Class SecurityMonitoringRuleThirdPartyOptions

Options on third party detection method.

Hierarchy

  • SecurityMonitoringRuleThirdPartyOptions

Constructors

constructor

Properties

additionalProperties? defaultNotifications? defaultStatus? rootQueries? signalTitleTemplate?

Constructors

constructor

Properties

Optional additionalProperties

additionalProperties?: {
    [key: string]: any;
}

A container for additional, undeclared properties. This is a holder for any undeclared properties as specified with the 'additionalProperties' keyword in the OAS document.

Type declaration

  • [key: string]: any

Optional defaultNotifications

defaultNotifications?: string[]

Notification targets for the logs that do not correspond to any of the cases.

Optional defaultStatus

defaultStatus?: SecurityMonitoringRuleSeverity

Severity of the Security Signal.

Optional rootQueries

rootQueries?: SecurityMonitoringThirdPartyRootQuery[]

Queries to be combined with third party case queries. Each of them can have different group by fields, to aggregate differently based on the type of alert.

Optional signalTitleTemplate

signalTitleTemplate?: string

A template for the signal title; if omitted, the title is generated based on the case name.

Settings

Member Visibility

Theme

Generated using TypeDoc