Package com.azure.resourcemanager.securityinsights.models

Class NrtAlertRuleTemplate

java.lang.Object
com.azure.core.management.ProxyResource
com.azure.resourcemanager.securityinsights.fluent.models.AlertRuleTemplateInner
com.azure.resourcemanager.securityinsights.models.NrtAlertRuleTemplate
public final class NrtAlertRuleTemplate extends AlertRuleTemplateInner
Represents NRT alert rule template.

  • Constructor Details

    • NrtAlertRuleTemplate

      public NrtAlertRuleTemplate()

  • Method Details

    • query

      public String query()
      Get the query property: The query that creates alerts for this rule.
      Returns:
      the query value.

    • withQuery

      public NrtAlertRuleTemplate withQuery(String query)
      Set the query property: The query that creates alerts for this rule.
      Parameters:
      query - the query value to set.
      Returns:
      the NrtAlertRuleTemplate object itself.

    • severity

      public AlertSeverity severity()
      Get the severity property: The severity for alerts created by this alert rule.
      Returns:
      the severity value.

    • withSeverity

      public NrtAlertRuleTemplate withSeverity(AlertSeverity severity)
      Set the severity property: The severity for alerts created by this alert rule.
      Parameters:
      severity - the severity value to set.
      Returns:
      the NrtAlertRuleTemplate object itself.

    • version

      public String version()
      Get the version property: The version of this template - in format <a.b.c>, where all are numbers. For example <1.0.2>.
      Returns:
      the version value.

    • withVersion

      public NrtAlertRuleTemplate withVersion(String version)
      Set the version property: The version of this template - in format <a.b.c>, where all are numbers. For example <1.0.2>.
      Parameters:
      version - the version value to set.
      Returns:
      the NrtAlertRuleTemplate object itself.

    • customDetails

      public Map<String,String> customDetails()
      Get the customDetails property: Dictionary of string key-value pairs of columns to be attached to the alert.
      Returns:
      the customDetails value.

    • withCustomDetails

      public NrtAlertRuleTemplate withCustomDetails(Map<String,String> customDetails)
      Set the customDetails property: Dictionary of string key-value pairs of columns to be attached to the alert.
      Parameters:
      customDetails - the customDetails value to set.
      Returns:
      the NrtAlertRuleTemplate object itself.

    • entityMappings

      public List<EntityMapping> entityMappings()
      Get the entityMappings property: Array of the entity mappings of the alert rule.
      Returns:
      the entityMappings value.

    • withEntityMappings

      public NrtAlertRuleTemplate withEntityMappings(List<EntityMapping> entityMappings)
      Set the entityMappings property: Array of the entity mappings of the alert rule.
      Parameters:
      entityMappings - the entityMappings value to set.
      Returns:
      the NrtAlertRuleTemplate object itself.

    • alertDetailsOverride

      public AlertDetailsOverride alertDetailsOverride()
      Get the alertDetailsOverride property: The alert details override settings.
      Returns:
      the alertDetailsOverride value.

    • withAlertDetailsOverride

      public NrtAlertRuleTemplate withAlertDetailsOverride(AlertDetailsOverride alertDetailsOverride)
      Set the alertDetailsOverride property: The alert details override settings.
      Parameters:
      alertDetailsOverride - the alertDetailsOverride value to set.
      Returns:
      the NrtAlertRuleTemplate object itself.

    • eventGroupingSettings

      public EventGroupingSettings eventGroupingSettings()
      Get the eventGroupingSettings property: The event grouping settings.
      Returns:
      the eventGroupingSettings value.

    • withEventGroupingSettings

      public NrtAlertRuleTemplate withEventGroupingSettings(EventGroupingSettings eventGroupingSettings)
      Set the eventGroupingSettings property: The event grouping settings.
      Parameters:
      eventGroupingSettings - the eventGroupingSettings value to set.
      Returns:
      the NrtAlertRuleTemplate object itself.

    • tactics

      public List<AttackTactic> tactics()
      Get the tactics property: The tactics of the alert rule.
      Returns:
      the tactics value.

    • withTactics

      public NrtAlertRuleTemplate withTactics(List<AttackTactic> tactics)
      Set the tactics property: The tactics of the alert rule.
      Parameters:
      tactics - the tactics value to set.
      Returns:
      the NrtAlertRuleTemplate object itself.

    • techniques

      public List<String> techniques()
      Get the techniques property: The techniques of the alert rule.
      Returns:
      the techniques value.

    • withTechniques

      public NrtAlertRuleTemplate withTechniques(List<String> techniques)
      Set the techniques property: The techniques of the alert rule.
      Parameters:
      techniques - the techniques value to set.
      Returns:
      the NrtAlertRuleTemplate object itself.

    • alertRulesCreatedByTemplateCount

      public Integer alertRulesCreatedByTemplateCount()
      Get the alertRulesCreatedByTemplateCount property: the number of alert rules that were created by this template.
      Returns:
      the alertRulesCreatedByTemplateCount value.

    • withAlertRulesCreatedByTemplateCount

      public NrtAlertRuleTemplate withAlertRulesCreatedByTemplateCount(Integer alertRulesCreatedByTemplateCount)
      Set the alertRulesCreatedByTemplateCount property: the number of alert rules that were created by this template.
      Parameters:
      alertRulesCreatedByTemplateCount - the alertRulesCreatedByTemplateCount value to set.
      Returns:
      the NrtAlertRuleTemplate object itself.

    • lastUpdatedDateUtc

      public OffsetDateTime lastUpdatedDateUtc()
      Get the lastUpdatedDateUtc property: The last time that this alert rule template has been updated.
      Returns:
      the lastUpdatedDateUtc value.

    • createdDateUtc

      public OffsetDateTime createdDateUtc()
      Get the createdDateUtc property: The time that this alert rule template has been added.
      Returns:
      the createdDateUtc value.

    • description

      public String description()
      Get the description property: The description of the alert rule template.
      Returns:
      the description value.

    • withDescription

      public NrtAlertRuleTemplate withDescription(String description)
      Set the description property: The description of the alert rule template.
      Parameters:
      description - the description value to set.
      Returns:
      the NrtAlertRuleTemplate object itself.

    • displayName

      public String displayName()
      Get the displayName property: The display name for alert rule template.
      Returns:
      the displayName value.

    • withDisplayName

      public NrtAlertRuleTemplate withDisplayName(String displayName)
      Set the displayName property: The display name for alert rule template.
      Parameters:
      displayName - the displayName value to set.
      Returns:
      the NrtAlertRuleTemplate object itself.

    • requiredDataConnectors

      public List<AlertRuleTemplateDataSource> requiredDataConnectors()
      Get the requiredDataConnectors property: The required data sources for this template.
      Returns:
      the requiredDataConnectors value.

    • withRequiredDataConnectors

      public NrtAlertRuleTemplate withRequiredDataConnectors(List<AlertRuleTemplateDataSource> requiredDataConnectors)
      Set the requiredDataConnectors property: The required data sources for this template.
      Parameters:
      requiredDataConnectors - the requiredDataConnectors value to set.
      Returns:
      the NrtAlertRuleTemplate object itself.

    • status

      public TemplateStatus status()
      Get the status property: The alert rule template status.
      Returns:
      the status value.

    • withStatus

      public NrtAlertRuleTemplate withStatus(TemplateStatus status)
      Set the status property: The alert rule template status.
      Parameters:
      status - the status value to set.
      Returns:
      the NrtAlertRuleTemplate object itself.

    • validate

      public void validate()
      Validates the instance.
      Overrides:
      validate in class AlertRuleTemplateInner
      Throws:
      IllegalArgumentException - thrown if the instance is not valid.