1
0
Fork 0
mirror of https://github.com/imjasonh/gcloud-help synced 2026-07-10 11:21:48 +00:00
gcloud-help/gcloud/alpha/scc/custom-modules/etd/create
2023-07-26 10:48:49 +00:00

69 lines
2.8 KiB
Text

NAME
gcloud alpha scc custom-modules etd create - create an Event Threat
Detection custom module
SYNOPSIS
gcloud alpha scc custom-modules etd create
--custom-config-from-file=CUSTOM_CONFIG_FROM_FILE
--display-name=DISPLAY_NAME --enablement-state=ENABLEMENT_STATE
--module-type=MODULE_TYPE [--organization=ORGANIZATION]
[GCLOUD_WIDE_FLAG ...]
DESCRIPTION
(ALPHA) Create an Event Threat Detection custom module.
EXAMPLES
To create an Event Threat Detection custom module for organization 123,
run:
$ gcloud alpha scc custom-modules etd create \
--organization=organizations/123 \
--display-name="test_display_name" \
--module-type="CONFIGURABLE_BAD_IP" \
--enablement-state="ENABLED" \
--custom-config-from-file=config.json
REQUIRED FLAGS
--custom-config-from-file=CUSTOM_CONFIG_FROM_FILE
Path to a JSON file that contains the configuration for the Event
Threat Detection custom module.
--display-name=DISPLAY_NAME
Sets the display name of the Event Threat Detection custom module. This
display name becomes the finding category for all findings that are
returned by this custom module. The display name must be between 1 and
128 characters, start with a lowercase letter, and contain alphanumeric
characters or underscores only.
--enablement-state=ENABLEMENT_STATE
Sets the enablement state of the Event Threat Detection custom module.
From the following list of possible enablement states, specify either
enabled or disabled only. ENABLEMENT_STATE must be one of: disabled,
enabled, enablement-state-unspecified, inherited.
--module-type=MODULE_TYPE
Sets the module type of the Event Threat Detection custom module.
OPTIONAL FLAGS
--organization=ORGANIZATION
Organization where the Event Threat Detection custom module resides.
Formatted as organizations/123 or just 123.
GCLOUD WIDE FLAGS
These flags are available to all commands: --access-token-file, --account,
--billing-project, --configuration, --flags-file, --flatten, --format,
--help, --impersonate-service-account, --log-http, --project, --quiet,
--trace-token, --user-output-enabled, --verbosity.
Run $ gcloud help for details.
API REFERENCE
This command uses the securitycenter/v1 API. The full documentation for
this API can be found at: https://cloud.google.com/security-command-center
NOTES
This command is currently in alpha and might change without notice. If this
command fails with API permission errors despite specifying the correct
project, you might be trying to access an API with an invitation-only early
access allowlist.