IoTSecurityAggregatedAlert interface
Security Solution Aggregated Alert information
- Extends
Properties
| action |
IoT Security solution alert response. |
| aggregated |
Date of detection. |
| alert |
Display name of the alert type. |
| alert |
Name of the alert type. |
| count | Number of alerts occurrences within the aggregated time window. |
| description | Description of the suspected vulnerability and meaning. |
| effected |
Azure resource ID of the resource that received the alerts. |
| log |
Log analytics query for getting the list of affected devices/alerts. |
| remediation |
Recommended steps for remediation. |
| reported |
Assessed alert severity. |
| system |
The type of the alerted resource (Azure, Non-Azure). |
| tags | Resource tags |
| top |
10 devices with the highest number of occurrences of this alert type, on this day. |
| vendor |
Name of the organization that raised the alert. |
Inherited Properties
| id | Fully qualified resource ID for the resource. Ex - /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/{resourceType}/{resourceName} |
| name | The name of the resource |
| system |
Azure Resource Manager metadata containing createdBy and modifiedBy information. |
| type | The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts" |
Property Details
actionTaken
IoT Security solution alert response.
actionTaken?: stringProperty Value
string
aggregatedDateUtc
Date of detection.
aggregatedDateUtc?: DateProperty Value
Date
alertDisplayName
Display name of the alert type.
alertDisplayName?: stringProperty Value
string
alertType
Name of the alert type.
alertType?: stringProperty Value
string
count
Number of alerts occurrences within the aggregated time window.
count?: numberProperty Value
number
description
Description of the suspected vulnerability and meaning.
description?: stringProperty Value
string
effectedResourceType
Azure resource ID of the resource that received the alerts.
effectedResourceType?: stringProperty Value
string
logAnalyticsQuery
Log analytics query for getting the list of affected devices/alerts.
logAnalyticsQuery?: stringProperty Value
string
remediationSteps
Recommended steps for remediation.
remediationSteps?: stringProperty Value
string
reportedSeverity
Assessed alert severity.
reportedSeverity?: stringProperty Value
string
systemSource
The type of the alerted resource (Azure, Non-Azure).
systemSource?: stringProperty Value
string
tags
Resource tags
tags?: Record<string, string>Property Value
Record<string, string>
topDevicesList
10 devices with the highest number of occurrences of this alert type, on this day.
topDevicesList?: IoTSecurityAggregatedAlertPropertiesTopDevicesListItem[]Property Value
vendorName
Name of the organization that raised the alert.
vendorName?: stringProperty Value
string
Inherited Property Details
id
Fully qualified resource ID for the resource. Ex - /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/{resourceType}/{resourceName}
id?: stringProperty Value
string
Inherited From ProxyResource.id
name
systemData
Azure Resource Manager metadata containing createdBy and modifiedBy information.
systemData?: SystemDataProperty Value
Inherited From ProxyResource.systemData
type
The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
type?: stringProperty Value
string
Inherited From ProxyResource.type
