mirror of
https://github.com/imjasonh/gcloud-help
synced 2026-07-09 10:56:49 +00:00
96 lines
3.8 KiB
Text
96 lines
3.8 KiB
Text
NAME
|
|
gcloud alpha scc custom-modules etd create - create an Event Threat
|
|
Detection custom module
|
|
|
|
SYNOPSIS
|
|
gcloud alpha scc custom-modules etd create
|
|
--custom-config-from-file=CUSTOM_CONFIG_FROM_FILE
|
|
--display-name=DISPLAY_NAME --enablement-state=ENABLEMENT_STATE
|
|
--module-type=MODULE_TYPE
|
|
[--folder=FOLDER | --organization=ORGANIZATION | --project=PROJECT]
|
|
[GCLOUD_WIDE_FLAG ...]
|
|
|
|
DESCRIPTION
|
|
(ALPHA) Create an Event Threat Detection custom module.
|
|
|
|
EXAMPLES
|
|
To create an Event Threat Detection custom module for organization 123,
|
|
run:
|
|
|
|
$ gcloud alpha scc custom-modules etd create \
|
|
--organization=organizations/123 \
|
|
--display-name="test_display_name" \
|
|
--module-type="CONFIGURABLE_BAD_IP" \
|
|
--enablement-state="ENABLED" \
|
|
--custom-config-from-file=config.json
|
|
|
|
To create an Event Threat Detection custom module for folder 456, run:
|
|
|
|
$ gcloud alpha scc custom-modules etd create --folder=folders/456 \
|
|
--display-name="test_display_name" \
|
|
--module-type="CONFIGURABLE_BAD_IP" \
|
|
--enablement-state="ENABLED" \
|
|
--custom-config-from-file=config.json
|
|
|
|
To create an Event Threat Detection custom module for project 789, run:
|
|
|
|
$ gcloud alpha scc custom-modules etd create \
|
|
--project=projects/789 --display-name="test_display_name" \
|
|
--module-type="CONFIGURABLE_BAD_IP" \
|
|
--enablement-state="ENABLED" \
|
|
--custom-config-from-file=config.json
|
|
|
|
REQUIRED FLAGS
|
|
--custom-config-from-file=CUSTOM_CONFIG_FROM_FILE
|
|
Path to a JSON file that contains the configuration for the Event
|
|
Threat Detection custom module.
|
|
|
|
--display-name=DISPLAY_NAME
|
|
Sets the display name of the Event Threat Detection custom module. This
|
|
display name becomes the finding category for all findings that are
|
|
returned by this custom module. The display name must be between 1 and
|
|
128 characters, start with a lowercase letter, and contain alphanumeric
|
|
characters or underscores only.
|
|
|
|
--enablement-state=ENABLEMENT_STATE
|
|
Sets the enablement state of the Event Threat Detection custom module.
|
|
From the following list of possible enablement states, specify either
|
|
enabled or disabled only. ENABLEMENT_STATE must be one of: disabled,
|
|
enabled, enablement-state-unspecified, inherited.
|
|
|
|
--module-type=MODULE_TYPE
|
|
Sets the module type of the Event Threat Detection custom module.
|
|
|
|
OPTIONAL FLAGS
|
|
At most one of these can be specified:
|
|
|
|
--folder=FOLDER
|
|
Folder where the Event Threat Detection custom module resides.
|
|
Formatted as folders/456 or just 456.
|
|
|
|
--organization=ORGANIZATION
|
|
Organization where the Event Threat Detection custom module resides.
|
|
Formatted as organizations/123 or just 123.
|
|
|
|
--project=PROJECT
|
|
ID or number of the project where the Event Threat Detection custom
|
|
module resides. Formatted as projects/789 or just 789.
|
|
|
|
GCLOUD WIDE FLAGS
|
|
These flags are available to all commands: --access-token-file, --account,
|
|
--billing-project, --configuration, --flags-file, --flatten, --format,
|
|
--help, --impersonate-service-account, --log-http, --project, --quiet,
|
|
--trace-token, --user-output-enabled, --verbosity.
|
|
|
|
Run $ gcloud help for details.
|
|
|
|
API REFERENCE
|
|
This command uses the securitycenter/v1 API. The full documentation for
|
|
this API can be found at: https://cloud.google.com/security-command-center
|
|
|
|
NOTES
|
|
This command is currently in alpha and might change without notice. If this
|
|
command fails with API permission errors despite specifying the correct
|
|
project, you might be trying to access an API with an invitation-only early
|
|
access allowlist.
|
|
|