FusionAlertRule interface

Package:
@azure/arm-securityinsight

Represents Fusion alert rule.

Extends
AlertRule

Properties

alertRuleTemplateName

The Name of the alert rule template used to create this rule.
description

The description of the alert rule.
displayName

The display name for alerts created by this alert rule.
enabled

Determines whether this alert rule is enabled or disabled.
kind

The kind of the alert rule
lastModifiedUtc

The last time that this alert has been modified.
scenarioExclusionPatterns

Configuration to exclude scenarios in fusion detection.
severity

The severity for alerts created by this alert rule.
sourceSettings

Configuration for all supported source signals in fusion detection.
subTechniques

The sub-techniques of the alert rule
tactics

The tactics of the alert rule
techniques

The techniques of the alert rule

Inherited Properties

etag

Etag of the azure resource
id

Fully qualified resource ID for the resource. Ex - /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/{resourceType}/{resourceName}
name

The name of the resource
systemData

Azure Resource Manager metadata containing createdBy and modifiedBy information.
type

The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"

Property Details

alertRuleTemplateName

The Name of the alert rule template used to create this rule.

alertRuleTemplateName?: string

Property Value

string

description

The description of the alert rule.

description?: string

Property Value

string

displayName

The display name for alerts created by this alert rule.

displayName?: string

Property Value

string

enabled

Determines whether this alert rule is enabled or disabled.

enabled?: boolean

Property Value

boolean

kind

The kind of the alert rule

kind: "Fusion"

Property Value

"Fusion"

lastModifiedUtc

The last time that this alert has been modified.

lastModifiedUtc?: Date

Property Value

Date

scenarioExclusionPatterns

Configuration to exclude scenarios in fusion detection.

scenarioExclusionPatterns?: FusionScenarioExclusionPattern[]

Property Value

FusionScenarioExclusionPattern[]

severity

The severity for alerts created by this alert rule.

severity?: string

Property Value

string

sourceSettings

Configuration for all supported source signals in fusion detection.

sourceSettings?: FusionSourceSettings[]

Property Value

FusionSourceSettings[]

subTechniques

The sub-techniques of the alert rule

subTechniques?: string[]

Property Value

string[]

tactics

The tactics of the alert rule

tactics?: string[]

Property Value

string[]

techniques

The techniques of the alert rule

techniques?: string[]

Property Value

string[]

Inherited Property Details

etag

Etag of the azure resource

etag?: string

Property Value

string

Inherited From AlertRule.etag

id

Fully qualified resource ID for the resource. Ex - /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/{resourceType}/{resourceName}

id?: string

Property Value

string

Inherited From AlertRule.id

name

The name of the resource

name?: string

Property Value

string

Inherited From AlertRule.name

systemData

Azure Resource Manager metadata containing createdBy and modifiedBy information.

systemData?: SystemData

Property Value

SystemData

Inherited From AlertRule.systemData

type

The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"

type?: string

Property Value

string

Inherited From AlertRule.type