Partager via


Microsoft.Azure.Management.Security.Models Namespace

Classes

AadConnectivityState

Defines values for AadConnectivityState.

AadConnectivityStateAutoGenerated

Describes an Azure resource with kind

AadExternalSecuritySolution

Represents an AAD identity protection solution which sends logs to an OMS workspace.

AadSolutionProperties

The external security solution properties for AAD solutions

ActionType

Defines values for ActionType.

ActiveConnectionsNotInAllowedRange

Number of active connections is not in allowed range.

AdaptiveApplicationControlGroup
AdaptiveApplicationControlGroupData

Represents a machines group and set of rules to be allowed running on a machine

AdaptiveApplicationControlGroups

Represents a list of VM/server groups and set of rules that are Recommended by Microsoft Defender for Cloud to be allowed

AdaptiveApplicationControlIssueSummary

Represents a summary of the alerts of the machine group

AdaptiveNetworkHardening

The resource whose properties describes the Adaptive Network Hardening settings for some Azure resource

AdaptiveNetworkHardeningEnforceRequest
AdaptiveNetworkHardeningProperties

Adaptive Network Hardening resource properties

AdditionalData

Details of the sub-assessment

AdditionalWorkspaceDataType

Defines values for AdditionalWorkspaceDataType.

AdditionalWorkspacesProperties

Properties of the additional workspaces.

AdditionalWorkspaceType

Defines values for AdditionalWorkspaceType.

AdvancedThreatProtectionProperties

The Advanced Threat Protection settings.

AdvancedThreatProtectionSetting

The Advanced Threat Protection resource.

Alert

Security alert

AlertEntity

Changing set of properties depending on the entity type.

AlertProperties

describes security alert properties.

AlertPropertiesSupportingEvidence

Changing set of properties depending on the supportingEvidence type.

AlertSeverity

Defines values for AlertSeverity.

AlertSimulatorBundlesRequestProperties

Simulate alerts according to this bundles.

AlertSimulatorRequestBody

Alert Simulator request body.

AlertSimulatorRequestProperties

Describes properties of an alert simulation request

AlertsSuppressionRule

Describes the suppression rule

AlertsSuppressionRuleProperties

describes AlertsSuppressionRule properties

AlertStatus

Defines values for AlertStatus.

AlertSyncSettingProperties

The alert sync setting properties

AlertSyncSettings

Represents an alert sync setting

AllowedConnectionsResource

The resource whose properties describes the allowed traffic between Azure resources

AllowedConnectionsResourceProperties

Describes the allowed traffic between Azure resources

AllowlistCustomAlertRule

A custom alert rule that checks if a value (depends on the custom alert type) is allowed.

AmqpC2DMessagesNotInAllowedRange

Number of cloud to device messages (AMQP protocol) is not in allowed range.

AmqpC2DRejectedMessagesNotInAllowedRange

Number of rejected cloud to device messages (AMQP protocol) is not in allowed range.

AmqpD2CMessagesNotInAllowedRange

Number of device to cloud messages (AMQP protocol) is not in allowed range.

Application

Security Application over a given scope

ApplicationCondition

Application's condition

ApplicationConditionOperator

Defines values for ApplicationConditionOperator.

ApplicationProperties

Describes properties of an application

ApplicationSourceResourceType

Defines values for ApplicationSourceResourceType.

AscLocation

The ASC location of the subscription is in the "name" field

AssessedResourceType

Defines values for AssessedResourceType.

AssessmentLinks

Links relevant to the assessment

AssessmentStatus

The result of the assessment

AssessmentStatusCode

Defines values for AssessmentStatusCode.

AssessmentStatusResponse

The result of the assessment

AssessmentType

Defines values for AssessmentType.

AtaExternalSecuritySolution

Represents an ATA security solution which sends logs to an OMS workspace

AtaSolutionProperties

The external security solution properties for ATA solutions

AuthenticationDetailsProperties

Settings for cloud authentication management

AuthenticationProvisioningState

Defines values for AuthenticationProvisioningState.

AuthenticationType

Defines values for AuthenticationType.

Automation

The security automation resource.

AutomationAction

The action that should be triggered.

AutomationActionEventHub

The target Event Hub to which event data will be exported. To learn more about Microsoft Defender for Cloud continuous export capabilities, visit https://aka.ms/ASCExportLearnMore

AutomationActionLogicApp

The logic app action that should be triggered. To learn more about Microsoft Defender for Cloud's Workflow Automation capabilities, visit https://aka.ms/ASCWorkflowAutomationLearnMore

AutomationActionWorkspace

The Log Analytics Workspace to which event data will be exported. Security alerts data will reside in the 'SecurityAlert' table and the assessments data will reside in the 'SecurityRecommendation' table (under the 'Security'/'SecurityCenterFree' solutions). Note that in order to view the data in the workspace, the Security Center Log Analytics free/standard solution needs to be enabled on that workspace. To learn more about Microsoft Defender for Cloud continuous export capabilities, visit https://aka.ms/ASCExportLearnMore

AutomationProperties

A set of properties that defines the behavior of the automation configuration. To learn more about the supported security events data models schemas - please visit https://aka.ms/ASCAutomationSchemas.

AutomationRuleSet

A rule set which evaluates all its rules upon an event interception. Only when all the included rules in the rule set will be evaluated as 'true', will the event trigger the defined actions.

AutomationScope

A single automation scope.

AutomationSource

The source event types which evaluate the security automation set of rules. For example - security alerts and security assessments. To learn more about the supported security events data models schemas - please visit https://aka.ms/ASCAutomationSchemas.

AutomationTriggeringRule

A rule which is evaluated upon event interception. The rule is configured by comparing a specific value from the event model to an expected value. This comparison is done by using one of the supported operators set.

AutomationValidationStatus

The security automation model state property bag.

AutoProvision

Defines values for AutoProvision.

AutoProvisioningSetting

Auto provisioning setting

AutoProvisioningSettingProperties

describes properties of an auto provisioning setting

AwAssumeRoleAuthenticationDetailsProperties

AWS cloud account connector based assume role, the role enables delegating access to your AWS resources. The role is composed of role Amazon Resource Name (ARN) and external ID. For more details, refer to <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_create_for-user.html">Creating a Role to Delegate Permissions to an IAM User (write only)</a>

AwsCredsAuthenticationDetailsProperties

AWS cloud account connector based credentials, the credentials is composed of access key ID and secret key, for more details, refer to <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_users_create.html">Creating an IAM User in Your AWS Account (write only)</a>

AwsEnvironmentData

The aws connector environment data

AwsOrganizationalData

The awsOrganization data

AwsOrganizationalDataMaster

The awsOrganization data for the master account

AwsOrganizationalDataMember

The awsOrganization data for the member account

AzureDevOpsScopeEnvironmentData

The AzureDevOps scope connector's environment data

AzureResourceDetails

Details of the Azure resource that was assessed

AzureResourceIdentifier

Azure resource identifier.

AzureResourceLink

Describes an Azure resource with kind

AzureTrackedResourceLocation

Describes an Azure resource with location

Baseline

Baseline details.

BaselineAdjustedResult

The rule result adjusted with baseline.

BenchmarkReference

The benchmark references.

BundleType

Defines values for BundleType.

Categories

Defines values for Categories.

CefExternalSecuritySolution

Represents a security solution which sends CEF logs to an OMS workspace

CefSolutionProperties

The external security solution properties for CEF solutions

CloudName

Defines values for CloudName.

CloudOffering

The security offering details

Code

Defines values for Code.

Compliance

Compliance of a scope

ComplianceProperties

The Compliance score (percentage) of a Subscription is a sum of all Resources' Compliances under the given Subscription. A Resource Compliance is defined as the compliant ('healthy') Policy Definitions out of all Policy Definitions applicable to a given resource.

ComplianceResult

a compliance result

ComplianceResultProperties

Compliance result data

ComplianceSegment

A segment of a compliance assessment.

Condition

Governance rule's condition

ConnectableResource

Describes the allowed inbound and outbound traffic of an Azure resource

ConnectedResource

Describes properties of a connected resource

ConnectedWorkspace

Represents an OMS workspace to which the solution is connected

ConnectionFromIpNotAllowed

Inbound connection from an ip that isn't allowed. Allow list consists of ipv4 or ipv6 range in CIDR notation.

ConnectionStrings

Connection string for ingesting security data and logs

ConnectionToIpNotAllowed

Outbound connection to an ip that isn't allowed. Allow list consists of ipv4 or ipv6 range in CIDR notation.

ConnectionType

Defines values for ConnectionType.

ConnectorSetting

The connector setting

ConnectorSettingProperties

Describes properties of a connector setting

ContainerRegistryVulnerabilityProperties

Additional context fields for container registry Vulnerability assessment

ControlType

Defines values for ControlType.

CreatedByType

Defines values for CreatedByType.

CspmMonitorAwsOffering

The CSPM monitoring for AWS offering

CspmMonitorAwsOfferingNativeCloudConnection

The native cloud connection configuration

CspmMonitorAzureDevOpsOffering

The CSPM monitoring for AzureDevOps offering

CspmMonitorGcpOffering

The CSPM monitoring for GCP offering

CspmMonitorGcpOfferingNativeCloudConnection

The native cloud connection configuration

CspmMonitorGithubOffering

The CSPM monitoring for github offering

CustomAlertRule

A custom alert rule.

CustomAssessmentAutomation

Custom Assessment Automation

CustomAssessmentAutomationProperties

describes the Custom Assessment Automation properties

CustomAssessmentAutomationRequest

Custom Assessment Automation request

CustomAssessmentAutomationRequestProperties

describes the Custom Assessment Automation properties

CustomEntityStoreAssignment

Custom entity store assignment

CustomEntityStoreAssignmentProperties

describes the custom entity store assignment properties

CustomEntityStoreAssignmentRequest

describes the custom entity store assignment request

CustomEntityStoreAssignmentRequestProperties

describes properties of custom entity store assignment request

CVE

CVE details

Cvss

CVSS details

DataExportSettingProperties

The data export setting properties

DataExportSettings

Represents a data export setting

DataSource

Defines values for DataSource.

DefenderCspmAwsOffering

The CSPM P1 for Aws offering

DefenderCspmAwsOfferingVmScanners

The Microsoft Defender for Server VM scanning configuration

DefenderCspmAwsOfferingVmScannersConfiguration

configuration for Microsoft Defender for Server VM scanning

DefenderCspmGcpOffering

The CSPM P1 for GCP offering

DefenderFoDatabasesAwsOffering

The Defender for Databases AWS offering

DefenderFoDatabasesAwsOfferingArcAutoProvisioning

The ARC autoprovisioning configuration

DefenderFoDatabasesAwsOfferingRds

The RDS configuration

DefenderForContainersAwsOffering

The Defender for Containers AWS offering

DefenderForContainersAwsOfferingCloudWatchToKinesis

The cloudwatch to kinesis connection configuration

DefenderForContainersAwsOfferingContainerVulnerabilityAssessment

The container vulnerability assessment configuration

DefenderForContainersAwsOfferingContainerVulnerabilityAssessmentTask

The container vulnerability assessment task configuration

DefenderForContainersAwsOfferingKinesisToS3

The kinesis to s3 connection configuration

DefenderForContainersAwsOfferingKubernetesScubaReader

The kubernetes to scuba connection configuration

DefenderForContainersAwsOfferingKubernetesService

The kubernetes service connection configuration

DefenderForContainersGcpOffering

The containers GCP offering

DefenderForContainersGcpOfferingDataPipelineNativeCloudConnection

The native cloud connection configuration

DefenderForContainersGcpOfferingNativeCloudConnection

The native cloud connection configuration

DefenderForDatabasesGcpOffering

The Defender for Databases GCP offering configurations

DefenderForDatabasesGcpOfferingArcAutoProvisioning

The ARC autoprovisioning configuration

DefenderForDatabasesGcpOfferingDefenderForDatabasesArcAutoProvisioning

The native cloud connection configuration

DefenderForDevOpsAzureDevOpsOffering

The Defender for DevOps for Azure DevOps offering

DefenderForDevOpsGithubOffering

The Defender for DevOps for Github offering

DefenderForServersAwsOffering

The Defender for Servers AWS offering

DefenderForServersAwsOfferingArcAutoProvisioning

The ARC autoprovisioning configuration

DefenderForServersAwsOfferingDefenderForServers

The Defender for servers connection configuration

DefenderForServersAwsOfferingMdeAutoProvisioning

The Microsoft Defender for Endpoint autoprovisioning configuration

DefenderForServersAwsOfferingSubPlan

configuration for the servers offering subPlan

DefenderForServersAwsOfferingVaAutoProvisioning

The Vulnerability Assessment autoprovisioning configuration

DefenderForServersAwsOfferingVaAutoProvisioningConfiguration

configuration for Vulnerability Assessment autoprovisioning

DefenderForServersAwsOfferingVmScanners

The Microsoft Defender for Server VM scanning configuration

DefenderForServersAwsOfferingVmScannersConfiguration

configuration for Microsoft Defender for Server VM scanning

DefenderForServersGcpOffering

The Defender for Servers GCP offering configurations

DefenderForServersGcpOfferingArcAutoProvisioning

The ARC autoprovisioning configuration

DefenderForServersGcpOfferingDefenderForServers

The Defender for servers connection configuration

DefenderForServersGcpOfferingMdeAutoProvisioning

The Microsoft Defender for Endpoint autoprovisioning configuration

DefenderForServersGcpOfferingSubPlan

configuration for the servers offering subPlan

DefenderForServersGcpOfferingVaAutoProvisioning

The Vulnerability Assessment autoprovisioning configuration

DefenderForServersGcpOfferingVaAutoProvisioningConfiguration

configuration for Vulnerability Assessment autoprovisioning

DenylistCustomAlertRule

A custom alert rule that checks if a value (depends on the custom alert type) is denied.

DeviceSecurityGroup

The device security group resource

DeviceSecurityGroupProperties

describes properties of a security group.

Direction

Defines values for Direction.

DirectMethodInvokesNotInAllowedRange

Number of direct method invokes is not in allowed range.

DiscoveredSecuritySolution
DiscoveredSecuritySolutionProperties
EffectiveNetworkSecurityGroups

Describes the Network Security Groups effective on a network interface

EndOfSupportStatus

Defines values for EndOfSupportStatus.

EnvironmentData

The security connector environment data.

EnvironmentType

Defines values for EnvironmentType.

ErrorAdditionalInfo

The resource management error additional info.

ETag

Entity tag is used for comparing two or more entities from the same requested resource.

EventSource

Defines values for EventSource.

ExecuteGovernanceRuleParams

Governance rule execution parameters

ExpandControlsEnum

Defines values for ExpandControlsEnum.

ExpandEnum

Defines values for ExpandEnum.

ExportData

Defines values for ExportData.

Extension

A plan's extension properties

ExternalSecuritySolution

Represents a security solution external to Microsoft Defender for Cloud which sends information to an OMS workspace and whose data is displayed by Microsoft Defender for Cloud.

ExternalSecuritySolutionKind

Defines values for ExternalSecuritySolutionKind.

ExternalSecuritySolutionKindAutoGenerated

Describes an Azure resource with kind

ExternalSecuritySolutionProperties

The solution properties (correspond to the solution kind)

FailedLocalLoginsNotInAllowedRange

Number of failed local logins is not in allowed range.

FileUploadsNotInAllowedRange

Number of file uploads is not in allowed range.

GcpCredentialsDetailsProperties

GCP cloud account connector based service to service credentials, the credentials are composed of the organization ID and a JSON API key (write only)

GcpOrganizationalData

The gcpOrganization data

GcpOrganizationalDataMember

The gcpOrganization data for the member account

GcpOrganizationalDataOrganization

The gcpOrganization data for the parent account

GcpProjectDetails

The details about the project represented by the security connector

GcpProjectEnvironmentData

The GCP project connector environment data

GithubScopeEnvironmentData

The github scope connector's environment data

GovernanceAssignment

Governance assignment over a given scope

GovernanceAssignmentAdditionalData

Describe the additional data of governance assignment - optional

GovernanceAssignmentProperties

Describes properties of an governance assignment

GovernanceEmailNotification

The governance email weekly notification configuration.

GovernanceRule

Governance rule over a given scope

GovernanceRuleConditionOperator

Defines values for GovernanceRuleConditionOperator.

GovernanceRuleEmailNotification

The governance email weekly notification configuration

GovernanceRuleMetadata

The governance rule metadata

GovernanceRuleOwnerSource

Describe the owner source of governance rule

GovernanceRuleOwnerSourceType

Defines values for GovernanceRuleOwnerSourceType.

GovernanceRuleProperties

Describes properties of an governance rule

GovernanceRulesDeleteHeaders
GovernanceRulesExecuteHeaders
GovernanceRulesOperationResultsHeaders
GovernanceRuleSourceResourceType

Defines values for GovernanceRuleSourceResourceType.

GovernanceRuleType

Defines values for GovernanceRuleType.

HttpC2DMessagesNotInAllowedRange

Number of cloud to device messages (HTTP protocol) is not in allowed range.

HttpC2DRejectedMessagesNotInAllowedRange

Number of rejected cloud to device messages (HTTP protocol) is not in allowed range.

HttpD2CMessagesNotInAllowedRange

Number of device to cloud messages (HTTP protocol) is not in allowed range.

HybridComputeProvisioningState

Defines values for HybridComputeProvisioningState.

HybridComputeSettingsProperties

Settings for hybrid compute management

ImplementationEffort

Defines values for ImplementationEffort.

InformationProtectionAwsOffering

The information protection for AWS offering

InformationProtectionAwsOfferingInformationProtection

The native cloud connection configuration

InformationProtectionKeyword

The information type keyword.

InformationProtectionPolicy

Information protection policy.

InformationProtectionPolicyName

Defines values for InformationProtectionPolicyName.

InformationProtectionPolicyProperties

describes properties of an information protection policy.

InformationType

The information type.

IngestionConnectionString

Connection string for ingesting security data and logs

IngestionSetting

Configures how to correlate scan data and logs with resources associated with the subscription.

IngestionSettingToken

Configures how to correlate scan data and logs with resources associated with the subscription.

Intent

Defines values for Intent.

IoTSecurityAggregatedAlert

Security Solution Aggregated Alert information

IoTSecurityAggregatedAlertProperties

IoT Security solution aggregated alert details.

IoTSecurityAggregatedAlertPropertiesTopDevicesListItem
IoTSecurityAggregatedRecommendation

IoT Security solution recommendation information.

IoTSecurityAggregatedRecommendationProperties

IoT Security solution aggregated recommendation information

IoTSecurityAlertedDevice

Statistical information about the number of alerts per device during last set number of days.

IoTSecurityDeviceAlert

Statistical information about the number of alerts per alert type during last set number of days

IoTSecurityDeviceRecommendation

Statistical information about the number of recommendations per device, per recommendation type.

IoTSecuritySolutionAnalyticsModel

Security analytics of your IoT Security solution

IoTSecuritySolutionAnalyticsModelList

List of Security analytics of your IoT Security solution

IoTSecuritySolutionAnalyticsModelProperties

Security analytics properties of your IoT Security solution

IoTSecuritySolutionAnalyticsModelPropertiesDevicesMetricsItem
IoTSecuritySolutionModel

IoT Security solution configuration and resource information.

IoTSecuritySolutionProperties

Security Solution setting data

IoTSeverityMetrics

IoT Security solution analytics severity metrics.

IsEnabled

Defines values for IsEnabled.

JitNetworkAccessPolicy
JitNetworkAccessPolicyInitiatePort
JitNetworkAccessPolicyInitiateRequest
JitNetworkAccessPolicyInitiateVirtualMachine
JitNetworkAccessPolicyProperties
JitNetworkAccessPolicyVirtualMachine
JitNetworkAccessPortRule
JitNetworkAccessRequest
JitNetworkAccessRequestPort
JitNetworkAccessRequestVirtualMachine
Kind

Defines values for Kind.

KindAutoGenerated

Describes an Azure resource with kind

ListCustomAlertRule

A List custom alert rule.

LocalUserNotAllowed

Login by a local user that isn't allowed. Allow list consists of login names to allow.

Location

Describes an Azure resource with location

LogAnalyticsIdentifier

Represents a Log Analytics workspace scope identifier.

MdeOnboardingData

The resource of the configuration or data needed to onboard the machine to MDE

MdeOnboardingDataList

List of all MDE onboarding data resources

MdeOnboardingDataProperties

Properties of the MDE configuration or data parameter needed to onboard the machine to MDE

MinimalSeverity

Defines values for MinimalSeverity.

MqttC2DMessagesNotInAllowedRange

Number of cloud to device messages (MQTT protocol) is not in allowed range.

MqttC2DRejectedMessagesNotInAllowedRange

Number of rejected cloud to device messages (MQTT protocol) is not in allowed range.

MqttD2CMessagesNotInAllowedRange

Number of device to cloud messages (MQTT protocol) is not in allowed range.

OfferingType

Defines values for OfferingType.

OnPremiseResourceDetails

Details of the On Premise resource that was assessed

OnPremiseSqlResourceDetails

Details of the On Premise Sql resource that was assessed

Operation

Possible operation in the REST API of Microsoft.Security

OperationDisplay

Security operation display

OperationResult

Defines values for OperationResult.

OperationResultAutoGenerated

Long run operation status of governance rule over a given scope

OperationStatus

A status describing the success/failure of the extension's enablement/disablement operation.

Operator

Defines values for Operator.

OrganizationMembershipType

Defines values for OrganizationMembershipType.

Page<T>

Defines a page in Azure responses.

PathRecommendation

Represents a path that is recommended to be allowed and its properties

PermissionProperty

Defines values for PermissionProperty.

Pricing

Microsoft Defender for Cloud is provided in two pricing tiers: free and standard. The standard tier offers advanced security capabilities, while the free tier offers basic security features.

PricingList

List of pricing configurations response.

PricingProperties

Pricing properties for the relevant scope

PricingTier

Defines values for PricingTier.

ProcessNotAllowed

Execution of a process that isn't allowed. Allow list consists of process names to allow.

PropertyType

Defines values for PropertyType.

ProtectionMode

The protection mode of the collection/file types. Exe/Msi/Script are used for Windows, Executable is used for Linux.

Protocol

Defines values for Protocol.

ProvisioningState

Defines values for ProvisioningState.

ProxyServerProperties

For a non-Azure machine that is not connected directly to the internet, specify a proxy server that the non-Azure machine can use.

PublisherInfo

Represents the publisher information of a process/rule

QueryCheck

The rule query details.

QueuePurgesNotInAllowedRange

Number of device queue purges is not in allowed range.

RecommendationConfigStatus

Defines values for RecommendationConfigStatus.

RecommendationConfigurationProperties

The type of IoT Security recommendation.

RecommendationType

Defines values for RecommendationType.

RegulatoryComplianceAssessment

Regulatory compliance assessment details and state

RegulatoryComplianceAssessmentProperties

Regulatory compliance assessment data

RegulatoryComplianceControl

Regulatory compliance control details and state

RegulatoryComplianceControlProperties

Regulatory compliance control data

RegulatoryComplianceStandard

Regulatory compliance standard details and state

RegulatoryComplianceStandardProperties

Regulatory compliance standard data

Remediation

Remediation details.

RemediationEta

The ETA (estimated time of arrival) for remediation

ReportedSeverity

Defines values for ReportedSeverity.

Resource

Describes an Azure resource.

ResourceDetails

Details of the resource that was assessed

ResourceIdentifier

A resource identifier for an alert which can be used to direct the alert to the right product exposure group (tenant, workspace, subscription etc.).

ResourceIdentifierType

Defines values for ResourceIdentifierType.

ResourceStatus

Defines values for ResourceStatus.

Roles

Defines values for Roles.

Rule

Describes remote addresses that is recommended to communicate with the Azure resource on some (Protocol, Port, Direction). All other remote addresses are recommended to be blocked

RuleResults

Rule results.

RuleResultsInput

Rule results input.

RuleResultsProperties

Rule results properties.

RuleSeverity

Defines values for RuleSeverity.

RulesResults

A list of rules results.

RulesResultsInput

Rules results input.

RuleStatus

Defines values for RuleStatus.

RuleType

Defines values for RuleType.

Scan

A vulnerability assessment scan record.

ScanningMode

Defines values for ScanningMode.

ScanProperties

A vulnerability assessment scan record properties.

ScanResult

A vulnerability assessment scan result for a single rule.

ScanResultProperties

A vulnerability assessment scan result properties for a single rule.

ScanResults

A list of vulnerability assessment scan results.

Scans

A list of vulnerability assessment scan records.

ScanState

Defines values for ScanState.

ScanTriggerType

Defines values for ScanTriggerType.

ScopeElement

A more specific scope used to identify the alerts to suppress.

ScoreDetails

Calculation result data

SecureScoreControlDefinitionItem

Information about the security control.

SecureScoreControlDefinitionItemProperties

Security Control Definition Properties.

SecureScoreControlDefinitionSource

The type of the security control (For example, BuiltIn)

SecureScoreControlDetails

Details of the security control, its score, and the health status of the relevant resources.

SecureScoreControlScore

Calculation result data

SecureScoreControlScoreDetails

Calculation result data in control level

SecureScoreItem

Secure score item data model

SecureScoreItemProperties

Describes properties of a calculated secure score.

SecurityAlertNotificationByRoleState

Defines values for SecurityAlertNotificationByRoleState.

SecurityAlertNotificationState

Defines values for SecurityAlertNotificationState.

SecurityAssessment

Security assessment on a resource

SecurityAssessmentMetadata

Security assessment metadata

SecurityAssessmentMetadataPartnerData

Describes the partner that created the assessment

SecurityAssessmentMetadataProperties

Describes properties of an assessment metadata.

SecurityAssessmentMetadataPropertiesResponse

Describes properties of an assessment metadata response.

SecurityAssessmentMetadataPropertiesResponsePublishDates
SecurityAssessmentMetadataResponse

Security assessment metadata response

SecurityAssessmentPartnerData

Data regarding 3rd party partner integration

SecurityAssessmentProperties

Describes properties of an assessment.

SecurityAssessmentPropertiesBase

Describes properties of an assessment.

SecurityAssessmentPropertiesResponse

Describes properties of an assessment.

SecurityAssessmentResponse

Security assessment on a resource - response format

SecurityConnector

The security connector resource.

SecurityConnectorProperties

A set of properties that defines the security connector configuration.

SecurityContact

Contact details and configurations for notifications coming from Microsoft Defender for Cloud.

SecurityContactProperties

Describes security contact properties

SecurityContactPropertiesAlertNotifications

Defines whether to send email notifications about new security alerts

SecurityContactPropertiesNotificationsByRole

Defines whether to send email notifications from Microsoft Defender for Cloud to persons with specific RBAC roles on the subscription.

SecurityFamily

Defines values for SecurityFamily.

SecuritySolution
SecuritySolutionProperties
SecuritySolutionsReferenceData
SecuritySolutionsReferenceDataList
SecuritySolutionsReferenceDataProperties
SecuritySolutionStatus

Defines values for SecuritySolutionStatus.

SecuritySubAssessment

Security sub-assessment on a resource

SecuritySubAssessmentProperties

Describes properties of an sub-assessment.

SecurityTask

Security task that we recommend to do in order to strengthen security

SecurityTaskParameters

Changing set of properties, depending on the task type that is derived from the name field

SecurityTaskProperties

Describes properties of a task.

SensitivityLabel

The sensitivity label.

ServerVulnerabilityAssessment

Describes the server vulnerability assessment details on a resource

ServerVulnerabilityAssessmentProperties

describes ServerVulnerabilityAssessment properties.

ServerVulnerabilityAssessmentsList

List of server vulnerability assessments

ServerVulnerabilityProperties

Additional context fields for server vulnerability assessment

ServicePrincipalProperties

Details of the service principal.

Setting

The kind of the security setting

SettingKind

Defines values for SettingKind.

SettingName

Defines values for SettingName.

Severity

Defines values for Severity.

SeverityEnum

Defines values for SeverityEnum.

Software

Represents a software data

SoftwareProperties

Software Inventory resource properties

Source

Defines values for Source.

SqlServerVulnerabilityProperties

Details of the resource that was assessed

State

Defines values for State.

Status

Defines values for Status.

StatusReason

Defines values for StatusReason.

SubAssessmentStatus

Status of the sub-assessment

SubAssessmentStatusCode

Defines values for SubAssessmentStatusCode.

SubPlan

Defines values for SubPlan.

SupportedCloudEnum

Defines values for SupportedCloudEnum.

SuppressionAlertsScope
SystemData

Metadata pertaining to creation and last modification of the resource.

Tactics

Defines values for Tactics.

Tags

A list of key value pairs that describe the resource.

TagsResource

A container holding only the Tags for a resource, allowing the user to update the tags.

TaskUpdateActionType

Defines values for TaskUpdateActionType.

Techniques

Defines values for Techniques.

Threats

Defines values for Threats.

ThresholdCustomAlertRule

A custom alert rule that checks if a value (depends on the custom alert type) is within the given range.

TimeWindowCustomAlertRule

A custom alert rule that checks if the number of activities (depends on the custom alert type) in a time window is within the given range.

TopologyResource
TopologyResourceProperties
TopologySingleResource
TopologySingleResourceChild
TopologySingleResourceParent
TrackedResource

Describes an Azure tracked resource.

TransportProtocol

Defines values for TransportProtocol.

TwinUpdatesNotInAllowedRange

Number of twin updates is not in allowed range.

Type

Defines values for Type.

UnauthorizedOperationsNotInAllowedRange

Number of unauthorized operations is not in allowed range.

UnmaskedIpLoggingStatus

Defines values for UnmaskedIpLoggingStatus.

UpdateIotSecuritySolutionData
UpdateIoTSecuritySolutionProperties

Update Security Solution setting data

UserDefinedResourcesProperties

Properties of the IoT Security solution's user defined resources.

UserImpact

Defines values for UserImpact.

UserRecommendation

Represents a user that is recommended to be allowed for a certain rule

ValueType

Defines values for ValueType.

VaRule

vulnerability assessment rule metadata details.

VendorReference

Vendor reference

VmRecommendation

Represents a machine that is part of a machine group

WorkspaceSetting

Configures where to store the OMS agent data for workspaces under a scope

WorkspaceSettingProperties

Workspace setting data

Enums

AdaptiveNetworkHardeningEnforceAction

Defines values for AdaptiveNetworkHardeningEnforceAction.

AdvancedThreatProtectionSettingName

Defines values for AdvancedThreatProtectionSettingName.

JitNetworkAccessPolicyInitiateType

Defines values for JitNetworkAccessPolicyInitiateType.

Rank

Defines values for Rank.

RuleState

Defines values for RuleState.

ServerVulnerabilityAssessmentName

Defines values for ServerVulnerabilityAssessmentName.