ActiveViolation
Information about an active Device Defender security profile behavior violation.
Contents
- behavior
-
The behavior that is being violated.
Type: Behavior object
Required: No
- lastViolationTime
-
The time the most recent violation occurred.
Type: Timestamp
Required: No
- lastViolationValue
-
The value of the metric (the measurement) that caused the most recent violation.
Type: MetricValue object
Required: No
- securityProfileName
-
The security profile with the behavior is in violation.
Type: String
Length Constraints: Minimum length of 1. Maximum length of 128.
Pattern:
[a-zA-Z0-9:_-]+Required: No
- thingName
-
The name of the thing responsible for the active violation.
Type: String
Length Constraints: Minimum length of 1. Maximum length of 128.
Required: No
- verificationState
-
The verification state of the violation (detect alarm).
Type: String
Valid Values:
FALSE_POSITIVE | BENIGN_POSITIVE | TRUE_POSITIVE | UNKNOWNRequired: No
- verificationStateDescription
-
The description of the verification state of the violation.
Type: String
Length Constraints: Maximum length of 1000.
Pattern:
[^\p{Cntrl}]*Required: No
- violationEventAdditionalInfo
-
The details of a violation event.
Type: ViolationEventAdditionalInfo object
Required: No
- violationId
-
The ID of the active violation.
Type: String
Length Constraints: Minimum length of 1. Maximum length of 128.
Pattern:
[a-zA-Z0-9\-]+Required: No
- violationStartTime
-
The time the violation started.
Type: Timestamp
Required: No
See Also
For more information about using this API in one of the language-specific AWS SDKs, see the following:
