Class: MicrosoftGraph::Models::SecurityDeviceEvidence

Inherits:

SecurityAlertEvidence

• Object
• SecurityAlertEvidence
• MicrosoftGraph::Models::SecurityDeviceEvidence

Includes:

MicrosoftKiotaAbstractions::Parsable

Defined in:

lib/models/security_device_evidence.rb

Class Method Summary

• .create_from_discriminator_value(parse_node) ⇒ Object

  Creates a new instance of the appropriate class based on discriminator value.

Instance Method Summary

• #azure_ad_device_id ⇒ Object

  Gets the azureAdDeviceId property value.

• #azure_ad_device_id=(value) ⇒ Object

  Sets the azureAdDeviceId property value.

• #defender_av_status ⇒ Object

  Gets the defenderAvStatus property value.

• #defender_av_status=(value) ⇒ Object

  Sets the defenderAvStatus property value.

• #device_dns_name ⇒ Object

  Gets the deviceDnsName property value.

• #device_dns_name=(value) ⇒ Object

  Sets the deviceDnsName property value.

• #first_seen_date_time ⇒ Object

  Gets the firstSeenDateTime property value.

• #first_seen_date_time=(value) ⇒ Object

  Sets the firstSeenDateTime property value.

• #get_field_deserializers ⇒ Object

  The deserialization information for the current model.

• #health_status ⇒ Object

  Gets the healthStatus property value.

• #health_status=(value) ⇒ Object

  Sets the healthStatus property value.

• #initialize ⇒ Object constructor

  Instantiates a new securityDeviceEvidence and sets the default values.

• #ip_interfaces ⇒ Object

  Gets the ipInterfaces property value.

• #ip_interfaces=(value) ⇒ Object

  Sets the ipInterfaces property value.

• #logged_on_users ⇒ Object

  Gets the loggedOnUsers property value.

• #logged_on_users=(value) ⇒ Object

  Sets the loggedOnUsers property value.

• #mde_device_id ⇒ Object

  Gets the mdeDeviceId property value.

• #mde_device_id=(value) ⇒ Object

  Sets the mdeDeviceId property value.

• #onboarding_status ⇒ Object

  Gets the onboardingStatus property value.

• #onboarding_status=(value) ⇒ Object

  Sets the onboardingStatus property value.

• #os_build ⇒ Object

  Gets the osBuild property value.

• #os_build=(value) ⇒ Object

  Sets the osBuild property value.

• #os_platform ⇒ Object

  Gets the osPlatform property value.

• #os_platform=(value) ⇒ Object

  Sets the osPlatform property value.

• #rbac_group_id ⇒ Object

  Gets the rbacGroupId property value.

• #rbac_group_id=(value) ⇒ Object

  Sets the rbacGroupId property value.

• #rbac_group_name ⇒ Object

  Gets the rbacGroupName property value.

• #rbac_group_name=(value) ⇒ Object

  Sets the rbacGroupName property value.

• #risk_score ⇒ Object

  Gets the riskScore property value.

• #risk_score=(value) ⇒ Object

  Sets the riskScore property value.

• #serialize(writer) ⇒ Object

  Serializes information the current object.

• #version ⇒ Object

  Gets the version property value.

• #version=(value) ⇒ Object

  Sets the version property value.

• #vm_metadata ⇒ Object

  Gets the vmMetadata property value.

• #vm_metadata=(value) ⇒ Object

  Sets the vmMetadata property value.

Methods inherited from SecurityAlertEvidence

#additional_data, #additional_data=, #created_date_time, #created_date_time=, #detailed_roles, #detailed_roles=, #odata_type, #odata_type=, #remediation_status, #remediation_status=, #remediation_status_details, #remediation_status_details=, #roles, #roles=, #tags, #tags=, #verdict, #verdict=

Constructor Details

#initialize ⇒ Object

Instantiates a new securityDeviceEvidence and sets the default values.

# File 'lib/models/security_device_evidence.rb', line 77

def initialize()
    super
    @odata_type = "#microsoft.graph.security.deviceEvidence"
end

Class Method Details

.create_from_discriminator_value(parse_node) ⇒ Object

Creates a new instance of the appropriate class based on discriminator value

Parameters:

• parse_node —

  The parse node to use to read the discriminator value and create the object

Returns:

• a security_device_evidence

Raises:

• (StandardError)

# File 'lib/models/security_device_evidence.rb', line 86

def self.create_from_discriminator_value(parse_node)
    raise StandardError, 'parse_node cannot be null' if parse_node.nil?
    return SecurityDeviceEvidence.new
end

Instance Method Details

#azure_ad_device_id ⇒ Object

Gets the azureAdDeviceId property value. A unique identifier assigned to a device by Azure Active Directory (Azure AD) when device is Azure AD-joined.

Returns:

• a string

# File 'lib/models/security_device_evidence.rb', line 62

def azure_ad_device_id
    return @azure_ad_device_id
end

#azure_ad_device_id=(value) ⇒ Object

Sets the azureAdDeviceId property value. A unique identifier assigned to a device by Azure Active Directory (Azure AD) when device is Azure AD-joined.

Parameters:

• value —

  Value to set for the azureAdDeviceId property.

Returns:

• a void

# File 'lib/models/security_device_evidence.rb', line 70

def azure_ad_device_id=(value)
    @azure_ad_device_id = value
end

#defender_av_status ⇒ Object

Gets the defenderAvStatus property value. State of the Defender AntiMalware engine. The possible values are: notReporting, disabled, notUpdated, updated, unknown, notSupported, unknownFutureValue.

Returns:

• a security_defender_av_status

# File 'lib/models/security_device_evidence.rb', line 94

def defender_av_status
    return @defender_av_status
end

#defender_av_status=(value) ⇒ Object

Sets the defenderAvStatus property value. State of the Defender AntiMalware engine. The possible values are: notReporting, disabled, notUpdated, updated, unknown, notSupported, unknownFutureValue.

Parameters:

• value —

  Value to set for the defenderAvStatus property.

Returns:

• a void

# File 'lib/models/security_device_evidence.rb', line 102

def defender_av_status=(value)
    @defender_av_status = value
end

#device_dns_name ⇒ Object

Gets the deviceDnsName property value. The fully qualified domain name (FQDN) for the device.

Returns:

• a string

# File 'lib/models/security_device_evidence.rb', line 109

def device_dns_name
    return @device_dns_name
end

#device_dns_name=(value) ⇒ Object

Sets the deviceDnsName property value. The fully qualified domain name (FQDN) for the device.

Parameters:

• value —

  Value to set for the deviceDnsName property.

Returns:

• a void

# File 'lib/models/security_device_evidence.rb', line 117

def device_dns_name=(value)
    @device_dns_name = value
end

#first_seen_date_time ⇒ Object

Gets the firstSeenDateTime property value. The date and time when the device was first seen.

Returns:

• a date_time

# File 'lib/models/security_device_evidence.rb', line 124

def first_seen_date_time
    return @first_seen_date_time
end

#first_seen_date_time=(value) ⇒ Object

Sets the firstSeenDateTime property value. The date and time when the device was first seen.

Parameters:

• value —

  Value to set for the firstSeenDateTime property.

Returns:

• a void

# File 'lib/models/security_device_evidence.rb', line 132

def first_seen_date_time=(value)
    @first_seen_date_time = value
end

#get_field_deserializers ⇒ Object

The deserialization information for the current model

Returns:

• a i_dictionary

# File 'lib/models/security_device_evidence.rb', line 139

def get_field_deserializers()
    return super.merge({
        "azureAdDeviceId" => lambda {|n| @azure_ad_device_id = n.get_string_value() },
        "defenderAvStatus" => lambda {|n| @defender_av_status = n.get_enum_value(MicrosoftGraph::Models::SecurityDefenderAvStatus) },
        "deviceDnsName" => lambda {|n| @device_dns_name = n.get_string_value() },
        "firstSeenDateTime" => lambda {|n| @first_seen_date_time = n.get_date_time_value() },
        "healthStatus" => lambda {|n| @health_status = n.get_enum_value(MicrosoftGraph::Models::SecurityDeviceHealthStatus) },
        "ipInterfaces" => lambda {|n| @ip_interfaces = n.get_collection_of_primitive_values(String) },
        "loggedOnUsers" => lambda {|n| @logged_on_users = n.get_collection_of_object_values(lambda {|pn| MicrosoftGraph::Models::SecurityLoggedOnUser.create_from_discriminator_value(pn) }) },
        "mdeDeviceId" => lambda {|n| @mde_device_id = n.get_string_value() },
        "onboardingStatus" => lambda {|n| @onboarding_status = n.get_enum_value(MicrosoftGraph::Models::SecurityOnboardingStatus) },
        "osBuild" => lambda {|n| @os_build = n.get_object_value(lambda {|pn| Int64.create_from_discriminator_value(pn) }) },
        "osPlatform" => lambda {|n| @os_platform = n.get_string_value() },
        "rbacGroupId" => lambda {|n| @rbac_group_id = n.get_number_value() },
        "rbacGroupName" => lambda {|n| @rbac_group_name = n.get_string_value() },
        "riskScore" => lambda {|n| @risk_score = n.get_enum_value(MicrosoftGraph::Models::SecurityDeviceRiskScore) },
        "version" => lambda {|n| @version = n.get_string_value() },
        "vmMetadata" => lambda {|n| @vm_metadata = n.get_object_value(lambda {|pn| MicrosoftGraph::Models::SecurityVmMetadata.create_from_discriminator_value(pn) }) },
    })
end

#health_status ⇒ Object

Gets the healthStatus property value. The health state of the device.The possible values are: active, inactive, impairedCommunication, noSensorData, noSensorDataImpairedCommunication, unknown, unknownFutureValue.

Returns:

• a security_device_health_status

# File 'lib/models/security_device_evidence.rb', line 163

def health_status
    return @health_status
end

#health_status=(value) ⇒ Object

Sets the healthStatus property value. The health state of the device.The possible values are: active, inactive, impairedCommunication, noSensorData, noSensorDataImpairedCommunication, unknown, unknownFutureValue.

Parameters:

• value —

  Value to set for the healthStatus property.

Returns:

• a void

# File 'lib/models/security_device_evidence.rb', line 171

def health_status=(value)
    @health_status = value
end

#ip_interfaces ⇒ Object

Gets the ipInterfaces property value. Ip interfaces of the device during the time of the alert.

Returns:

• a string

# File 'lib/models/security_device_evidence.rb', line 178

def ip_interfaces
    return @ip_interfaces
end

#ip_interfaces=(value) ⇒ Object

Sets the ipInterfaces property value. Ip interfaces of the device during the time of the alert.

Parameters:

• value —

  Value to set for the ipInterfaces property.

Returns:

• a void

# File 'lib/models/security_device_evidence.rb', line 186

def ip_interfaces=(value)
    @ip_interfaces = value
end

#logged_on_users ⇒ Object

Gets the loggedOnUsers property value. Users that were logged on the machine during the time of the alert.

Returns:

• a security_logged_on_user

# File 'lib/models/security_device_evidence.rb', line 193

def logged_on_users
    return @logged_on_users
end

#logged_on_users=(value) ⇒ Object

Sets the loggedOnUsers property value. Users that were logged on the machine during the time of the alert.

Parameters:

• value —

  Value to set for the loggedOnUsers property.

Returns:

• a void

# File 'lib/models/security_device_evidence.rb', line 201

def logged_on_users=(value)
    @logged_on_users = value
end

#mde_device_id ⇒ Object

Gets the mdeDeviceId property value. A unique identifier assigned to a device by Microsoft Defender for Endpoint.

Returns:

• a string

# File 'lib/models/security_device_evidence.rb', line 208

def mde_device_id
    return @mde_device_id
end

#mde_device_id=(value) ⇒ Object

Sets the mdeDeviceId property value. A unique identifier assigned to a device by Microsoft Defender for Endpoint.

Parameters:

• value —

  Value to set for the mdeDeviceId property.

Returns:

• a void

# File 'lib/models/security_device_evidence.rb', line 216

def mde_device_id=(value)
    @mde_device_id = value
end

#onboarding_status ⇒ Object

Gets the onboardingStatus property value. The status of the machine onboarding to Microsoft Defender for Endpoint.The possible values are: insufficientInfo, onboarded, canBeOnboarded, unsupported, unknownFutureValue.

Returns:

• a security_onboarding_status

# File 'lib/models/security_device_evidence.rb', line 223

def onboarding_status
    return @onboarding_status
end

#onboarding_status=(value) ⇒ Object

Sets the onboardingStatus property value. The status of the machine onboarding to Microsoft Defender for Endpoint.The possible values are: insufficientInfo, onboarded, canBeOnboarded, unsupported, unknownFutureValue.

Parameters:

• value —

  Value to set for the onboardingStatus property.

Returns:

• a void

# File 'lib/models/security_device_evidence.rb', line 231

def onboarding_status=(value)
    @onboarding_status = value
end

#os_build ⇒ Object

Gets the osBuild property value. The build version for the operating system the device is running.

Returns:

• a int64

# File 'lib/models/security_device_evidence.rb', line 238

def os_build
    return @os_build
end

#os_build=(value) ⇒ Object

Sets the osBuild property value. The build version for the operating system the device is running.

Parameters:

• value —

  Value to set for the osBuild property.

Returns:

• a void

# File 'lib/models/security_device_evidence.rb', line 246

def os_build=(value)
    @os_build = value
end

#os_platform ⇒ Object

Gets the osPlatform property value. The operating system platform the device is running.

Returns:

• a string

# File 'lib/models/security_device_evidence.rb', line 253

def os_platform
    return @os_platform
end

#os_platform=(value) ⇒ Object

Sets the osPlatform property value. The operating system platform the device is running.

Parameters:

• value —

  Value to set for the osPlatform property.

Returns:

• a void

# File 'lib/models/security_device_evidence.rb', line 261

def os_platform=(value)
    @os_platform = value
end

#rbac_group_id ⇒ Object

Gets the rbacGroupId property value. The ID of the role-based access control (RBAC) device group.

Returns:

• a integer

# File 'lib/models/security_device_evidence.rb', line 268

def rbac_group_id
    return @rbac_group_id
end

#rbac_group_id=(value) ⇒ Object

Sets the rbacGroupId property value. The ID of the role-based access control (RBAC) device group.

Parameters:

• value —

  Value to set for the rbacGroupId property.

Returns:

• a void

# File 'lib/models/security_device_evidence.rb', line 276

def rbac_group_id=(value)
    @rbac_group_id = value
end

#rbac_group_name ⇒ Object

Gets the rbacGroupName property value. The name of the RBAC device group.

Returns:

• a string

# File 'lib/models/security_device_evidence.rb', line 283

def rbac_group_name
    return @rbac_group_name
end

#rbac_group_name=(value) ⇒ Object

Sets the rbacGroupName property value. The name of the RBAC device group.

Parameters:

• value —

  Value to set for the rbacGroupName property.

Returns:

• a void

# File 'lib/models/security_device_evidence.rb', line 291

def rbac_group_name=(value)
    @rbac_group_name = value
end

#risk_score ⇒ Object

Gets the riskScore property value. Risk score as evaluated by Microsoft Defender for Endpoint. The possible values are: none, informational, low, medium, high, unknownFutureValue.

Returns:

• a security_device_risk_score

# File 'lib/models/security_device_evidence.rb', line 298

def risk_score
    return @risk_score
end

#risk_score=(value) ⇒ Object

Sets the riskScore property value. Risk score as evaluated by Microsoft Defender for Endpoint. The possible values are: none, informational, low, medium, high, unknownFutureValue.

Parameters:

• value —

  Value to set for the riskScore property.

Returns:

• a void

# File 'lib/models/security_device_evidence.rb', line 306

def risk_score=(value)
    @risk_score = value
end

#serialize(writer) ⇒ Object

Serializes information the current object

Parameters:

• writer —

  Serialization writer to use to serialize this model

Returns:

• a void

Raises:

• (StandardError)

# File 'lib/models/security_device_evidence.rb', line 314

def serialize(writer)
    raise StandardError, 'writer cannot be null' if writer.nil?
    super
    writer.write_string_value("azureAdDeviceId", @azure_ad_device_id)
    writer.write_enum_value("defenderAvStatus", @defender_av_status)
    writer.write_string_value("deviceDnsName", @device_dns_name)
    writer.write_date_time_value("firstSeenDateTime", @first_seen_date_time)
    writer.write_enum_value("healthStatus", @health_status)
    writer.write_collection_of_primitive_values("ipInterfaces", @ip_interfaces)
    writer.write_collection_of_object_values("loggedOnUsers", @logged_on_users)
    writer.write_string_value("mdeDeviceId", @mde_device_id)
    writer.write_enum_value("onboardingStatus", @onboarding_status)
    writer.write_object_value("osBuild", @os_build)
    writer.write_string_value("osPlatform", @os_platform)
    writer.write_number_value("rbacGroupId", @rbac_group_id)
    writer.write_string_value("rbacGroupName", @rbac_group_name)
    writer.write_enum_value("riskScore", @risk_score)
    writer.write_string_value("version", @version)
    writer.write_object_value("vmMetadata", @vm_metadata)
end

#version ⇒ Object

Gets the version property value. The version of the operating system platform.

Returns:

• a string

# File 'lib/models/security_device_evidence.rb', line 338

def version
    return @version
end

#version=(value) ⇒ Object

Sets the version property value. The version of the operating system platform.

Parameters:

• value —

  Value to set for the version property.

Returns:

• a void

# File 'lib/models/security_device_evidence.rb', line 346

def version=(value)
    @version = value
end

#vm_metadata ⇒ Object

Gets the vmMetadata property value. Metadata of the virtual machine (VM) on which Microsoft Defender for Endpoint is running.

Returns:

• a security_vm_metadata

# File 'lib/models/security_device_evidence.rb', line 353

def vm_metadata
    return @vm_metadata
end

#vm_metadata=(value) ⇒ Object

Sets the vmMetadata property value. Metadata of the virtual machine (VM) on which Microsoft Defender for Endpoint is running.

Parameters:

• value —

  Value to set for the vmMetadata property.

Returns:

• a void

# File 'lib/models/security_device_evidence.rb', line 361

def vm_metadata=(value)
    @vm_metadata = value
end