你当前正在访问 Microsoft Azure Global Edition 技术文档网站。 如果需要访问由世纪互联运营的 Microsoft Azure 中国技术文档网站,请访问 https://docs.azure.cn。
New-AzSecurityDefenderForContainersGcpOfferingObject
为 DefenderForContainersGcpOffering 创建内存中对象。
语法
New-AzSecurityDefenderForContainersGcpOfferingObject
[-AuditLogsAutoProvisioningFlag <Boolean>]
[-DataPipelineNativeCloudConnectionServiceAccountEmailAddress <String>]
[-DataPipelineNativeCloudConnectionWorkloadIdentityProviderId <String>]
[-DefenderAgentAutoProvisioningFlag <Boolean>]
[-MdcContainerAgentlessDiscoveryK8SEnabled <Boolean>]
[-MdcContainerAgentlessDiscoveryK8SServiceAccountEmailAddress <String>]
[-MdcContainerAgentlessDiscoveryK8SWorkloadIdentityProviderId <String>]
[-MdcContainerImageAssessmentEnabled <Boolean>]
[-MdcContainerImageAssessmentServiceAccountEmailAddress <String>]
[-MdcContainerImageAssessmentWorkloadIdentityProviderId <String>]
[-NativeCloudConnectionServiceAccountEmailAddress <String>]
[-NativeCloudConnectionWorkloadIdentityProviderId <String>]
[-PolicyAgentAutoProvisioningFlag <Boolean>]
[<CommonParameters>]
说明
为 DefenderForContainersGcpOffering 创建内存中对象。
示例
示例 1:创建新的 DefenderForContainersGcpOffering 对象
$emailSuffix = "myproject.iam.gserviceaccount.com"
New-AzSecurityDefenderForContainersGcpOfferingObject `
-NativeCloudConnectionServiceAccountEmailAddress "microsoft-defender-containers@$emailSuffix" -NativeCloudConnectionWorkloadIdentityProviderId "containers" `
-DataPipelineNativeCloudConnectionServiceAccountEmailAddress "ms-defender-containers-stream@$emailSuffix" -DataPipelineNativeCloudConnectionWorkloadIdentityProviderId "containers-streams" `
-AuditLogsAutoProvisioningFlag $true -DefenderAgentAutoProvisioningFlag $true -PolicyAgentAutoProvisioningFlag $true `
-MdcContainerAgentlessDiscoveryK8SEnabled $true -MdcContainerAgentlessDiscoveryK8SWorkloadIdentityProviderId "containers" -MdcContainerAgentlessDiscoveryK8SServiceAccountEmailAddress "mdc-containers-k8s-operator@$emailSuffix" `
-MdcContainerImageAssessmentEnabled $true -MdcContainerImageAssessmentWorkloadIdentityProviderId "containers" -MdcContainerImageAssessmentServiceAccountEmailAddress "mdc-containers-artifact-assess@$emailSuffix"
AuditLogsAutoProvisioningFlag : True
DataPipelineNativeCloudConnectionServiceAccountEmailAddress : ms-defender-containers-stream@myproject.iam.gserviceaccount.com
DataPipelineNativeCloudConnectionWorkloadIdentityProviderId : containers-streams
DefenderAgentAutoProvisioningFlag : True
Description :
MdcContainerAgentlessDiscoveryK8SEnabled : True
MdcContainerAgentlessDiscoveryK8SServiceAccountEmailAddress : mdc-containers-k8s-operator@myproject.iam.gserviceaccount.com
MdcContainerAgentlessDiscoveryK8SWorkloadIdentityProviderId : containers
MdcContainerImageAssessmentEnabled : True
MdcContainerImageAssessmentServiceAccountEmailAddress : mdc-containers-artifact-assess@myproject.iam.gserviceaccount.com
MdcContainerImageAssessmentWorkloadIdentityProviderId : containers
NativeCloudConnectionServiceAccountEmailAddress : microsoft-defender-containers@myproject.iam.gserviceaccount.com
NativeCloudConnectionWorkloadIdentityProviderId : containers
OfferingType : DefenderForContainersGcp
PolicyAgentAutoProvisioningFlag : True
参数
-AuditLogsAutoProvisioningFlag
是否启用了审核日志数据收集。
Type: | Boolean |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-DataPipelineNativeCloudConnectionServiceAccountEmailAddress
此产品/服务的 GCP 中的数据收集服务帐户电子邮件地址。
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-DataPipelineNativeCloudConnectionWorkloadIdentityProviderId
此产品/服务的数据收集 GCP 工作负荷标识提供者 ID。
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-DefenderAgentAutoProvisioningFlag
已启用 Microsoft Defender for Cloud Kubernetes 代理自动预配。
Type: | Boolean |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-MdcContainerAgentlessDiscoveryK8SEnabled
已启用 Microsoft Defender 容器无代理发现。
Type: | Boolean |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-MdcContainerAgentlessDiscoveryK8SServiceAccountEmailAddress
此功能的 GCP 中的服务帐户电子邮件地址。
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-MdcContainerAgentlessDiscoveryK8SWorkloadIdentityProviderId
此功能的 GCP 中的工作负荷标识提供者 ID。
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-MdcContainerImageAssessmentEnabled
已启用 Microsoft Defender 容器映像评估。
Type: | Boolean |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-MdcContainerImageAssessmentServiceAccountEmailAddress
此功能的 GCP 中的服务帐户电子邮件地址。
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-MdcContainerImageAssessmentWorkloadIdentityProviderId
此功能的 GCP 中的工作负荷标识提供者 ID。
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-NativeCloudConnectionServiceAccountEmailAddress
此产品/服务的 GCP 中的服务帐户电子邮件地址。
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-NativeCloudConnectionWorkloadIdentityProviderId
此产品的 GCP 工作负荷标识提供者 ID。
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-PolicyAgentAutoProvisioningFlag
策略 Kubernetes 代理是否已启用自动预配。
Type: | Boolean |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
输出
反馈
https://aka.ms/ContentUserFeedback。
即将发布:在整个 2024 年,我们将逐步淘汰作为内容反馈机制的“GitHub 问题”,并将其取代为新的反馈系统。 有关详细信息,请参阅:提交和查看相关反馈