@azure/arm-security package

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a APICollections operations.

Represents an AAD identity protection solution which sends logs to an OMS workspace.

The external security solution properties for AAD solutions

The environment authentication details

Configuration payload for PR Annotations.

Number of active connections is not in allowed range.

Details of the sub-assessment

Properties of the additional workspaces.

Optional parameters.

Optional parameters.

Interface representing a AdvancedThreatProtection operations.

The Advanced Threat Protection settings.

The Advanced Threat Protection resource.

Details about Agentless configuration.

Security alert

Changing set of properties depending on the entity type.

describes security alert properties.

Changing set of properties depending on the supportingEvidence type.

Simulate alerts according to this bundles.

Alert Simulator request body.

Describes properties of an alert simulation request

The alert sync setting properties

Represents an alert sync setting

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a Alerts operations.

Optional parameters.

Describes the suppression rule

describes AlertsSuppressionRule properties

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a AlertsSuppressionRules operations.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a AllowedConnections operations.

The resource whose properties describes the allowed traffic between Azure resources

Describes the allowed traffic between Azure resources

A custom alert rule that checks if a value (depends on the custom alert type) is allowed.

Number of cloud to device messages (AMQP protocol) is not in allowed range.

Number of rejected cloud to device messages (AMQP protocol) is not in allowed range.

Number of device to cloud messages (AMQP protocol) is not in allowed range.

An API collection as represented by Microsoft Defender for APIs.

Describes the properties of an API collection.

Security Application over a given scope

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a Application operations.

Describes properties of an application

Optional parameters.

Interface representing a Applications operations.

The ARC autoprovisioning configuration

The ARC autoprovisioning configuration for an AWS environment

Configuration for servers Arc auto provisioning for a given environment

The ARC autoprovisioning configuration for an GCP environment

The ASC location of the subscription is in the "name" field

Links relevant to the assessment

The result of the assessment

The result of the assessment

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a AssessmentsMetadata operations.

Interface representing a Assessments operations.

Describe the properties of a security assessment object reference (by key)

describe the properties of a security assessment object reference (by key)

Describe the properties of a of a standard assignments object reference

Security Assignment on a resource group over a given scope

Describes the properties of a standardAssignment

Additional data about the assignment

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a Assignments operations.

Represents an ATA security solution which sends logs to an OMS workspace

The external security solution properties for ATA solutions

Describe the properties of a assignment attestation

The environment authentication details

Authorization payload.

Auto provisioning setting

describes properties of an auto provisioning setting

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a AutoProvisioningSettings operations.

The security automation resource.

The action that should be triggered.

The target Event Hub to which event data will be exported. To learn more about Microsoft Defender for Cloud continuous export capabilities, visit https://aka.ms/ASCExportLearnMore

The logic app action that should be triggered. To learn more about Microsoft Defender for Cloud's Workflow Automation capabilities, visit https://aka.ms/ASCWorkflowAutomationLearnMore

The Log Analytics Workspace to which event data will be exported. Security alerts data will reside in the 'SecurityAlert' table and the assessments data will reside in the 'SecurityRecommendation' table (under the 'Security'/'SecurityCenterFree' solutions). Note that in order to view the data in the workspace, the Security Center Log Analytics free/standard solution needs to be enabled on that workspace. To learn more about Microsoft Defender for Cloud continuous export capabilities, visit https://aka.ms/ASCExportLearnMore

A set of properties that defines the behavior of the automation configuration. To learn more about the supported security events data models schemas - please visit https://aka.ms/ASCAutomationSchemas.

A rule set which evaluates all its rules upon an event interception. Only when all the included rules in the rule set will be evaluated as 'true', will the event trigger the defined actions.

A single automation scope.

The source event types which evaluate the security automation set of rules. For example - security alerts and security assessments. To learn more about the supported security events data models schemas - please visit https://aka.ms/ASCAutomationSchemas.

A rule which is evaluated upon event interception. The rule is configured by comparing a specific value from the event model to an expected value. This comparison is done by using one of the supported operators set.

The update model of security automation resource.

The security automation model state property bag.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a Automations operations.

Optional parameters.

Optional parameters.

The AWS connector environment data

The AWS organization data

The AWS organization data for the master account

The AWS organization data for the member account

Azure DevOps Organization resource.

List of RP resources which supports pagination.

Azure DevOps Organization properties.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a AzureDevOpsOrgs operations.

Optional parameters.

Azure DevOps Project resource.

Azure DevOps Project properties.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a AzureDevOpsProjects operations.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a AzureDevOpsRepos operations.

Optional parameters.

Azure DevOps Repository resource.

Azure DevOps Repository properties.

The AzureDevOps scope connector's environment data

Details of the Azure resource that was assessed

Azure resource identifier.

Describes an Azure resource with kind

A vulnerability assessments setting on Azure servers in the defined scope.

Baseline details.

The rule result adjusted with baseline.

The benchmark references.

A summary of the scan results of the blobs that were scanned.

Pre-configured sensitive information type

Severity level per category configuration for PR Annotations.

Represents a security solution which sends CEF logs to an OMS workspace

The external security solution properties for CEF solutions

Common error response for all Azure Resource Manager APIs to return error details for failed operations. (This also follows the OData error response format.).

The error detail.

The security offering details

Compliance of a scope

The Compliance score (percentage) of a Subscription is a sum of all Resources' Compliances under the given Subscription. A Resource Compliance is defined as the compliant ('healthy') Policy Definitions out of all Policy Definitions applicable to a given resource.

a compliance result

Compliance result data

Optional parameters.

Optional parameters.

Interface representing a ComplianceResults operations.

A segment of a compliance assessment.

Optional parameters.

Optional parameters.

Interface representing a Compliances operations.

Describes the allowed inbound and outbound traffic of an Azure resource

Describes properties of a connected resource

Represents an OMS workspace to which the solution is connected

Inbound connection from an ip that isn't allowed. Allow list consists of ipv4 or ipv6 range in CIDR notation.

Outbound connection to an ip that isn't allowed. Allow list consists of ipv4 or ipv6 range in CIDR notation.

Additional context fields for container registry Vulnerability assessment

The CSPM monitoring for AWS offering

The native cloud connection configuration

The CSPM monitoring for AzureDevOps offering

The CSPM (Cloud security posture management) monitoring for Docker Hub offering

The CSPM monitoring for GCP offering

The native cloud connection configuration

The CSPM (Cloud security posture management) monitoring for gitlab offering

The CSPM monitoring for github offering

The CSPM (Cloud security posture management) monitoring for JFrog Artifactory offering

A custom alert rule.

Custom Recommendation

describes the Custom Recommendation properties

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a CustomRecommendations operations.

CVE details

CVSS details

The data export setting properties

Represents a data export setting

The CSPM P1 for AWS offering

Defenders CSPM Permissions Management offering configurations

Defender CSPM Permissions Management discovery configuration

AWS Defender CSPM Permissions Management OIDC (open id connect) connection configurations

The Microsoft Defender Data Sensitivity discovery configuration

The databases DSPM configuration

The Microsoft Defender container agentless discovery K8s configuration

The Microsoft Defender container image assessment configuration

The Microsoft Defender for CSPM offering VM scanning configuration

The Defender for CSPM Docker Hub offering configurations

The CSPM P1 for GCP offering

GCP Defenders CSPM Permissions Management OIDC (Open ID connect) connection configurations

The Microsoft Defender Data Sensitivity discovery configuration

The Microsoft Defender Container agentless discovery configuration

The Microsoft Defender Container image assessment configuration

The Microsoft Defender for CSPM VM scanning configuration

The CSPM P1 for JFrog Artifactory offering

The Microsoft Defender Container image assessment configuration

The Defender for Databases AWS offering

The ARC autoprovisioning configuration

The databases data security posture management (DSPM) configuration

The RDS configuration

The Defender for Containers AWS offering

The cloudwatch to kinesis connection configuration

The kinesis to s3 connection configuration

The kubernetes data collection connection configuration

The kubernetes service connection configuration

The Microsoft Defender container agentless discovery K8s configuration

The Microsoft Defender container image assessment configuration

The Microsoft Defender for Container K8s VM host scanning configuration

The Defender for containers Docker Hub offering configurations

The containers GCP offering

The native cloud connection configuration

The Microsoft Defender Container agentless discovery configuration

The Microsoft Defender Container image assessment configuration

The native cloud connection configuration

The Microsoft Defender for Container K8s VM host scanning configuration

The Defender for Containers for JFrog Artifactory offering

The Defender for Databases GCP offering configurations

The ARC autoprovisioning configuration

The native cloud connection configuration

The Defender for Servers AWS offering

The ARC autoprovisioning configuration

The Defender for servers connection configuration

The Microsoft Defender for Endpoint autoprovisioning configuration

configuration for the servers offering subPlan

The Vulnerability Assessment autoprovisioning configuration

configuration for Vulnerability Assessment autoprovisioning

The Microsoft Defender for Server VM scanning configuration

The Defender for Servers GCP offering configurations

The ARC autoprovisioning configuration

The Defender for servers connection configuration

The Microsoft Defender for Endpoint autoprovisioning configuration

configuration for the servers offering subPlan

The Vulnerability Assessment autoprovisioning configuration

configuration for Vulnerability Assessment autoprovisioning

The Microsoft Defender for Server VM scanning configuration

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a DefenderForStorage operations.

The Defender for Storage resource.

Defender for Storage resource properties.

Optional parameters.

A custom alert rule that checks if a value (depends on the custom alert type) is denied.

Details about DevOps capability.

DevOps Configuration resource.

DevOps Configuration properties.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a DevOpsConfigurations operations.

Optional parameters.

Optional parameters.

Interface representing a DevOpsOperationResults operations.

The device security group resource

describes properties of a security group.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a DeviceSecurityGroups operations.

Number of direct method invokes is not in allowed range.

Concrete proxy resource types can be created by aliasing this type using a specific property type.

model interface DiscoveredSecuritySolutionProperties

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a DiscoveredSecuritySolutions operations.

The Docker Hub connector environment data

The security connector environment data.

The environment details of the resource

The resource management error additional info.

The error detail.

Common error response for all Azure Resource Manager APIs to return error details for failed operations.

Governance rule execution parameters

A plan's extension properties

The base extension resource.

Represents a security solution external to Microsoft Defender for Cloud which sends information to an OMS workspace and whose data is displayed by Microsoft Defender for Cloud.

The solution properties (correspond to the solution kind)

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a ExternalSecuritySolutions operations.

Number of failed local logins is not in allowed range.

Number of file uploads is not in allowed range.

A summary of the scan results of the files that were scanned.

The gcpOrganization data

The gcpOrganization data for the member account

The gcpOrganization data for the parent account

The details about the project represented by the security connector

The GCP project connector environment data

A list with a single sensitivity settings resource

Data sensitivity settings for sensitive data discovery

The sensitivity settings properties

Microsoft information protection built-in and custom information types, labels, and integration status.

Optional parameters.

Interface representing a GitHubIssues operations.

GitHub Owner resource.

List of RP resources which supports pagination.

GitHub Owner properties.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a GitHubOwners operations.

Optional parameters.

Optional parameters.

Interface representing a GitHubRepos operations.

GitHub Repository resource.

GitHub Repository properties.

GitLab Group resource.

List of RP resources which supports pagination.

GitLab Group properties.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a GitLabGroups operations.

GitLab Project resource.

GitLab Project properties.

Optional parameters.

Optional parameters.

Interface representing a GitLabProjects operations.

Optional parameters.

Interface representing a GitLabSubgroups operations.

The github scope connector's environment data

The GitLab scope connector's environment data

Governance assignment over a given scope

Describe the additional data of governance assignment - optional

Describes properties of an governance assignment

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a GovernanceAssignments operations.

The governance email weekly notification configuration.

Governance rule over a given scope

The governance email weekly notification configuration

The governance rule metadata

Describe the owner source of governance rule

Describes properties of an governance rule

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a GovernanceRules operations.

The classification of the health report

The health report resource

Describes properties of the health report

Optional parameters.

Optional parameters.

Interface representing a HealthReports operations.

Number of cloud to device messages (HTTP protocol) is not in allowed range.

Number of rejected cloud to device messages (HTTP protocol) is not in allowed range.

Number of device to cloud messages (HTTP protocol) is not in allowed range.

Identity for the resource.

Custom user-defined information type

The information type keyword.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a InformationProtectionPolicies operations.

Information protection policy.

describes properties of an information protection policy.

The information type.

Model for inventory to be included or excluded from Agentless.

Security Solution Aggregated Alert information

IoT Security solution aggregated alert details.

model interface IoTSecurityAggregatedAlertPropertiesTopDevicesListItem

IoT Security solution recommendation information.

IoT Security solution aggregated recommendation information

Statistical information about the number of alerts per device during last set number of days.

Statistical information about the number of alerts per alert type during last set number of days

Statistical information about the number of recommendations per device, per recommendation type.

Security analytics of your IoT Security solution

List of Security analytics of your IoT Security solution

Security analytics properties of your IoT Security solution

model interface IoTSecuritySolutionAnalyticsModelPropertiesDevicesMetricsItem

IoT Security solution configuration and resource information.

Security Solution setting data

IoT Security solution analytics severity metrics.

Optional parameters.

Optional parameters.

Interface representing a IotSecuritySolutionAnalytics operations.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a IotSecuritySolution operations.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a IotSecuritySolutionsAnalyticsAggregatedAlert operations.

Optional parameters.

Optional parameters.

Interface representing a IotSecuritySolutionsAnalyticsRecommendation operations.

The issue that caused the resource to by unhealthy

The issue creation request model

The JFrog Artifactory connector environment data

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a JitNetworkAccessPolicies operations.

Concrete proxy resource types can be created by aliasing this type using a specific property type.

JIT network access policy resource for create/update operations. Omits server-side read-only fields: location, provisioningState.

model interface JitNetworkAccessPolicyInitiatePort

model interface JitNetworkAccessPolicyInitiateRequest

model interface JitNetworkAccessPolicyInitiateVirtualMachine

model interface JitNetworkAccessPolicyProperties

JIT network access policy properties for create/update operations. Omits server-side read-only field: provisioningState.

model interface JitNetworkAccessPolicyVirtualMachine

model interface JitNetworkAccessPortRule

model interface JitNetworkAccessRequest

model interface JitNetworkAccessRequestPort

model interface JitNetworkAccessRequestVirtualMachine

Microsoft information protection sensitivity label

A List custom alert rule.

Login by a local user that isn't allowed. Allow list consists of login names to allow.

Optional parameters.

Optional parameters.

Interface representing a Locations operations.

Represents a Log Analytics workspace scope identifier.

Describes the state of a malware scan operation.

model interface MalwareScanProperties

Properties of Malware Scanning.

The resource of the configuration or data needed to onboard the machine to MDE

List of all MDE onboarding data resources

Properties of the MDE configuration or data parameter needed to onboard the machine to MDE

Optional parameters.

Optional parameters.

Interface representing a MdeOnboardings operations.

Number of cloud to device messages (MQTT protocol) is not in allowed range.

Number of rejected cloud to device messages (MQTT protocol) is not in allowed range.

Number of device to cloud messages (MQTT protocol) is not in allowed range.

A valid notification source type

Alert notification source

Attack path notification source

Details of the On Premise resource that was assessed

Details of the On Premise Sql resource that was assessed

Optional. Determine which blobs get scanned by On Upload malware scanning. An Or operation is performed between each filter type.

Properties of On Upload malware scanning.

Details of a REST API operation, returned from the Resource Provider Operations API

Localized display information for an operation.

Long run operation status of governance rule over a given scope

Optional parameters.

Interface representing a OperationResults operations.

A status describing the success/failure of the enablement/disablement operation.

The current status of an async operation.

Optional parameters.

Interface representing a OperationStatuses operations.

Optional parameters.

Interface representing a Operations operations.

Options for the byPage method

An interface that allows async iterable iteration both to completion and by page.

Describes properties of an assessment as related to the standard

Microsoft Defender for Cloud is provided in two pricing tiers: free and standard. The standard tier offers advanced security capabilities, while the free tier offers basic security features.

List of pricing configurations response.

Pricing properties for the relevant scope

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a Pricings operations.

Optional parameters.

The private endpoint resource.

The private endpoint connection resource.

Properties of the private endpoint connection.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a PrivateEndpointConnections operations.

A private link group resource that describes a grouping for the private link.

Properties of a private link resource. These properties control the behavior and configuration of private endpoint connectivity to Defender services.

A private link resource that enables secure, private connectivity to Microsoft Defender for Cloud services. This resource manages the lifecycle of private endpoint connections and provides the necessary infrastructure for private connectivity.

Properties of a private link resource.

Optional parameters.

Optional parameters.

Interface representing a PrivateLinkResources operations.

A collection of information about the state of the connection between service consumer and provider.

Request payload for updating a private link resource. Used in PATCH operations to update specific mutable properties without affecting the entire resource configuration.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a PrivateLinks operations.

Optional parameters.

Execution of a process that isn't allowed. Allow list consists of process names to allow.

The resource model definition for a Azure Resource Manager proxy resource. It will not have tags and a location

The rule query details.

Number of device queue purges is not in allowed range.

The type of IoT Security recommendation.

Regulatory compliance assessment details and state

Regulatory compliance assessment data

Optional parameters.

Optional parameters.

Interface representing a RegulatoryComplianceAssessments operations.

Regulatory compliance control details and state

Regulatory compliance control data

Optional parameters.

Optional parameters.

Interface representing a RegulatoryComplianceControls operations.

Regulatory compliance standard details and state

Regulatory compliance standard data

Optional parameters.

Optional parameters.

Interface representing a RegulatoryComplianceStandards operations.

Remediation details.

The ETA (estimated time of arrival) for remediation

Common fields that are returned in the response for all Azure Resource Manager resources

Details of the resource that was assessed

A resource identifier for an alert which can be used to direct the alert to the right product exposure group (tenant, workspace, subscription etc.).

Rule results.

Rule results input.

Rule results properties.

A list of rules results.

Rules results input.

A vulnerability assessment scan record properties.

A vulnerability assessment scan result for a single rule.

A vulnerability assessment scan result properties for a single rule.

A summary of the scan results.

A vulnerability assessment scan record.

A more specific scope used to identify the alerts to suppress.

Calculation result data

Information about the security control.

Security Control Definition Properties.

The type of the security control (For example, BuiltIn)

Optional parameters.

Optional parameters.

Interface representing a SecureScoreControlDefinitions operations.

Details of the security control, its score, and the health status of the relevant resources.

Calculation result data in control level

Optional parameters.

Optional parameters.

Interface representing a SecureScoreControls operations.

Secure score item data model

Describes properties of a calculated secure score.

Optional parameters.

Optional parameters.

Interface representing a SecureScores operations.

Security assessment on a resource

Describes the partner that created the assessment

Describes properties of an assessment metadata.

Describes properties of an assessment metadata response.

model interface SecurityAssessmentMetadataPropertiesResponsePublishDates

Security assessment metadata response

Data regarding 3rd party partner integration

Describes properties of an assessment.

Describes properties of an assessment.

External model of risk result

model interface SecurityAssessmentPropertiesBaseRiskPathsItem

model interface SecurityAssessmentPropertiesBaseRiskPathsItemEdgeItem

model interface SecurityAssessmentPropertiesBaseRiskPathsItemNodesItem

Describes properties of an assessment.

Security assessment on a resource - response format

Optional parameters for the client.

The resource details of the health report

The security connector resource.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a SecurityConnectorApplication operations.

Optional parameters.

Interface representing a SecurityConnectorApplications operations.

A set of properties that defines the security connector configuration.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a SecurityConnectors operations.

Optional parameters.

Contact details and configurations for notifications coming from Microsoft Defender for Cloud.

Describes security contact properties

Defines whether to send email notifications from Microsoft Defender for Cloud to persons with specific RBAC roles on the subscription.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a SecurityContacts operations.

Security operator under a given subscription and pricing

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a SecurityOperators operations.

Concrete proxy resource types can be created by aliasing this type using a specific property type.

model interface SecuritySolutionProperties

Optional parameters.

Optional parameters.

Interface representing a SecuritySolutions operations.

model interface SecuritySolutionsReferenceData

model interface SecuritySolutionsReferenceDataList

Optional parameters.

Optional parameters.

Interface representing a SecuritySolutionsReferenceData operations.

model interface SecuritySolutionsReferenceDataProperties

Security Standard on a resource

Describes properties of a standard.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a SecurityStandards operations.

Security sub-assessment on a resource

Describes properties of an sub-assessment.

Security task that we recommend to do in order to strengthen security

Changing set of properties, depending on the task type that is derived from the name field

Describes properties of a task.

Properties of Sensitive Data Discovery.

The sensitivity label.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a SensitivitySettings operations.

Describes the server vulnerability assessment details on a resource

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a ServerVulnerabilityAssessment operations.

describes ServerVulnerabilityAssessment properties.

Describes the vulnerability assessments setting properties on Azure servers in the defined scope.

List of server vulnerability assessments

A base vulnerability assessments setting on servers in the defined scope.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a ServerVulnerabilityAssessmentsSettings operations.

Additional context fields for server vulnerability assessment

The kind of the security setting

Optional parameters.

Optional parameters.

Interface representing a Settings operations.

Optional parameters.

A simple poller that can be used to poll a long running operation.

Details of the resource that was assessed

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a SqlVulnerabilityAssessmentBaselineRules operations.

Represents the result of a SQL Vulnerability Assessment scan operation, wrapped in the ARM resource envelope.

Represents the properties of a SQL Vulnerability Assessment scan operation result.

Optional parameters.

Optional parameters.

Interface representing a SqlVulnerabilityAssessmentScanResults operations.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a SqlVulnerabilityAssessmentScans operations.

SQL Vulnerability Assessment settings resource.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a SqlVulnerabilityAssessmentSettings operations.

SQL Vulnerability Assessment settings properties.

Security Standard on a resource

Security Assignment on a resource group over a given scope

The standard assignment metadata

Describes the properties of a standardAssignment

Additional data about assignment that has Attest effect

Additional data about assignment that has Exempt effect

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a StandardAssignments operations.

Describes properties of an component as related to the standard

The standard metadata

Describes properties of a standard.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a Standards operations.

The status of the health report

Status of the sub-assessment

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a SubAssessments operations.

model interface SuppressionAlertsScope

Metadata pertaining to creation and last modification of the resource.

A list of key value pairs that describe the resource.

A container holding only the Tags for a resource, allowing the user to update the tags.

Repository branch configuration for PR Annotations.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a Tasks operations.

Optional parameters.

Optional parameters.

A custom alert rule that checks if a value (depends on the custom alert type) is within the given range.

A custom alert rule that checks if the number of activities (depends on the custom alert type) in a time window is within the given range.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a Topology operations.

Concrete proxy resource types can be created by aliasing this type using a specific property type.

model interface TopologyResourceProperties

model interface TopologySingleResource

model interface TopologySingleResourceChild

model interface TopologySingleResourceParent

The resource model definition for an Azure Resource Manager tracked top level resource which has 'tags' and a 'location'

Number of twin updates is not in allowed range.

Number of unauthorized operations is not in allowed range.

Update Security Solution setting data

model interface UpdateIotSecuritySolutionData

Request to update data sensitivity settings for sensitive data discovery

Properties of the IoT Security solution's user defined resources.

vulnerability assessment rule metadata details.

Vendor reference

A VM scanning configuration for a security offering of a Aws environment

A VM scanning configuration for a security offering of a given environment

Configuration for VM scanning

A VM scanning configuration for a security offering of a GCP environment

Configures where to store the OMS agent data for workspaces under a scope

Workspace setting data

Optional parameters.

Optional parameters.

Optional parameters.

Optional parameters.

Interface representing a WorkspaceSettings operations.

Optional parameters.

The connectivity state of the external AAD solution
KnownAadConnectivityState can be used interchangeably with AadConnectivityState, this enum contains the known values that the service supports.

Known values supported by the service

Discovered: Discovered
NotLicensed: NotLicensed
Connected: Connected

Enum. Indicates the action type.
KnownActionType can be used interchangeably with ActionType, this enum contains the known values that the service supports.

Known values supported by the service

LogicApp: LogicApp
EventHub: EventHub
Workspace: Workspace
Internal: Internal

ActionableRemediation Setting. None - the setting was never set. Enabled - ActionableRemediation is enabled. Disabled - ActionableRemediation is disabled.
KnownActionableRemediationState can be used interchangeably with ActionableRemediationState, this enum contains the known values that the service supports.

Known values supported by the service

None: None
Disabled: Disabled
Enabled: Enabled

Alias for AdditionalDataUnion

Data types sent to workspace.
KnownAdditionalWorkspaceDataType can be used interchangeably with AdditionalWorkspaceDataType, this enum contains the known values that the service supports.

Known values supported by the service

Alerts: Alerts
RawEvents: RawEvents

Workspace type.
KnownAdditionalWorkspaceType can be used interchangeably with AdditionalWorkspaceType, this enum contains the known values that the service supports.

Known values supported by the service

Sentinel: Sentinel

Agentless Enablement states.
KnownAgentlessEnablement can be used interchangeably with AgentlessEnablement, this enum contains the known values that the service supports.

Known values supported by the service

Disabled: Disabled
Enabled: Enabled
NotApplicable: NotApplicable

The risk level of the threat that was detected. Learn more: https://docs.microsoft.com/en-us/azure/security-center/security-center-alerts-overview#how-are-alerts-classified.
KnownAlertSeverity can be used interchangeably with AlertSeverity, this enum contains the known values that the service supports.

Known values supported by the service

Informational: Informational
Low: Low
Medium: Medium
High: High

Alias for AlertSimulatorRequestPropertiesUnion

The life cycle status of the alert.
KnownAlertStatus can be used interchangeably with AlertStatus, this enum contains the known values that the service supports.

Known values supported by the service

Active: An alert which doesn't specify a value is assigned the status 'Active'
InProgress: An alert which is in handling state
Resolved: Alert closed after handling
Dismissed: Alert dismissed as false positive

Alias for AllowlistCustomAlertRuleUnion

Configuration of PR Annotations on default branch.

Enabled - PR Annotations are enabled on the resource's default branch. Disabled - PR Annotations are disabled on the resource's default branch.
KnownAnnotateDefaultBranchState can be used interchangeably with AnnotateDefaultBranchState, this enum contains the known values that the service supports.

Known values supported by the service

Disabled: Disabled
Enabled: Enabled

The application source, what it affects, e.g. Assessments
KnownApplicationSourceResourceType can be used interchangeably with ApplicationSourceResourceType, this enum contains the known values that the service supports.

Known values supported by the service

Assessments: The source of the application is assessments

Extensible enum. Indicates the action type. "Internal" refers to actions that are for internal only APIs.
KnownArmActionType can be used interchangeably with ArmActionType, this enum contains the known values that the service supports.

Known values supported by the service

Internal: Actions are for internal-only APIs.

Sub-assessment resource type
KnownAssessedResourceType can be used interchangeably with AssessedResourceType, this enum contains the known values that the service supports.

Known values supported by the service

SqlServerVulnerability: SqlServerVulnerability
ContainerRegistryVulnerability: ContainerRegistryVulnerability
ServerVulnerability: ServerVulnerability
ServerVulnerabilityAssessment: ServerVulnerabilityAssessment

Programmatic code for the status of the assessment
KnownAssessmentStatusCode can be used interchangeably with AssessmentStatusCode, this enum contains the known values that the service supports.

Known values supported by the service

Healthy: The resource is healthy
Unhealthy: The resource has a security issue that needs to be addressed
NotApplicable: Assessment for this resource did not happen

BuiltIn if the assessment based on built-in Azure Policy definition, Custom if the assessment based on custom Azure Policy definition
KnownAssessmentType can be used interchangeably with AssessmentType, this enum contains the known values that the service supports.

Known values supported by the service

Unknown: Unknown assessment type
BuiltIn: Microsoft Defender for Cloud managed assessments
Custom: User defined custom assessments
CustomPolicy: User defined policies that are automatically ingested from Azure Policy to Microsoft Defender for Cloud
CustomerManaged: User assessments pushed directly by the user or other third party to Microsoft Defender for Cloud
BuiltInPolicy: Microsoft Defender for Cloud managed policies
VerifiedPartner: Third party assessments that are verified by Microsoft Defender for Cloud
ManualBuiltInPolicy: Microsoft Defender for Cloud managed policies that are manually created by the user
ManualBuiltIn: Microsoft Defender for Cloud managed assessments that are manually created by the user
ManualCustomPolicy: User defined policies that are manually created by the user
DynamicBuiltIn: Microsoft Defender for Cloud managed assessments that are dynamically created by the system

Attest category of this assignment
KnownAttestationComplianceState can be used interchangeably with AttestationComplianceState, this enum contains the known values that the service supports.

Known values supported by the service

unknown: unknown
compliant: compliant
nonCompliant: nonCompliant

The authentication type
KnownAuthenticationType can be used interchangeably with AuthenticationType, this enum contains the known values that the service supports.

Known values supported by the service

AccessToken: AccessToken

Alias for AuthenticationUnion

AutoDiscovery states.
KnownAutoDiscovery can be used interchangeably with AutoDiscovery, this enum contains the known values that the service supports.

Known values supported by the service

Disabled: Disabled
Enabled: Enabled
NotApplicable: NotApplicable

Describes what kind of security agent provisioning action to take
KnownAutoProvision can be used interchangeably with AutoProvision, this enum contains the known values that the service supports.

Known values supported by the service

On: Install missing security agent on VMs automatically
Off: Do not install security agent on the VMs automatically

Optional. Specifies the automated response action to take when malware is detected.
KnownAutomatedResponseType can be used interchangeably with AutomatedResponseType, this enum contains the known values that the service supports.

Known values supported by the service

None: No automated response will be taken when malware is detected.
BlobSoftDelete: The blob will be soft deleted when malware is detected.

Alias for AutomationActionUnion

Alias for AwsOrganizationalDataUnion

The supported values for cloud setting as a string literal type

Optional. Write scan result on BlobIndexTags by default.
KnownBlobScanResultsOptions can be used interchangeably with BlobScanResultsOptions, this enum contains the known values that the service supports.

Known values supported by the service

BlobIndexTags: Write scan results on the blobs index tags.
None: Do not write scan results on the blobs index tags.

Alert Simulator supported bundles.
KnownBundleType can be used interchangeably with BundleType, this enum contains the known values that the service supports.

Known values supported by the service

AppServices: AppServices
DNS: DNS
KeyVaults: KeyVaults
KubernetesService: KubernetesService
ResourceManager: ResourceManager
SqlServers: SqlServers
StorageAccounts: StorageAccounts
VirtualMachines: VirtualMachines
CosmosDbs: CosmosDbs

The categories of resource that is at risk when the assessment is unhealthy
KnownCategories can be used interchangeably with Categories, this enum contains the known values that the service supports.

Known values supported by the service

Compute: Compute
Networking: Networking
Data: Data
IdentityAndAccess: IdentityAndAccess
IoT: IoT
Container: Container
AppServices: AppServices

The multi cloud resource's cloud name.
KnownCloudName can be used interchangeably with CloudName, this enum contains the known values that the service supports.

Known values supported by the service

Azure: Azure
AWS: AWS
GCP: GCP
Github: Github
AzureDevOps: AzureDevOps
GitLab: GitLab
DockerHub: DockerHub
JFrog: JFrog

Alias for CloudOfferingUnion

Type of ConnectionType

An interface that describes a page of results.

The type of security control (for example, BuiltIn)
KnownControlType can be used interchangeably with ControlType, this enum contains the known values that the service supports.

Known values supported by the service

BuiltIn: Microsoft Defender for Cloud managed assessments
Custom: Non Microsoft Defender for Cloud managed assessments

The kind of entity that created the resource.
KnownCreatedByType can be used interchangeably with CreatedByType, this enum contains the known values that the service supports.

Known values supported by the service

User: The entity was created by a user.
Application: The entity was created by an application.
ManagedIdentity: The entity was created by a managed identity.
Key: The entity was created by a key.

Alias for CustomAlertRuleUnion

Type of DataSource

The provisioning state of the resource.

Pending - Provisioning pending. Failed - Provisioning failed. Succeeded - Successful provisioning. Canceled - Provisioning canceled. PendingDeletion - Deletion pending. DeletionSuccess - Deletion successful. DeletionFailure - Deletion failure.
KnownDevOpsProvisioningState can be used interchangeably with DevOpsProvisioningState, this enum contains the known values that the service supports.

Known values supported by the service

Succeeded: Succeeded
Failed: Failed
Canceled: Canceled
Pending: Pending
PendingDeletion: PendingDeletion
DeletionSuccess: DeletionSuccess
DeletionFailure: DeletionFailure

Expected effect of this assignment (Audit/Exempt/Attest)
KnownEffect can be used interchangeably with Effect, this enum contains the known values that the service supports.

Known values supported by the service

Audit: Audit
Exempt: Exempt
Attest: Attest

If set to "False", it allows the descendants of this scope to override the pricing configuration set on this scope (allows setting inherited="False"). If set to "True", it prevents overrides and forces this pricing configuration on all the descendants of this scope. This field is only available for subscription-level pricing.
KnownEnforce can be used interchangeably with Enforce, this enum contains the known values that the service supports.

Known values supported by the service

False: Allows the descendants of this scope to override the pricing configuration set on this scope (allows setting inherited="False")
True: Prevents overrides and forces the current scope's pricing configuration to all descendants

Alias for EnvironmentDataUnion

The type of the environment data.
KnownEnvironmentType can be used interchangeably with EnvironmentType, this enum contains the known values that the service supports.

Known values supported by the service

AwsAccount: AwsAccount
GcpProject: GcpProject
GithubScope: GithubScope
AzureDevOpsScope: AzureDevOpsScope
GitlabScope: GitlabScope
DockerHubOrganization: DockerHubOrganization
JFrogArtifactory: JFrogArtifactory

A valid event source type.
KnownEventSource can be used interchangeably with EventSource, this enum contains the known values that the service supports.

Known values supported by the service

Assessments: Assessments
AssessmentsSnapshot: AssessmentsSnapshot
SubAssessments: SubAssessments
SubAssessmentsSnapshot: SubAssessmentsSnapshot
Alerts: Alerts
SecureScores: SecureScores
SecureScoresSnapshot: SecureScoresSnapshot
SecureScoreControls: SecureScoreControls
SecureScoreControlsSnapshot: SecureScoreControlsSnapshot
RegulatoryComplianceAssessment: RegulatoryComplianceAssessment
RegulatoryComplianceAssessmentSnapshot: RegulatoryComplianceAssessmentSnapshot
AttackPaths: AttackPaths
AttackPathsSnapshot: AttackPathsSnapshot

Exemption category of this assignment
KnownExemptionCategory can be used interchangeably with ExemptionCategory, this enum contains the known values that the service supports.

Known values supported by the service

waiver: waiver
mitigated: mitigated

Type of ExpandControlsEnum

Type of ExpandEnum

Type of ExportData

The kind of the external solution
KnownExternalSecuritySolutionKind can be used interchangeably with ExternalSecuritySolutionKind, this enum contains the known values that the service supports.

Known values supported by the service

CEF: CEF
ATA: ATA
AAD: AAD

Alias for ExternalSecuritySolutionUnion

Alias for GcpOrganizationalDataUnion

The owner type for the governance rule owner source
KnownGovernanceRuleOwnerSourceType can be used interchangeably with GovernanceRuleOwnerSourceType, this enum contains the known values that the service supports.

Known values supported by the service

ByTag: The rule source type defined using resource tag
Manually: The rule source type defined manually

The governance rule source, what the rule affects, e.g. Assessments
KnownGovernanceRuleSourceResourceType can be used interchangeably with GovernanceRuleSourceResourceType, this enum contains the known values that the service supports.

Known values supported by the service

Assessments: The source of the governance rule is assessments

The rule type of the governance rule, defines the source of the rule e.g. Integrated
KnownGovernanceRuleType can be used interchangeably with GovernanceRuleType, this enum contains the known values that the service supports.

Known values supported by the service

Integrated: The source of the rule type definition is integrated
ServiceNow: The source of the rule type definition is ServiceNow

The implementation effort required to remediate this assessment
KnownImplementationEffort can be used interchangeably with ImplementationEffort, this enum contains the known values that the service supports.

Known values supported by the service

Low: Low
Moderate: Moderate
High: High

Type of InformationProtectionPolicyName

Update Settings.

Enabled - Resource should inherit configurations from parent. Disabled - Resource should not inherit configurations from parent.
KnownInheritFromParentState can be used interchangeably with InheritFromParentState, this enum contains the known values that the service supports.

Known values supported by the service

Disabled: Disabled
Enabled: Enabled

"inherited" = "True" indicates that the current scope inherits its pricing configuration from its parent. The ID of the parent scope that provides the inherited configuration is displayed in the "inheritedFrom" field. On the other hand, "inherited" = "False" indicates that the current scope has its own pricing configuration explicitly set, and does not inherit from its parent. This field is read only and available only for resource-level pricing.
KnownInherited can be used interchangeably with Inherited, this enum contains the known values that the service supports.

Known values supported by the service

True: Indicates that the current scope is inheriting its pricing configuration from its parent
False: Indicates that the current scope sets its own pricing configuration and does not inherit it from its parent

The kill chain related intent behind the alert. For list of supported values, and explanations of Azure Security Center's supported kill chain intents.
KnownIntent can be used interchangeably with Intent, this enum contains the known values that the service supports.

Known values supported by the service

Unknown: Unknown
PreAttack: PreAttack could be either an attempt to access a certain resource regardless of a malicious intent, or a failed attempt to gain access to a target system to gather information prior to exploitation. This step is usually detected as an attempt, originating from outside the network, to scan the target system and find a way in. Further details on the PreAttack stage can be read in MITRE Pre-Att&ck matrix.
InitialAccess: InitialAccess is the stage where an attacker manages to get foothold on the attacked resource.
Persistence: Persistence is any access, action, or configuration change to a system that gives a threat actor a persistent presence on that system.
PrivilegeEscalation: Privilege escalation is the result of actions that allow an adversary to obtain a higher level of permissions on a system or network.
DefenseEvasion: Defense evasion consists of techniques an adversary may use to evade detection or avoid other defenses.
CredentialAccess: Credential access represents techniques resulting in access to or control over system, domain, or service credentials that are used within an enterprise environment.
Discovery: Discovery consists of techniques that allow the adversary to gain knowledge about the system and internal network.
LateralMovement: Lateral movement consists of techniques that enable an adversary to access and control remote systems on a network and could, but does not necessarily, include execution of tools on remote systems.
Execution: The execution tactic represents techniques that result in execution of adversary-controlled code on a local or remote system.
Collection: Collection consists of techniques used to identify and gather information, such as sensitive files, from a target network prior to exfiltration.
Exfiltration: Exfiltration refers to techniques and attributes that result or aid in the adversary removing files and information from a target network.
CommandAndControl: The command and control tactic represents how adversaries communicate with systems under their control within a target network.
Impact: Impact events primarily try to directly reduce the availability or integrity of a system, service, or network; including manipulation of data to impact a business or operational process.
Probing: Probing could be either an attempt to access a certain resource regardless of a malicious intent, or a failed attempt to gain access to a target system to gather information prior to exploitation.
Exploitation: Exploitation is the stage where an attacker manages to get a foothold on the attacked resource. This stage is relevant for compute hosts and resources such as user accounts, certificates etc.

Types for inventory kind.
KnownInventoryKind can be used interchangeably with InventoryKind, this enum contains the known values that the service supports.

Known values supported by the service

AzureDevOpsOrganization: AzureDevOpsOrganization
AzureDevOpsProject: AzureDevOpsProject
AzureDevOpsRepository: AzureDevOpsRepository
GitHubOwner: GitHubOwner
GitHubRepository: GitHubRepository

Types for inventory list.
KnownInventoryListKind can be used interchangeably with InventoryListKind, this enum contains the known values that the service supports.

Known values supported by the service

Inclusion: Inclusion
Exclusion: Exclusion

Indicates whether the extension is enabled.
KnownIsEnabled can be used interchangeably with IsEnabled, this enum contains the known values that the service supports.

Known values supported by the service

True: Indicates the extension is enabled
False: Indicates the extension is disabled

The kind of alert simulation.
KnownKind can be used interchangeably with Kind, this enum contains the known values that the service supports.

Known values supported by the service

Bundles: Simulate alerts according to bundles

Alias for ListCustomAlertRuleUnion

Defines the minimal attack path risk level which will be sent as email notifications
KnownMinimalRiskLevel can be used interchangeably with MinimalRiskLevel, this enum contains the known values that the service supports.

Known values supported by the service

Critical: Get notifications on new attack paths with Critical risk level
High: Get notifications on new attack paths with High or Critical risk level
Medium: Get notifications on new attach paths with Medium, High or Critical risk level
Low: Get notifications on new attach paths with Low, Medium, High or Critical risk level

Defines the minimal alert severity which will be sent as email notifications
KnownMinimalSeverity can be used interchangeably with MinimalSeverity, this enum contains the known values that the service supports.

Known values supported by the service

High: Get notifications on new alerts with High severity
Medium: Get notifications on new alerts with Medium or High severity
Low: Get notifications on new alerts with Low, Medium or High severity

Microsoft information protection integration status
KnownMipIntegrationStatus can be used interchangeably with MipIntegrationStatus, this enum contains the known values that the service supports.

Known values supported by the service

Ok: Ok
noConsent: noConsent
noAutoLabelingRules: noAutoLabelingRules
noMipLabels: noMipLabels

Alias for NotificationsSourceUnion

The type of the security offering.
KnownOfferingType can be used interchangeably with OfferingType, this enum contains the known values that the service supports.

Known values supported by the service

CspmMonitorAws: CspmMonitorAws
DefenderForContainersAws: DefenderForContainersAws
DefenderForServersAws: DefenderForServersAws
DefenderForDatabasesAws: DefenderForDatabasesAws
CspmMonitorGcp: CspmMonitorGcp
CspmMonitorGithub: CspmMonitorGithub
CspmMonitorAzureDevOps: CspmMonitorAzureDevOps
DefenderForServersGcp: DefenderForServersGcp
DefenderForContainersGcp: DefenderForContainersGcp
DefenderForDatabasesGcp: DefenderForDatabasesGcp
DefenderCspmAws: DefenderCspmAws
DefenderCspmGcp: DefenderCspmGcp
CspmMonitorGitLab: CspmMonitorGitLab
CspmMonitorDockerHub: CspmMonitorDockerHub
DefenderForContainersDockerHub: DefenderForContainersDockerHub
DefenderCspmDockerHub: DefenderCspmDockerHub
CspmMonitorJFrog: CspmMonitorJFrog
DefenderForContainersJFrog: DefenderForContainersJFrog
DefenderCspmJFrog: DefenderCspmJFrog

Alias for OnPremiseResourceDetailsUnion

Details about resource onboarding status across all connectors.

OnboardedByOtherConnector - this resource has already been onboarded to another connector. This is only applicable to top-level resources. Onboarded - this resource has already been onboarded by the specified connector. NotOnboarded - this resource has not been onboarded to any connector. NotApplicable - the onboarding state is not applicable to the current endpoint.
KnownOnboardingState can be used interchangeably with OnboardingState, this enum contains the known values that the service supports.

Known values supported by the service

NotApplicable: NotApplicable
OnboardedByOtherConnector: OnboardedByOtherConnector
Onboarded: Onboarded
NotOnboarded: NotOnboarded

The status of the long run operation result of governance rule
KnownOperationResultStatus can be used interchangeably with OperationResultStatus, this enum contains the known values that the service supports.

Known values supported by the service

Succeeded: The operation succeeded
Failed: The operation failed
Canceled: The operation canceled

A valid comparer operator to use. A case-insensitive comparison will be applied for String PropertyType.
KnownOperator can be used interchangeably with Operator, this enum contains the known values that the service supports.

Known values supported by the service

Equals: Applies for decimal and non-decimal operands
GreaterThan: Applies only for decimal operands
GreaterThanOrEqualTo: Applies only for decimal operands
LesserThan: Applies only for decimal operands
LesserThanOrEqualTo: Applies only for decimal operands
NotEquals: Applies for decimal and non-decimal operands
Contains: Applies only for non-decimal operands
StartsWith: Applies only for non-decimal operands
EndsWith: Applies only for non-decimal operands

The multi cloud account's membership type in the organization
KnownOrganizationMembershipType can be used interchangeably with OrganizationMembershipType, this enum contains the known values that the service supports.

Known values supported by the service

Member: Member
Organization: Organization

The intended executor of the operation; as in Resource Based Access Control (RBAC) and audit logs UX. Default value is "user,system"
KnownOrigin can be used interchangeably with Origin, this enum contains the known values that the service supports.

Known values supported by the service

user: Indicates the operation is initiated by a user.
system: Indicates the operation is initiated by a system.
user,system: Indicates the operation is initiated by a user or system.

Indicates whether the Defender plan is enabled on the selected scope. Microsoft Defender for Cloud is provided in two pricing tiers: free and standard. The standard tier offers advanced security capabilities, while the free tier offers basic security features.
KnownPricingTier can be used interchangeably with PricingTier, this enum contains the known values that the service supports.

Known values supported by the service

Free: Get free Microsoft Defender for Cloud experience with basic security features
Standard: Get the standard Microsoft Defender for Cloud experience with advanced security features

The current provisioning state.
KnownPrivateEndpointConnectionProvisioningState can be used interchangeably with PrivateEndpointConnectionProvisioningState, this enum contains the known values that the service supports.

Known values supported by the service

Succeeded: Connection has been provisioned
Creating: Connection is being created
Deleting: Connection is being deleted
Failed: Connection provisioning has failed

The private endpoint connection status.
KnownPrivateEndpointServiceConnectionStatus can be used interchangeably with PrivateEndpointServiceConnectionStatus, this enum contains the known values that the service supports.

Known values supported by the service

Pending: Connection waiting for approval or rejection
Approved: Connection approved
Rejected: Connection Rejected

The data type of the compared operands (string, integer, floating point number or a boolean [true/false]]
KnownPropertyType can be used interchangeably with PropertyType, this enum contains the known values that the service supports.

Known values supported by the service

String: String
Integer: Integer
Number: Number
Boolean: Boolean

Type of Protocol

The current provisioning state of the resource. Indicates the status of the last operation performed on the resource.
KnownProvisioningState can be used interchangeably with ProvisioningState, this enum contains the known values that the service supports.

Known values supported by the service

Succeeded: The resource has been successfully provisioned and is ready for use.
Creating: The resource is being created. This is a transitional state.
Updating: The resource is being updated. This is a transitional state.
Deleting: The resource is being deleted. This is a transitional state.
Failed: The last operation on the resource failed. Check the error details for more information.
Canceled: The operation was canceled before completion.
InProgress: InProgress

This determines if traffic is allowed over public network. By default it is disabled.
KnownPublicNetworkAccess can be used interchangeably with PublicNetworkAccess, this enum contains the known values that the service supports.

Known values supported by the service

Enabled: Enabled
Disabled: Disabled

The rank of the sensitivity label.

Recommendation status. When the recommendation status is disabled recommendations are not generated.
KnownRecommendationConfigStatus can be used interchangeably with RecommendationConfigStatus, this enum contains the known values that the service supports.

Known values supported by the service

Disabled: Disabled
Enabled: Enabled

The cloud that the recommendation is supported on.
KnownRecommendationSupportedClouds can be used interchangeably with RecommendationSupportedClouds, this enum contains the known values that the service supports.

Known values supported by the service

Azure: Azure
AWS: AWS
GCP: GCP

The type of IoT Security recommendation.
KnownRecommendationType can be used interchangeably with RecommendationType, this enum contains the known values that the service supports.

Known values supported by the service

IoT_ACRAuthentication: Authentication schema used for pull an edge module from an ACR repository does not use Service Principal Authentication.
IoT_AgentSendsUnutilizedMessages: IoT agent message size capacity is currently underutilized, causing an increase in the number of sent messages. Adjust message intervals for better utilization.
IoT_Baseline: Identified security related system configuration issues.
IoT_EdgeHubMemOptimize: You can optimize Edge Hub memory usage by turning off protocol heads for any protocols not used by Edge modules in your solution.
IoT_EdgeLoggingOptions: Logging is disabled for this edge module.
IoT_InconsistentModuleSettings: A minority within a device security group has inconsistent Edge Module settings with the rest of their group.
IoT_InstallAgent: Install the Azure Security of Things Agent.
IoT_IPFilter_DenyAll: IP Filter Configuration should have rules defined for allowed traffic and should deny all other traffic by default.
IoT_IPFilter_PermissiveRule: An Allow IP Filter rules source IP range is too large. Overly permissive rules might expose your IoT hub to malicious intenders.
IoT_OpenPorts: A listening endpoint was found on the device.
IoT_PermissiveFirewallPolicy: An Allowed firewall policy was found (INPUT/OUTPUT). The policy should Deny all traffic by default and define rules to allow necessary communication to/from the device.
IoT_PermissiveInputFirewallRules: A rule in the firewall has been found that contains a permissive pattern for a wide range of IP addresses or Ports.
IoT_PermissiveOutputFirewallRules: A rule in the firewall has been found that contains a permissive pattern for a wide range of IP addresses or Ports.
IoT_PrivilegedDockerOptions: Edge module is configured to run in privileged mode, with extensive Linux capabilities or with host-level network access (send/receive data to host machine).
IoT_SharedCredentials: Same authentication credentials to the IoT Hub used by multiple devices. This could indicate an illegitimate device impersonating a legitimate device. It also exposes the risk of device impersonation by an attacker.
IoT_VulnerableTLSCipherSuite: Insecure TLS configurations detected. Immediate upgrade recommended.

Assessed alert severity.
KnownReportedSeverity can be used interchangeably with ReportedSeverity, this enum contains the known values that the service supports.

Known values supported by the service

Informational: Informational
Low: Low
Medium: Medium
High: High

Alias for ResourceDetailsUnion

There can be multiple identifiers of different type per alert, this field specify the identifier type.
KnownResourceIdentifierType can be used interchangeably with ResourceIdentifierType, this enum contains the known values that the service supports.

Known values supported by the service

AzureResource: AzureResource
LogAnalytics: LogAnalytics

Alias for ResourceIdentifierUnion

Type of ResourceIdentityType

The status of the resource regarding a single assessment
KnownResourceStatus can be used interchangeably with ResourceStatus, this enum contains the known values that the service supports.

Known values supported by the service

Healthy: This assessment on the resource is healthy
NotApplicable: This assessment is not applicable to this resource
OffByPolicy: This assessment is turned off by policy on this subscription
NotHealthy: This assessment on the resource is not healthy

This field is available for subscription-level only, and reflects the coverage status of the resources under the subscription. Please note: The "pricingTier" field reflects the plan status of the subscription. However, since the plan status can also be defined at the resource level, there might be misalignment between the subscription's plan status and the resource status. This field helps indicate the coverage status of the resources.
KnownResourcesCoverageStatus can be used interchangeably with ResourcesCoverageStatus, this enum contains the known values that the service supports.

Known values supported by the service

FullyCovered: This value indicates that all resources associated with the subscription have the Defender plan enabled.
PartiallyCovered: This value indicates that some resources under the subscription have the Defender plan enabled, while others have it disabled. There is a mixed coverage status among resources.
NotCovered: This value indicates that the Defender plan is disabled for all resources under the subscription. None of the resources are protected by the Defender plan.

The risk level
KnownRiskLevel can be used interchangeably with RiskLevel, this enum contains the known values that the service supports.

Known values supported by the service

None: None
Low: Low
Medium: Medium
High: High
Critical: Critical

Rule categories. Code - code scanning results. Artifact scanning results. Dependencies scanning results. IaC results. Secrets scanning results. Container scanning results.
KnownRuleCategory can be used interchangeably with RuleCategory, this enum contains the known values that the service supports.

Known values supported by the service

Code: Code
Artifacts: Artifacts
Dependencies: Dependencies
Secrets: Secrets
IaC: IaC
Containers: Containers

The rule severity.
KnownRuleSeverity can be used interchangeably with RuleSeverity, this enum contains the known values that the service supports.

Known values supported by the service

High: High severity vulnerability requiring immediate attention.
Medium: Medium severity vulnerability that should be addressed.
Low: Low severity vulnerability with minimal risk.
Informational: Informational finding that does not indicate a vulnerability.
Obsolete: The rule is obsolete and no longer applicable.

Possible states of the rule

The rule result status.
KnownRuleStatus can be used interchangeably with RuleStatus, this enum contains the known values that the service supports.

Known values supported by the service

NonFinding: No vulnerability was found for this rule.
Finding: A vulnerability was found for this rule.
InternalError: An internal error occurred while evaluating this rule.
NotApplicable: The rule is not applicable to the assessed resource.

The rule type.
KnownRuleType can be used interchangeably with RuleType, this enum contains the known values that the service supports.

Known values supported by the service

Binary: Binary
BaselineExpected: BaselineExpected
PositiveList: PositiveList
NegativeList: NegativeList

The scan operation status.
KnownScanOperationStatus can be used interchangeably with ScanOperationStatus, this enum contains the known values that the service supports.

Known values supported by the service

Passed: The scan completed successfully with no vulnerabilities found.
Failed: The scan completed but found vulnerabilities.
FailedToRun: The scan failed to execute.
InProgress: The scan is currently running.

The scan status.
KnownScanState can be used interchangeably with ScanState, this enum contains the known values that the service supports.

Known values supported by the service

Failed: Failed
FailedToRun: FailedToRun
InProgress: InProgress
Passed: Passed

The scan trigger type.
KnownScanTriggerType can be used interchangeably with ScanTriggerType, this enum contains the known values that the service supports.

Known values supported by the service

OnDemand: OnDemand
Recurring: Recurring

The scanning mode for the VM scan.
KnownScanningMode can be used interchangeably with ScanningMode, this enum contains the known values that the service supports.

Known values supported by the service

Default: Default

The status of the port
KnownStatus can be used interchangeably with Status, this enum contains the known values that the service supports.

Known values supported by the service

Revoked: Revoked
Initiated: Initiated

Type of SecurityContactName

A possible role to configure sending security notification alerts to
KnownSecurityContactRole can be used interchangeably with SecurityContactRole, this enum contains the known values that the service supports.

Known values supported by the service

AccountAdmin: If enabled, send notification on new alerts to the account admins
ServiceAdmin: If enabled, send notification on new alerts to the service admins
Owner: If enabled, send notification on new alerts to the subscription owners
Contributor: If enabled, send notification on new alerts to the subscription contributors

The security family of the discovered solution
KnownSecurityFamily can be used interchangeably with SecurityFamily, this enum contains the known values that the service supports.

Known values supported by the service

Waf: Waf
Ngfw: Ngfw
SaasWaf: SaasWaf
Va: Va

The severity to relate to the assessments generated by this Recommendation.
KnownSecurityIssue can be used interchangeably with SecurityIssue, this enum contains the known values that the service supports.

Known values supported by the service

Vulnerability: Vulnerability
ExcessivePermissions: ExcessivePermissions
AnonymousAccess: AnonymousAccess
NetworkExposure: NetworkExposure
TrafficEncryption: TrafficEncryption
BestPractices: BestPractices

Status of the IoT Security solution.
KnownSecuritySolutionStatus can be used interchangeably with SecuritySolutionStatus, this enum contains the known values that the service supports.

Known values supported by the service

Enabled: Enabled
Disabled: Disabled

The provisioningState of the vulnerability assessment capability on the VM
KnownServerVulnerabilityAssessmentPropertiesProvisioningState can be used interchangeably with ServerVulnerabilityAssessmentPropertiesProvisioningState, this enum contains the known values that the service supports.

Known values supported by the service

Succeeded: Succeeded
Failed: Failed
Canceled: Canceled
Provisioning: Provisioning
Deprovisioning: Deprovisioning

The selected vulnerability assessments provider on Azure servers in the defined scope.
KnownServerVulnerabilityAssessmentsAzureSettingSelectedProvider can be used interchangeably with ServerVulnerabilityAssessmentsAzureSettingSelectedProvider, this enum contains the known values that the service supports.

Known values supported by the service

MdeTvm: Microsoft Defender for Endpoints threat and vulnerability management.

The kind of the server vulnerability assessments setting
KnownServerVulnerabilityAssessmentsSettingKind can be used interchangeably with ServerVulnerabilityAssessmentsSettingKind, this enum contains the known values that the service supports.

Known values supported by the service

AzureServersSetting: AzureServersSetting

Type of ServerVulnerabilityAssessmentsSettingKindName

Alias for ServerVulnerabilityAssessmentsSettingUnion

the kind of the settings string
KnownSettingKind can be used interchangeably with SettingKind, this enum contains the known values that the service supports.

Known values supported by the service

DataExportSettings: DataExportSettings
AlertSuppressionSetting: AlertSuppressionSetting
AlertSyncSettings: AlertSyncSettings

Type of SettingName

Alias for SettingUnion

The severity level of the assessment
KnownSeverity can be used interchangeably with Severity, this enum contains the known values that the service supports.

Known values supported by the service

Low: Low
Medium: Medium
High: High
Critical: Critical

The severity to relate to the assessments generated by this Recommendation.
KnownSeverityEnum can be used interchangeably with SeverityEnum, this enum contains the known values that the service supports.

Known values supported by the service

High: High
Medium: Medium
Low: Low

The platform where the assessed resource resides
KnownSource can be used interchangeably with Source, this enum contains the known values that the service supports.

Known values supported by the service

Azure: Resource is in Azure
OnPremise: Resource in an on premise machine connected to Azure cloud
OnPremiseSql: SQL Resource in an on premise machine connected to Azure cloud
Aws: Aws
Gcp: Gcp
OnPremiseResourceDetails: On premise resource details

The source type that will trigger the notification
KnownSourceType can be used interchangeably with SourceType, this enum contains the known values that the service supports.

Known values supported by the service

Alert: Alert
AttackPath: AttackPath

Represents the state of a SQL Vulnerability Assessment.
KnownSqlVulnerabilityAssessmentState can be used interchangeably with SqlVulnerabilityAssessmentState, this enum contains the known values that the service supports.

Known values supported by the service

Enabled: Enabled
Disabled: Disabled

The cloud that the standard is supported on.
KnownStandardSupportedCloud can be used interchangeably with StandardSupportedCloud, this enum contains the known values that the service supports.

Known values supported by the service

Azure: Azure
AWS: AWS
GCP: GCP

The cloud that the standard is supported on.

Standard type (Custom or Default or Compliance only currently)
KnownStandardType can be used interchangeably with StandardType, this enum contains the known values that the service supports.

Known values supported by the service

Custom: Custom
Default: Default
Compliance: Compliance

Aggregative state based on the standard's supported controls states
KnownState can be used interchangeably with State, this enum contains the known values that the service supports.

Known values supported by the service

Passed: All supported regulatory compliance controls in the given standard have a passed state
Failed: At least one supported regulatory compliance control in the given standard has a state of failed
Skipped: All supported regulatory compliance controls in the given standard have a state of skipped
Unsupported: No supported regulatory compliance data for the given standard
On: Send notification on new alerts to the subscription's admins
Off: Don't send notification on new alerts to the subscription's admins

The status of the health report
KnownStatusName can be used interchangeably with StatusName, this enum contains the known values that the service supports.

Known values supported by the service

Healthy: Healthy
NotHealthy: NotHealthy
NotApplicable: NotApplicable

A description of why the status has its value
KnownStatusReason can be used interchangeably with StatusReason, this enum contains the known values that the service supports.

Known values supported by the service

Expired: Expired
UserRequested: UserRequested
NewerRequestInitiated: NewerRequestInitiated

Programmatic code for the status of the assessment
KnownSubAssessmentStatusCode can be used interchangeably with SubAssessmentStatusCode, this enum contains the known values that the service supports.

Known values supported by the service

Healthy: The resource is healthy
Unhealthy: The resource has a security issue that needs to be addressed
NotApplicable: Assessment for this resource did not happen

The available sub plans
KnownSubPlan can be used interchangeably with SubPlan, this enum contains the known values that the service supports.

Known values supported by the service

P1: P1
P2: P2

Tactic of the assessment
KnownTactics can be used interchangeably with Tactics, this enum contains the known values that the service supports.

Known values supported by the service

Reconnaissance: Reconnaissance
Resource Development: Resource Development
Initial Access: Initial Access
Execution: Execution
Persistence: Persistence
Privilege Escalation: Privilege Escalation
Defense Evasion: Defense Evasion
Credential Access: Credential Access
Discovery: Discovery
Lateral Movement: Lateral Movement
Collection: Collection
Command and Control: Command and Control
Exfiltration: Exfiltration
Impact: Impact

Type of TaskUpdateActionType

Techniques of the assessment
KnownTechniques can be used interchangeably with Techniques, this enum contains the known values that the service supports.

Known values supported by the service

Abuse Elevation Control Mechanism: Abuse Elevation Control Mechanism
Access Token Manipulation: Access Token Manipulation
Account Discovery: Account Discovery
Account Manipulation: Account Manipulation
Active Scanning: Active Scanning
Application Layer Protocol: Application Layer Protocol
Audio Capture: Audio Capture
Boot or Logon Autostart Execution: Boot or Logon Autostart Execution
Boot or Logon Initialization Scripts: Boot or Logon Initialization Scripts
Brute Force: Brute Force
Cloud Infrastructure Discovery: Cloud Infrastructure Discovery
Cloud Service Dashboard: Cloud Service Dashboard
Cloud Service Discovery: Cloud Service Discovery
Command and Scripting Interpreter: Command and Scripting Interpreter
Compromise Client Software Binary: Compromise Client Software Binary
Compromise Infrastructure: Compromise Infrastructure
Container and Resource Discovery: Container and Resource Discovery
Create Account: Create Account
Create or Modify System Process: Create or Modify System Process
Credentials from Password Stores: Credentials from Password Stores
Data Destruction: Data Destruction
Data Encrypted for Impact: Data Encrypted for Impact
Data from Cloud Storage Object: Data from Cloud Storage Object
Data from Configuration Repository: Data from Configuration Repository
Data from Information Repositories: Data from Information Repositories
Data from Local System: Data from Local System
Data Manipulation: Data Manipulation
Data Staged: Data Staged
Defacement: Defacement
Deobfuscate/Decode Files or Information: Deobfuscate/Decode Files or Information
Disk Wipe: Disk Wipe
Domain Trust Discovery: Domain Trust Discovery
Drive-by Compromise: Drive-by Compromise
Dynamic Resolution: Dynamic Resolution
Endpoint Denial of Service: Endpoint Denial of Service
Event Triggered Execution: Event Triggered Execution
Exfiltration Over Alternative Protocol: Exfiltration Over Alternative Protocol
Exploit Public-Facing Application: Exploit Public-Facing Application
Exploitation for Client Execution: Exploitation for Client Execution
Exploitation for Credential Access: Exploitation for Credential Access
Exploitation for Defense Evasion: Exploitation for Defense Evasion
Exploitation for Privilege Escalation: Exploitation for Privilege Escalation
Exploitation of Remote Services: Exploitation of Remote Services
External Remote Services: External Remote Services
Fallback Channels: Fallback Channels
File and Directory Discovery: File and Directory Discovery
Gather Victim Network Information: Gather Victim Network Information
Hide Artifacts: Hide Artifacts
Hijack Execution Flow: Hijack Execution Flow
Impair Defenses: Impair Defenses
Implant Container Image: Implant Container Image
Indicator Removal on Host: Indicator Removal on Host
Indirect Command Execution: Indirect Command Execution
Ingress Tool Transfer: Ingress Tool Transfer
Input Capture: Input Capture
Inter-Process Communication: Inter-Process Communication
Lateral Tool Transfer: Lateral Tool Transfer
Man-in-the-Middle: Man-in-the-Middle
Masquerading: Masquerading
Modify Authentication Process: Modify Authentication Process
Modify Registry: Modify Registry
Network Denial of Service: Network Denial of Service
Network Service Scanning: Network Service Scanning
Network Sniffing: Network Sniffing
Non-Application Layer Protocol: Non-Application Layer Protocol
Non-Standard Port: Non-Standard Port
Obtain Capabilities: Obtain Capabilities
Obfuscated Files or Information: Obfuscated Files or Information
Office Application Startup: Office Application Startup
OS Credential Dumping: OS Credential Dumping
Permission Groups Discovery: Permission Groups Discovery
Phishing: Phishing
Pre-OS Boot: Pre-OS Boot
Process Discovery: Process Discovery
Process Injection: Process Injection
Protocol Tunneling: Protocol Tunneling
Proxy: Proxy
Query Registry: Query Registry
Remote Access Software: Remote Access Software
Remote Service Session Hijacking: Remote Service Session Hijacking
Remote Services: Remote Services
Remote System Discovery: Remote System Discovery
Resource Hijacking: Resource Hijacking
Scheduled Task/Job: Scheduled Task/Job
Screen Capture: Screen Capture
Search Victim-Owned Websites: Search Victim-Owned Websites
Server Software Component: Server Software Component
Service Stop: Service Stop
Signed Binary Proxy Execution: Signed Binary Proxy Execution
Software Deployment Tools: Software Deployment Tools
SQL Stored Procedures: SQL Stored Procedures
Steal or Forge Kerberos Tickets: Steal or Forge Kerberos Tickets
Subvert Trust Controls: Subvert Trust Controls
Supply Chain Compromise: Supply Chain Compromise
System Information Discovery: System Information Discovery
Taint Shared Content: Taint Shared Content
Traffic Signaling: Traffic Signaling
Transfer Data to Cloud Account: Transfer Data to Cloud Account
Trusted Relationship: Trusted Relationship
Unsecured Credentials: Unsecured Credentials
User Execution: User Execution
Valid Accounts: Valid Accounts
Windows Management Instrumentation: Windows Management Instrumentation
File and Directory Permissions Modification: File and Directory Permissions Modification

Threats impact of the assessment
KnownThreats can be used interchangeably with Threats, this enum contains the known values that the service supports.

Known values supported by the service

accountBreach: accountBreach
dataExfiltration: dataExfiltration
dataSpillage: dataSpillage
maliciousInsider: maliciousInsider
elevationOfPrivilege: elevationOfPrivilege
threatResistance: threatResistance
missingCoverage: missingCoverage
denialOfService: denialOfService

Alias for ThresholdCustomAlertRuleUnion

Alias for TimeWindowCustomAlertRuleUnion

The Vulnerability Assessment solution to be provisioned. Can be either 'TVM' or 'Qualys'
KnownType can be used interchangeably with Type, this enum contains the known values that the service supports.

Known values supported by the service

Qualys: Qualys
TVM: TVM

Unmasked IP address logging status
KnownUnmaskedIpLoggingStatus can be used interchangeably with UnmaskedIpLoggingStatus, this enum contains the known values that the service supports.

Known values supported by the service

Disabled: Unmasked IP logging is disabled
Enabled: Unmasked IP logging is enabled

The user impact of the assessment
KnownUserImpact can be used interchangeably with UserImpact, this enum contains the known values that the service supports.

Known values supported by the service

Low: Low
Moderate: Moderate
High: High

The value type of the items in the list.
KnownValueType can be used interchangeably with ValueType, this enum contains the known values that the service supports.

Known values supported by the service

IpCidr: An IP range in CIDR format (e.g. '192.168.0.1/8').
String: Any string value.

An enum to describe Azure Cloud environments.

The connectivity state of the external AAD solution

Enum. Indicates the action type.

ActionableRemediation Setting. None - the setting was never set. Enabled - ActionableRemediation is enabled. Disabled - ActionableRemediation is disabled.

Data types sent to workspace.

Workspace type.

Agentless Enablement states.

The risk level of the threat that was detected. Learn more: https://docs.microsoft.com/en-us/azure/security-center/security-center-alerts-overview#how-are-alerts-classified.

The life cycle status of the alert.

Configuration of PR Annotations on default branch.

Enabled - PR Annotations are enabled on the resource's default branch. Disabled - PR Annotations are disabled on the resource's default branch.

The application source, what it affects, e.g. Assessments

Extensible enum. Indicates the action type. "Internal" refers to actions that are for internal only APIs.

Sub-assessment resource type

Programmatic code for the status of the assessment

BuiltIn if the assessment based on built-in Azure Policy definition, Custom if the assessment based on custom Azure Policy definition

Attest category of this assignment

The authentication type

AutoDiscovery states.

Describes what kind of security agent provisioning action to take

Optional. Specifies the automated response action to take when malware is detected.

Optional. Write scan result on BlobIndexTags by default.

Alert Simulator supported bundles.

The categories of resource that is at risk when the assessment is unhealthy

The multi cloud resource's cloud name.

Known values of ConnectionType that the service accepts.

The type of security control (for example, BuiltIn)

The kind of entity that created the resource.

Known values of DataSource that the service accepts.

The provisioning state of the resource.

Pending - Provisioning pending. Failed - Provisioning failed. Succeeded - Successful provisioning. Canceled - Provisioning canceled. PendingDeletion - Deletion pending. DeletionSuccess - Deletion successful. DeletionFailure - Deletion failure.

Expected effect of this assignment (Audit/Exempt/Attest)

If set to "False", it allows the descendants of this scope to override the pricing configuration set on this scope (allows setting inherited="False"). If set to "True", it prevents overrides and forces this pricing configuration on all the descendants of this scope. This field is only available for subscription-level pricing.

The type of the environment data.

A valid event source type.

Exemption category of this assignment

Known values of ExpandControlsEnum that the service accepts.

Known values of ExpandEnum that the service accepts.

Known values of ExportData that the service accepts.

The kind of the external solution

The owner type for the governance rule owner source

The governance rule source, what the rule affects, e.g. Assessments

The rule type of the governance rule, defines the source of the rule e.g. Integrated

The implementation effort required to remediate this assessment

Known values of InformationProtectionPolicyName that the service accepts.

Update Settings.

Enabled - Resource should inherit configurations from parent. Disabled - Resource should not inherit configurations from parent.

"inherited" = "True" indicates that the current scope inherits its pricing configuration from its parent. The ID of the parent scope that provides the inherited configuration is displayed in the "inheritedFrom" field. On the other hand, "inherited" = "False" indicates that the current scope has its own pricing configuration explicitly set, and does not inherit from its parent. This field is read only and available only for resource-level pricing.

The kill chain related intent behind the alert. For list of supported values, and explanations of Azure Security Center's supported kill chain intents.

Types for inventory kind.

Types for inventory list.

Indicates whether the extension is enabled.

The kind of alert simulation.

Defines the minimal attack path risk level which will be sent as email notifications

Defines the minimal alert severity which will be sent as email notifications

Microsoft information protection integration status

The type of the security offering.

Details about resource onboarding status across all connectors.

OnboardedByOtherConnector - this resource has already been onboarded to another connector. This is only applicable to top-level resources. Onboarded - this resource has already been onboarded by the specified connector. NotOnboarded - this resource has not been onboarded to any connector. NotApplicable - the onboarding state is not applicable to the current endpoint.

The status of the long run operation result of governance rule

A valid comparer operator to use. A case-insensitive comparison will be applied for String PropertyType.

The multi cloud account's membership type in the organization

The intended executor of the operation; as in Resource Based Access Control (RBAC) and audit logs UX. Default value is "user,system"

Indicates whether the Defender plan is enabled on the selected scope. Microsoft Defender for Cloud is provided in two pricing tiers: free and standard. The standard tier offers advanced security capabilities, while the free tier offers basic security features.

The current provisioning state.

The private endpoint connection status.

The data type of the compared operands (string, integer, floating point number or a boolean [true/false]]

Known values of Protocol that the service accepts.

The current provisioning state of the resource. Indicates the status of the last operation performed on the resource.

This determines if traffic is allowed over public network. By default it is disabled.

Recommendation status. When the recommendation status is disabled recommendations are not generated.

The cloud that the recommendation is supported on.

The type of IoT Security recommendation.

Assessed alert severity.

There can be multiple identifiers of different type per alert, this field specify the identifier type.

The status of the resource regarding a single assessment

This field is available for subscription-level only, and reflects the coverage status of the resources under the subscription. Please note: The "pricingTier" field reflects the plan status of the subscription. However, since the plan status can also be defined at the resource level, there might be misalignment between the subscription's plan status and the resource status. This field helps indicate the coverage status of the resources.

The risk level

Rule categories. Code - code scanning results. Artifact scanning results. Dependencies scanning results. IaC results. Secrets scanning results. Container scanning results.

The rule severity.

The rule result status.

The rule type.

The scan operation status.

The scan status.

The scan trigger type.

The scanning mode for the VM scan.

Known values of SecurityContactName that the service accepts.

A possible role to configure sending security notification alerts to

The security family of the discovered solution

The severity to relate to the assessments generated by this Recommendation.

Status of the IoT Security solution.

The provisioningState of the vulnerability assessment capability on the VM

The selected vulnerability assessments provider on Azure servers in the defined scope.

The kind of the server vulnerability assessments setting

Known values of ServerVulnerabilityAssessmentsSettingKindName that the service accepts.

the kind of the settings string

Known values of SettingName that the service accepts.

The severity level of the assessment

The severity to relate to the assessments generated by this Recommendation.

The platform where the assessed resource resides

The source type that will trigger the notification

Represents the state of a SQL Vulnerability Assessment.

The cloud that the standard is supported on.

Standard type (Custom or Default or Compliance only currently)

Aggregative state based on the standard's supported controls states

The status of the port

The status of the health report

A description of why the status has its value

Programmatic code for the status of the assessment

The available sub plans

Tactic of the assessment

Known values of TaskUpdateActionType that the service accepts.

Techniques of the assessment

Threats impact of the assessment

The Vulnerability Assessment solution to be provisioned. Can be either 'TVM' or 'Qualys'

Unmasked IP address logging status

The user impact of the assessment

The value type of the items in the list.

Typeguard for RestError

Creates a poller from the serialized state of another poller. This can be useful when you want to create pollers on a different host or a poller needs to be constructed after the original one is not in scope.

A custom error type for failed pipeline requests.