Package com.azure.resourcemanager.securityinsights.models

Class MicrosoftSecurityIncidentCreationAlertRule

  • public final class MicrosoftSecurityIncidentCreationAlertRule
extends AlertRuleInner
    Represents MicrosoftSecurityIncidentCreation rule.

    • Constructor Detail

      • MicrosoftSecurityIncidentCreationAlertRule

        public MicrosoftSecurityIncidentCreationAlertRule()

    • Method Detail

      • alertRuleTemplateName

        public String alertRuleTemplateName()
        Get the alertRuleTemplateName property: The Name of the alert rule template used to create this rule.
        Returns:
        the alertRuleTemplateName value.

      • withAlertRuleTemplateName

        public MicrosoftSecurityIncidentCreationAlertRule withAlertRuleTemplateName​(String alertRuleTemplateName)
        Set the alertRuleTemplateName property: The Name of the alert rule template used to create this rule.
        Parameters:
        alertRuleTemplateName - the alertRuleTemplateName value to set.
        Returns:
        the MicrosoftSecurityIncidentCreationAlertRule object itself.

      • description

        public String description()
        Get the description property: The description of the alert rule.
        Returns:
        the description value.

      • withDescription

        public MicrosoftSecurityIncidentCreationAlertRule withDescription​(String description)
        Set the description property: The description of the alert rule.
        Parameters:
        description - the description value to set.
        Returns:
        the MicrosoftSecurityIncidentCreationAlertRule object itself.

      • displayName

        public String displayName()
        Get the displayName property: The display name for alerts created by this alert rule.
        Returns:
        the displayName value.

      • withDisplayName

        public MicrosoftSecurityIncidentCreationAlertRule withDisplayName​(String displayName)
        Set the displayName property: The display name for alerts created by this alert rule.
        Parameters:
        displayName - the displayName value to set.
        Returns:
        the MicrosoftSecurityIncidentCreationAlertRule object itself.

      • enabled

        public Boolean enabled()
        Get the enabled property: Determines whether this alert rule is enabled or disabled.
        Returns:
        the enabled value.

      • withEnabled

        public MicrosoftSecurityIncidentCreationAlertRule withEnabled​(Boolean enabled)
        Set the enabled property: Determines whether this alert rule is enabled or disabled.
        Parameters:
        enabled - the enabled value to set.
        Returns:
        the MicrosoftSecurityIncidentCreationAlertRule object itself.

      • lastModifiedUtc

        public OffsetDateTime lastModifiedUtc()
        Get the lastModifiedUtc property: The last time that this alert has been modified.
        Returns:
        the lastModifiedUtc value.

      • displayNamesFilter

        public List<String> displayNamesFilter()
        Get the displayNamesFilter property: the alerts' displayNames on which the cases will be generated.
        Returns:
        the displayNamesFilter value.

      • withDisplayNamesFilter

        public MicrosoftSecurityIncidentCreationAlertRule withDisplayNamesFilter​(List<String> displayNamesFilter)
        Set the displayNamesFilter property: the alerts' displayNames on which the cases will be generated.
        Parameters:
        displayNamesFilter - the displayNamesFilter value to set.
        Returns:
        the MicrosoftSecurityIncidentCreationAlertRule object itself.

      • displayNamesExcludeFilter

        public List<String> displayNamesExcludeFilter()
        Get the displayNamesExcludeFilter property: the alerts' displayNames on which the cases will not be generated.
        Returns:
        the displayNamesExcludeFilter value.

      • withDisplayNamesExcludeFilter

        public MicrosoftSecurityIncidentCreationAlertRule withDisplayNamesExcludeFilter​(List<String> displayNamesExcludeFilter)
        Set the displayNamesExcludeFilter property: the alerts' displayNames on which the cases will not be generated.
        Parameters:
        displayNamesExcludeFilter - the displayNamesExcludeFilter value to set.
        Returns:
        the MicrosoftSecurityIncidentCreationAlertRule object itself.

      • productFilter

        public MicrosoftSecurityProductName productFilter()
        Get the productFilter property: The alerts' productName on which the cases will be generated.
        Returns:
        the productFilter value.

      • withProductFilter

        public MicrosoftSecurityIncidentCreationAlertRule withProductFilter​(MicrosoftSecurityProductName productFilter)
        Set the productFilter property: The alerts' productName on which the cases will be generated.
        Parameters:
        productFilter - the productFilter value to set.
        Returns:
        the MicrosoftSecurityIncidentCreationAlertRule object itself.

      • severitiesFilter

        public List<AlertSeverity> severitiesFilter()
        Get the severitiesFilter property: the alerts' severities on which the cases will be generated.
        Returns:
        the severitiesFilter value.

      • withSeveritiesFilter

        public MicrosoftSecurityIncidentCreationAlertRule withSeveritiesFilter​(List<AlertSeverity> severitiesFilter)
        Set the severitiesFilter property: the alerts' severities on which the cases will be generated.
        Parameters:
        severitiesFilter - the severitiesFilter value to set.
        Returns:
        the MicrosoftSecurityIncidentCreationAlertRule object itself.