

Namespace: microsoft.graph

Importante

As APIs na versão /beta no Microsoft Graph estão sujeitas a alterações. Não há suporte para o uso dessas APIs em aplicativos de produção. Para determinar se uma API está disponível na v1.0, use o seletor Versão.

Carregue vários indicadores de informações sobre ameaças (TI) num pedido em vez de vários pedidos.

Esta API está disponível nas seguintes implementações de cloud nacionais.

Serviço global	US Government L4	US Government L5 (DOD)	China operada pela 21Vianet
✅	❌	❌	❌

Permissões

Escolha a permissão ou permissões marcadas como menos privilegiadas para esta API. Utilize uma permissão ou permissões com privilégios mais elevados apenas se a sua aplicação o exigir. Para obter detalhes sobre as permissões delegadas e de aplicação, veja Tipos de permissão. Para saber mais sobre estas permissões, veja a referência de permissões.

Tipo de permissão	Permissões com menos privilégios	Permissões com privilégios superiores
Delegado (conta corporativa ou de estudante)	ThreatIndicators.ReadWrite.OwnedBy	Indisponível.
Delegado (conta pessoal da Microsoft)	Sem suporte.	Sem suporte.
Application	ThreatIndicators.ReadWrite.OwnedBy	Indisponível.

Solicitação HTTP

POST /security/tiIndicators/submitTiIndicators

Cabeçalhos de solicitação

Nome	Descrição
Autorização	{token} de portador. Obrigatório. Saiba mais sobre autenticação e autorização.

Corpo da solicitação

Forneça um objeto JSON com os seguintes parâmetros no corpo da solicitação.

Parâmetro	Tipo	Descrição
valor	coleção tiIndicator	Coleção JSON de tiIndicators a criar.

Para cada tiIndicator, forneça uma representação JSON de um objeto tiIndicator que contenha, pelo menos, um e-mail, ficheiro ou rede observável e os seguintes campos necessários: action, description, expirationDateTime, targetProduct, threatType, . tlpLevel

Resposta

Se for bem-sucedido, este método devolve um 200 OK código de resposta e uma coleção de objetos tiIndicator no corpo da resposta. Se existir um erro, este método devolve um 206 Partial Content código de resposta. Veja Erros para obter mais informações.

Exemplos

O exemplo a seguir mostra como chamar essa API.

Solicitação

O exemplo a seguir mostra uma solicitação.

POST https://graph.microsoft.com/beta/security/tiIndicators/submitTiIndicators
Content-Type: application/json

{
  "value": [
    {
      "activityGroupNames": [],
      "confidence": 0,
      "description": "This is a canary indicator for demo purpose. Take no action on any observables set in this indicator.",
      "expirationDateTime": "2019-03-01T21:44:03.1668987+00:00",
      "externalId": "Test--8586509942423126760MS164-0",
      "fileHashType": "sha256",
      "fileHashValue": "b555c45c5b1b01304217e72118d6ca1b14b7013644a078273cea27bbdc1cf9d6",
      "killChain": [],
      "malwareFamilyNames": [],
      "severity": 0,
      "tags": [],
      "targetProduct": "Azure Sentinel",
      "threatType": "WatchList",
      "tlpLevel": "green",
    },
    {
      "activityGroupNames": [],
      "confidence": 0,
      "description": "This is a canary indicator for demo purpose. Take no action on any observables set in this indicator.",
      "expirationDateTime": "2019-03-01T21:44:03.1748779+00:00",
      "externalId": "Test--8586509942423126760MS164-1",
      "fileHashType": "sha256",
      "fileHashValue": "1796b433950990b28d6a22456c9d2b58ced1bdfcdf5f16f7e39d6b9bdca4213b",
      "killChain": [],
      "malwareFamilyNames": [],
      "severity": 0,
      "tags": [],
      "targetProduct": "Azure Sentinel",
      "threatType": "WatchList",
      "tlpLevel": "green",
    }
  ]
}


// Code snippets are only available for the latest version. Current version is 5.x

// Dependencies
using Microsoft.Graph.Beta.Security.TiIndicators.SubmitTiIndicators;
using Microsoft.Graph.Beta.Models;

var requestBody = new SubmitTiIndicatorsPostRequestBody
{
	Value = new List<TiIndicator>
	{
		new TiIndicator
		{
			ActivityGroupNames = new List<string>
			{
			},
			Confidence = 0,
			Description = "This is a canary indicator for demo purpose. Take no action on any observables set in this indicator.",
			ExpirationDateTime = DateTimeOffset.Parse("2019-03-01T21:44:03.1668987+00:00"),
			ExternalId = "Test--8586509942423126760MS164-0",
			FileHashType = FileHashType.Sha256,
			FileHashValue = "b555c45c5b1b01304217e72118d6ca1b14b7013644a078273cea27bbdc1cf9d6",
			KillChain = new List<string>
			{
			},
			MalwareFamilyNames = new List<string>
			{
			},
			Severity = 0,
			Tags = new List<string>
			{
			},
			TargetProduct = "Azure Sentinel",
			ThreatType = "WatchList",
			TlpLevel = TlpLevel.Green,
		},
		new TiIndicator
		{
			ActivityGroupNames = new List<string>
			{
			},
			Confidence = 0,
			Description = "This is a canary indicator for demo purpose. Take no action on any observables set in this indicator.",
			ExpirationDateTime = DateTimeOffset.Parse("2019-03-01T21:44:03.1748779+00:00"),
			ExternalId = "Test--8586509942423126760MS164-1",
			FileHashType = FileHashType.Sha256,
			FileHashValue = "1796b433950990b28d6a22456c9d2b58ced1bdfcdf5f16f7e39d6b9bdca4213b",
			KillChain = new List<string>
			{
			},
			MalwareFamilyNames = new List<string>
			{
			},
			Severity = 0,
			Tags = new List<string>
			{
			},
			TargetProduct = "Azure Sentinel",
			ThreatType = "WatchList",
			TlpLevel = TlpLevel.Green,
		},
	},
};

// To initialize your graphClient, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=csharp
var result = await graphClient.Security.TiIndicators.SubmitTiIndicators.PostAsSubmitTiIndicatorsPostResponseAsync(requestBody);

Importante

Os SDKs do Microsoft Graph usam a versão v1.0 da API por padrão e não oferecem suporte a todos os tipos, propriedades e APIs disponíveis na versão beta. Para obter detalhes sobre como acessar a API beta com o SDK, consulte Usar os SDKs do Microsoft Graph com a API beta.

Para obter detalhes sobre como adicionar o SDK ao seu projeto e criar uma instância authProvider, consulte a documentação do SDK.



mgc-beta security ti-indicators submit-ti-indicators post --body '{\
  "value": [\
    {\
      "activityGroupNames": [],\
      "confidence": 0,\
      "description": "This is a canary indicator for demo purpose. Take no action on any observables set in this indicator.",\
      "expirationDateTime": "2019-03-01T21:44:03.1668987+00:00",\
      "externalId": "Test--8586509942423126760MS164-0",\
      "fileHashType": "sha256",\
      "fileHashValue": "b555c45c5b1b01304217e72118d6ca1b14b7013644a078273cea27bbdc1cf9d6",\
      "killChain": [],\
      "malwareFamilyNames": [],\
      "severity": 0,\
      "tags": [],\
      "targetProduct": "Azure Sentinel",\
      "threatType": "WatchList",\
      "tlpLevel": "green",\
    },\
    {\
      "activityGroupNames": [],\
      "confidence": 0,\
      "description": "This is a canary indicator for demo purpose. Take no action on any observables set in this indicator.",\
      "expirationDateTime": "2019-03-01T21:44:03.1748779+00:00",\
      "externalId": "Test--8586509942423126760MS164-1",\
      "fileHashType": "sha256",\
      "fileHashValue": "1796b433950990b28d6a22456c9d2b58ced1bdfcdf5f16f7e39d6b9bdca4213b",\
      "killChain": [],\
      "malwareFamilyNames": [],\
      "severity": 0,\
      "tags": [],\
      "targetProduct": "Azure Sentinel",\
      "threatType": "WatchList",\
      "tlpLevel": "green",\
    }\
  ]\
}\
'

Importante

Para obter detalhes sobre como adicionar o SDK ao seu projeto e criar uma instância authProvider, consulte a documentação do SDK.



// Code snippets are only available for the latest major version. Current major version is $v0.*

// Dependencies
import (
	  "context"
	  msgraphsdk "github.com/microsoftgraph/msgraph-beta-sdk-go"
	  graphsecurity "github.com/microsoftgraph/msgraph-beta-sdk-go/security"
	  graphmodels "github.com/microsoftgraph/msgraph-beta-sdk-go/models"
	  //other-imports
)

requestBody := graphsecurity.NewSubmitTiIndicatorsPostRequestBody()


tiIndicator := graphmodels.NewTiIndicator()
activityGroupNames := []string {

}
tiIndicator.SetActivityGroupNames(activityGroupNames)
confidence := int32(0)
tiIndicator.SetConfidence(&confidence) 
description := "This is a canary indicator for demo purpose. Take no action on any observables set in this indicator."
tiIndicator.SetDescription(&description) 
expirationDateTime , err := time.Parse(time.RFC3339, "2019-03-01T21:44:03.1668987+00:00")
tiIndicator.SetExpirationDateTime(&expirationDateTime) 
externalId := "Test--8586509942423126760MS164-0"
tiIndicator.SetExternalId(&externalId) 
fileHashType := graphmodels.SHA256_FILEHASHTYPE 
tiIndicator.SetFileHashType(&fileHashType) 
fileHashValue := "b555c45c5b1b01304217e72118d6ca1b14b7013644a078273cea27bbdc1cf9d6"
tiIndicator.SetFileHashValue(&fileHashValue) 
killChain := []string {

}
tiIndicator.SetKillChain(killChain)
malwareFamilyNames := []string {

}
tiIndicator.SetMalwareFamilyNames(malwareFamilyNames)
severity := int32(0)
tiIndicator.SetSeverity(&severity) 
tags := []string {

}
tiIndicator.SetTags(tags)
targetProduct := "Azure Sentinel"
tiIndicator.SetTargetProduct(&targetProduct) 
threatType := "WatchList"
tiIndicator.SetThreatType(&threatType) 
tlpLevel := graphmodels.GREEN_TLPLEVEL 
tiIndicator.SetTlpLevel(&tlpLevel) 
tiIndicator1 := graphmodels.NewTiIndicator()
activityGroupNames := []string {

}
tiIndicator1.SetActivityGroupNames(activityGroupNames)
confidence := int32(0)
tiIndicator1.SetConfidence(&confidence) 
description := "This is a canary indicator for demo purpose. Take no action on any observables set in this indicator."
tiIndicator1.SetDescription(&description) 
expirationDateTime , err := time.Parse(time.RFC3339, "2019-03-01T21:44:03.1748779+00:00")
tiIndicator1.SetExpirationDateTime(&expirationDateTime) 
externalId := "Test--8586509942423126760MS164-1"
tiIndicator1.SetExternalId(&externalId) 
fileHashType := graphmodels.SHA256_FILEHASHTYPE 
tiIndicator1.SetFileHashType(&fileHashType) 
fileHashValue := "1796b433950990b28d6a22456c9d2b58ced1bdfcdf5f16f7e39d6b9bdca4213b"
tiIndicator1.SetFileHashValue(&fileHashValue) 
killChain := []string {

}
tiIndicator1.SetKillChain(killChain)
malwareFamilyNames := []string {

}
tiIndicator1.SetMalwareFamilyNames(malwareFamilyNames)
severity := int32(0)
tiIndicator1.SetSeverity(&severity) 
tags := []string {

}
tiIndicator1.SetTags(tags)
targetProduct := "Azure Sentinel"
tiIndicator1.SetTargetProduct(&targetProduct) 
threatType := "WatchList"
tiIndicator1.SetThreatType(&threatType) 
tlpLevel := graphmodels.GREEN_TLPLEVEL 
tiIndicator1.SetTlpLevel(&tlpLevel) 

value := []graphmodels.TiIndicatorable {
	tiIndicator,
	tiIndicator1,
}
requestBody.SetValue(value)

// To initialize your graphClient, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=go
submitTiIndicators, err := graphClient.Security().TiIndicators().SubmitTiIndicators().PostAsSubmitTiIndicatorsPostResponse(context.Background(), requestBody, nil)

Importante

Para obter detalhes sobre como adicionar o SDK ao seu projeto e criar uma instância authProvider, consulte a documentação do SDK.


// Code snippets are only available for the latest version. Current version is 6.x

GraphServiceClient graphClient = new GraphServiceClient(requestAdapter);

com.microsoft.graph.beta.security.tiindicators.submittiindicators.SubmitTiIndicatorsPostRequestBody submitTiIndicatorsPostRequestBody = new com.microsoft.graph.beta.security.tiindicators.submittiindicators.SubmitTiIndicatorsPostRequestBody();
LinkedList<TiIndicator> value = new LinkedList<TiIndicator>();
TiIndicator tiIndicator = new TiIndicator();
LinkedList<String> activityGroupNames = new LinkedList<String>();
tiIndicator.setActivityGroupNames(activityGroupNames);
tiIndicator.setConfidence(0);
tiIndicator.setDescription("This is a canary indicator for demo purpose. Take no action on any observables set in this indicator.");
OffsetDateTime expirationDateTime = OffsetDateTime.parse("2019-03-01T21:44:03.1668987+00:00");
tiIndicator.setExpirationDateTime(expirationDateTime);
tiIndicator.setExternalId("Test--8586509942423126760MS164-0");
tiIndicator.setFileHashType(FileHashType.Sha256);
tiIndicator.setFileHashValue("b555c45c5b1b01304217e72118d6ca1b14b7013644a078273cea27bbdc1cf9d6");
LinkedList<String> killChain = new LinkedList<String>();
tiIndicator.setKillChain(killChain);
LinkedList<String> malwareFamilyNames = new LinkedList<String>();
tiIndicator.setMalwareFamilyNames(malwareFamilyNames);
tiIndicator.setSeverity(0);
LinkedList<String> tags = new LinkedList<String>();
tiIndicator.setTags(tags);
tiIndicator.setTargetProduct("Azure Sentinel");
tiIndicator.setThreatType("WatchList");
tiIndicator.setTlpLevel(TlpLevel.Green);
value.add(tiIndicator);
TiIndicator tiIndicator1 = new TiIndicator();
LinkedList<String> activityGroupNames1 = new LinkedList<String>();
tiIndicator1.setActivityGroupNames(activityGroupNames1);
tiIndicator1.setConfidence(0);
tiIndicator1.setDescription("This is a canary indicator for demo purpose. Take no action on any observables set in this indicator.");
OffsetDateTime expirationDateTime1 = OffsetDateTime.parse("2019-03-01T21:44:03.1748779+00:00");
tiIndicator1.setExpirationDateTime(expirationDateTime1);
tiIndicator1.setExternalId("Test--8586509942423126760MS164-1");
tiIndicator1.setFileHashType(FileHashType.Sha256);
tiIndicator1.setFileHashValue("1796b433950990b28d6a22456c9d2b58ced1bdfcdf5f16f7e39d6b9bdca4213b");
LinkedList<String> killChain1 = new LinkedList<String>();
tiIndicator1.setKillChain(killChain1);
LinkedList<String> malwareFamilyNames1 = new LinkedList<String>();
tiIndicator1.setMalwareFamilyNames(malwareFamilyNames1);
tiIndicator1.setSeverity(0);
LinkedList<String> tags1 = new LinkedList<String>();
tiIndicator1.setTags(tags1);
tiIndicator1.setTargetProduct("Azure Sentinel");
tiIndicator1.setThreatType("WatchList");
tiIndicator1.setTlpLevel(TlpLevel.Green);
value.add(tiIndicator1);
submitTiIndicatorsPostRequestBody.setValue(value);
var result = graphClient.security().tiIndicators().submitTiIndicators().post(submitTiIndicatorsPostRequestBody);

Importante

Para obter detalhes sobre como adicionar o SDK ao seu projeto e criar uma instância authProvider, consulte a documentação do SDK.


const options = {
	authProvider,
};

const client = Client.init(options);

const tiIndicator = {
  value: [
    {
      activityGroupNames: [],
      confidence: 0,
      description: 'This is a canary indicator for demo purpose. Take no action on any observables set in this indicator.',
      expirationDateTime: '2019-03-01T21:44:03.1668987+00:00',
      externalId: 'Test--8586509942423126760MS164-0',
      fileHashType: 'sha256',
      fileHashValue: 'b555c45c5b1b01304217e72118d6ca1b14b7013644a078273cea27bbdc1cf9d6',
      killChain: [],
      malwareFamilyNames: [],
      severity: 0,
      tags: [],
      targetProduct: 'Azure Sentinel',
      threatType: 'WatchList',
      tlpLevel: 'green',
    },
    {
      activityGroupNames: [],
      confidence: 0,
      description: 'This is a canary indicator for demo purpose. Take no action on any observables set in this indicator.',
      expirationDateTime: '2019-03-01T21:44:03.1748779+00:00',
      externalId: 'Test--8586509942423126760MS164-1',
      fileHashType: 'sha256',
      fileHashValue: '1796b433950990b28d6a22456c9d2b58ced1bdfcdf5f16f7e39d6b9bdca4213b',
      killChain: [],
      malwareFamilyNames: [],
      severity: 0,
      tags: [],
      targetProduct: 'Azure Sentinel',
      threatType: 'WatchList',
      tlpLevel: 'green',
    }
  ]
};

await client.api('/security/tiIndicators/submitTiIndicators')
	.version('beta')
	.post(tiIndicator);

Importante

Para obter detalhes sobre como adicionar o SDK ao seu projeto e criar uma instância authProvider, consulte a documentação do SDK.


<?php
use Microsoft\Graph\Beta\GraphServiceClient;
use Microsoft\Graph\Beta\Generated\Security\TiIndicators\SubmitTiIndicators\SubmitTiIndicatorsPostRequestBody;
use Microsoft\Graph\Beta\Generated\Models\TiIndicator;
use Microsoft\Graph\Beta\Generated\Models\FileHashType;
use Microsoft\Graph\Beta\Generated\Models\TlpLevel;


$graphServiceClient = new GraphServiceClient($tokenRequestContext, $scopes);

$requestBody = new SubmitTiIndicatorsPostRequestBody();
$valueTiIndicator1 = new TiIndicator();
$valueTiIndicator1->setActivityGroupNames([	]);
$valueTiIndicator1->setConfidence(0);
$valueTiIndicator1->setDescription('This is a canary indicator for demo purpose. Take no action on any observables set in this indicator.');
$valueTiIndicator1->setExpirationDateTime(new \DateTime('2019-03-01T21:44:03.1668987+00:00'));
$valueTiIndicator1->setExternalId('Test--8586509942423126760MS164-0');
$valueTiIndicator1->setFileHashType(new FileHashType('sha256'));
$valueTiIndicator1->setFileHashValue('b555c45c5b1b01304217e72118d6ca1b14b7013644a078273cea27bbdc1cf9d6');
$valueTiIndicator1->setKillChain([	]);
$valueTiIndicator1->setMalwareFamilyNames([	]);
$valueTiIndicator1->setSeverity(0);
$valueTiIndicator1->setTags([	]);
$valueTiIndicator1->setTargetProduct('Azure Sentinel');
$valueTiIndicator1->setThreatType('WatchList');
$valueTiIndicator1->setTlpLevel(new TlpLevel('green'));
$valueArray []= $valueTiIndicator1;
$valueTiIndicator2 = new TiIndicator();
$valueTiIndicator2->setActivityGroupNames([	]);
$valueTiIndicator2->setConfidence(0);
$valueTiIndicator2->setDescription('This is a canary indicator for demo purpose. Take no action on any observables set in this indicator.');
$valueTiIndicator2->setExpirationDateTime(new \DateTime('2019-03-01T21:44:03.1748779+00:00'));
$valueTiIndicator2->setExternalId('Test--8586509942423126760MS164-1');
$valueTiIndicator2->setFileHashType(new FileHashType('sha256'));
$valueTiIndicator2->setFileHashValue('1796b433950990b28d6a22456c9d2b58ced1bdfcdf5f16f7e39d6b9bdca4213b');
$valueTiIndicator2->setKillChain([	]);
$valueTiIndicator2->setMalwareFamilyNames([	]);
$valueTiIndicator2->setSeverity(0);
$valueTiIndicator2->setTags([	]);
$valueTiIndicator2->setTargetProduct('Azure Sentinel');
$valueTiIndicator2->setThreatType('WatchList');
$valueTiIndicator2->setTlpLevel(new TlpLevel('green'));
$valueArray []= $valueTiIndicator2;
$requestBody->setValue($valueArray);


$result = $graphServiceClient->security()->tiIndicators()->submitTiIndicators()->post($requestBody)->wait();

Importante

Para obter detalhes sobre como adicionar o SDK ao seu projeto e criar uma instância authProvider, consulte a documentação do SDK.


Import-Module Microsoft.Graph.Beta.Security

$params = @{
	value = @(
		@{
			activityGroupNames = @(
			)
			confidence = 0
			description = "This is a canary indicator for demo purpose. Take no action on any observables set in this indicator."
			expirationDateTime = [System.DateTime]::Parse("2019-03-01T21:44:03.1668987+00:00")
			externalId = "Test--8586509942423126760MS164-0"
			fileHashType = "sha256"
			fileHashValue = "b555c45c5b1b01304217e72118d6ca1b14b7013644a078273cea27bbdc1cf9d6"
			killChain = @(
			)
			malwareFamilyNames = @(
			)
			severity = 0
			tags = @(
			)
			targetProduct = "Azure Sentinel"
			threatType = "WatchList"
			tlpLevel = "green"
		}
		@{
			activityGroupNames = @(
			)
			confidence = 0
			description = "This is a canary indicator for demo purpose. Take no action on any observables set in this indicator."
			expirationDateTime = [System.DateTime]::Parse("2019-03-01T21:44:03.1748779+00:00")
			externalId = "Test--8586509942423126760MS164-1"
			fileHashType = "sha256"
			fileHashValue = "1796b433950990b28d6a22456c9d2b58ced1bdfcdf5f16f7e39d6b9bdca4213b"
			killChain = @(
			)
			malwareFamilyNames = @(
			)
			severity = 0
			tags = @(
			)
			targetProduct = "Azure Sentinel"
			threatType = "WatchList"
			tlpLevel = "green"
		}
	)
}

Submit-MgBetaSecurityTiIndicator -BodyParameter $params

Importante

Para obter detalhes sobre como adicionar o SDK ao seu projeto e criar uma instância authProvider, consulte a documentação do SDK.


# Code snippets are only available for the latest version. Current version is 1.x
from msgraph_beta import GraphServiceClient
from msgraph_beta.generated.security.tiindicators.submit_ti_indicators.submit_ti_indicators_post_request_body import SubmitTiIndicatorsPostRequestBody
from msgraph_beta.generated.models.ti_indicator import TiIndicator
from msgraph_beta.generated.models.file_hash_type import FileHashType
from msgraph_beta.generated.models.tlp_level import TlpLevel
# To initialize your graph_client, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=python
request_body = SubmitTiIndicatorsPostRequestBody(
	value = [
		TiIndicator(
			activity_group_names = [
			],
			confidence = 0,
			description = "This is a canary indicator for demo purpose. Take no action on any observables set in this indicator.",
			expiration_date_time = "2019-03-01T21:44:03.1668987+00:00",
			external_id = "Test--8586509942423126760MS164-0",
			file_hash_type = FileHashType.Sha256,
			file_hash_value = "b555c45c5b1b01304217e72118d6ca1b14b7013644a078273cea27bbdc1cf9d6",
			kill_chain = [
			],
			malware_family_names = [
			],
			severity = 0,
			tags = [
			],
			target_product = "Azure Sentinel",
			threat_type = "WatchList",
			tlp_level = TlpLevel.Green,
		),
		TiIndicator(
			activity_group_names = [
			],
			confidence = 0,
			description = "This is a canary indicator for demo purpose. Take no action on any observables set in this indicator.",
			expiration_date_time = "2019-03-01T21:44:03.1748779+00:00",
			external_id = "Test--8586509942423126760MS164-1",
			file_hash_type = FileHashType.Sha256,
			file_hash_value = "1796b433950990b28d6a22456c9d2b58ced1bdfcdf5f16f7e39d6b9bdca4213b",
			kill_chain = [
			],
			malware_family_names = [
			],
			severity = 0,
			tags = [
			],
			target_product = "Azure Sentinel",
			threat_type = "WatchList",
			tlp_level = TlpLevel.Green,
		),
	],
)

result = await graph_client.security.ti_indicators.submit_ti_indicators.post(request_body)

Importante

Para obter detalhes sobre como adicionar o SDK ao seu projeto e criar uma instância authProvider, consulte a documentação do SDK.

Resposta

O exemplo a seguir mostra a resposta.

Observação

O objeto de resposta mostrado aqui pode ser reduzido para facilitar a leitura.

HTTP/1.1 200 OK
Content-type: application/json

{
  "value": [
    {
      "@odata.type": "#microsoft.graph.tiIndicator",
      "id": "c6fb948b-89c5-3bba-a2cd-a9d9a1e430e4",
      "azureTenantId": "XXXXXXXXXXXXXXXXXXXXX",
      "action": null,
      "additionalInformation": null,
      "activityGroupNames": [],
      "confidence": 0,
      "description": "This is a test indicator for demo purpose. Take no action on any observables set in this indicator.",
    }
  ]
}

Partilhar via

tiIndicator: submitTiIndicators

Permissões

Solicitação HTTP

Cabeçalhos de solicitação

Corpo da solicitação

Resposta

Exemplos

Solicitação

Resposta

Comentários

Recursos adicionais