Describe an intrusion prevention rule
Describe an intrusion prevention rule including computer-level overrides.
ComputerIntrusionPreventionRuleDetailsApi.describeIntrusionPreventionRuleOnComputer([param1, param2, ...])
ComputerIntrusionPreventionRuleDetailsApi.describe_intrusion_prevention_rule_on_computer([param1, param2, ...])
ComputerIntrusionPreventionRuleDetailsApi.describeIntrusionPreventionRuleOnComputer([param1, param2, ...])
path Parameters
successful operation
Not authorized to view the computer.
The computer or intrusion prevention rule does not exist.
- Java
- Python
- JavaScript
import com.trendmicro.deepsecurity.ApiClient; import com.trendmicro.deepsecurity.Configuration; import com.trendmicro.deepsecurity.auth.ApiKeyAuth; import com.trendmicro.deepsecurity.auth.ApiKeyAuth; import com.trendmicro.deepsecurity.ApiException; import com.trendmicro.deepsecurity.api.ComputerIntrusionPreventionRuleDetailsApi; import com.trendmicro.deepsecurity.model.IntrusionPreventionRule; public class DescribeIntrusionPreventionRuleOnComputerExample { public static void main(String[] args) { // Setup ApiClient defaultClient = Configuration.getDefaultApiClient(); defaultClient.setBasePath("YOUR HOST"); // Authentication ApiKeyAuth Legacy API Key = (ApiKeyAuth) defaultClient.getAuthentication("Legacy API Key"); Legacy API Key.setApiKey("YOUR API KEY"); try { defaultClient.trustAllCertificates(false); } catch (Exception e) { System.err.println("An exception occurred when calling ApiClient.trustAllCertificates"); e.printStackTrace(); } ApiKeyAuth Trend Micro Cloud One API Key = (ApiKeyAuth) defaultClient.getAuthentication("Trend Micro Cloud One API Key"); Trend Micro Cloud One API Key.setApiKey("YOUR API KEY"); try { defaultClient.trustAllCertificates(false); } catch (Exception e) { System.err.println("An exception occurred when calling ApiClient.trustAllCertificates"); e.printStackTrace(); } // Initialization // Set Any Required Values ComputerIntrusionPreventionRuleDetailsApi instance = new ComputerIntrusionPreventionRuleDetailsApi(); Integer computerID = 1; Integer intrusionPreventionRuleID = 1; Boolean overrides = false; String apiVersion = "YOUR VERSION"; try { // Please replace the parameter values with yours IntrusionPreventionRule result = instance.describeIntrusionPreventionRuleOnComputer(computerID, intrusionPreventionRuleID, overrides, apiVersion); System.out.println(result); } catch (ApiException e) { System.err.println("An exception occurred when calling ComputerIntrusionPreventionRuleDetailsApi.describeIntrusionPreventionRuleOnComputer"); e.printStackTrace(); } } }
- 200
{- "name": "string",
- "description": "string",
- "minimumAgentVersion": "string",
- "applicationTypeID": 0,
- "priority": "lowest",
- "ruleAvailability": "endpoint-and-workload",
- "severity": "low",
- "detectOnly": true,
- "eventLoggingDisabled": true,
- "generateEventOnPacketDrop": true,
- "alwaysIncludePacketData": true,
- "debugModeEnabled": true,
- "type": "custom",
- "originalIssue": 0,
- "lastUpdated": 0,
- "identifier": "string",
- "template": "signature",
- "signature": "string",
- "start": "string",
- "patterns": [
- "string"
], - "end": "string",
- "caseSensitive": true,
- "condition": "all",
- "action": "drop",
- "customXML": "string",
- "alertEnabled": true,
- "scheduleID": 0,
- "contextID": 0,
- "recommendationsMode": "enabled",
- "canBeAssignedAlone": true,
- "dependsOnRuleIDs": [
- 0
], - "ID": 0,
- "CVSSScore": "string",
- "CVE": [
- "string"
]
}
Modify an intrusion prevention rule
Modify an intrusion prevention rule assigned to a computer. Any unset elements will be left unchanged.
ComputerIntrusionPreventionRuleDetailsApi.modifyIntrusionPreventionRuleOnComputer([param1, param2, ...])
ComputerIntrusionPreventionRuleDetailsApi.modify_intrusion_prevention_rule_on_computer([param1, param2, ...])
ComputerIntrusionPreventionRuleDetailsApi.modifyIntrusionPreventionRuleOnComputer([param1, param2, ...])
path Parameters
header Parameters
Request Body schema: application/json
The settings of the intrusion prevention rule to modify.
successful operation
Not authorized to modify the computer or the requested modification is not permitted.
The computer or intrusion prevention rule does not exist.
- Payload
- Java
- Python
- JavaScript
{- "name": "string",
- "description": "string",
- "minimumAgentVersion": "string",
- "applicationTypeID": 0,
- "priority": "lowest",
- "severity": "low",
- "detectOnly": true,
- "eventLoggingDisabled": true,
- "generateEventOnPacketDrop": true,
- "alwaysIncludePacketData": true,
- "debugModeEnabled": true,
- "type": "custom",
- "originalIssue": 0,
- "lastUpdated": 0,
- "template": "signature",
- "signature": "string",
- "start": "string",
- "patterns": [
- "string"
], - "end": "string",
- "caseSensitive": true,
- "condition": "all",
- "action": "drop",
- "customXML": "string",
- "alertEnabled": true,
- "scheduleID": 0,
- "contextID": 0,
- "recommendationsMode": "enabled",
- "dependsOnRuleIDs": [
- 0
], - "CVSSScore": "string",
- "CVE": [
- "string"
]
}
- 200
{- "name": "string",
- "description": "string",
- "minimumAgentVersion": "string",
- "applicationTypeID": 0,
- "priority": "lowest",
- "ruleAvailability": "endpoint-and-workload",
- "severity": "low",
- "detectOnly": true,
- "eventLoggingDisabled": true,
- "generateEventOnPacketDrop": true,
- "alwaysIncludePacketData": true,
- "debugModeEnabled": true,
- "type": "custom",
- "originalIssue": 0,
- "lastUpdated": 0,
- "identifier": "string",
- "template": "signature",
- "signature": "string",
- "start": "string",
- "patterns": [
- "string"
], - "end": "string",
- "caseSensitive": true,
- "condition": "all",
- "action": "drop",
- "customXML": "string",
- "alertEnabled": true,
- "scheduleID": 0,
- "contextID": 0,
- "recommendationsMode": "enabled",
- "canBeAssignedAlone": true,
- "dependsOnRuleIDs": [
- 0
], - "ID": 0,
- "CVSSScore": "string",
- "CVE": [
- "string"
]
}
Reset intrusion prevention rule overrides
Remove all overrides for an intrusion prevention rule from a computer.
ComputerIntrusionPreventionRuleDetailsApi.resetIntrusionPreventionRuleOnComputer([param1, param2, ...])
ComputerIntrusionPreventionRuleDetailsApi.reset_intrusion_prevention_rule_on_computer([param1, param2, ...])
ComputerIntrusionPreventionRuleDetailsApi.resetIntrusionPreventionRuleOnComputer([param1, param2, ...])
path Parameters
successful operation
Not authorized to modify the computer.
The computer does not exist.
- Java
- Python
- JavaScript
import com.trendmicro.deepsecurity.ApiClient; import com.trendmicro.deepsecurity.Configuration; import com.trendmicro.deepsecurity.auth.ApiKeyAuth; import com.trendmicro.deepsecurity.auth.ApiKeyAuth; import com.trendmicro.deepsecurity.ApiException; import com.trendmicro.deepsecurity.api.ComputerIntrusionPreventionRuleDetailsApi; import com.trendmicro.deepsecurity.model.IntrusionPreventionRule; public class ResetIntrusionPreventionRuleOnComputerExample { public static void main(String[] args) { // Setup ApiClient defaultClient = Configuration.getDefaultApiClient(); defaultClient.setBasePath("YOUR HOST"); // Authentication ApiKeyAuth Legacy API Key = (ApiKeyAuth) defaultClient.getAuthentication("Legacy API Key"); Legacy API Key.setApiKey("YOUR API KEY"); try { defaultClient.trustAllCertificates(false); } catch (Exception e) { System.err.println("An exception occurred when calling ApiClient.trustAllCertificates"); e.printStackTrace(); } ApiKeyAuth Trend Micro Cloud One API Key = (ApiKeyAuth) defaultClient.getAuthentication("Trend Micro Cloud One API Key"); Trend Micro Cloud One API Key.setApiKey("YOUR API KEY"); try { defaultClient.trustAllCertificates(false); } catch (Exception e) { System.err.println("An exception occurred when calling ApiClient.trustAllCertificates"); e.printStackTrace(); } // Initialization // Set Any Required Values ComputerIntrusionPreventionRuleDetailsApi instance = new ComputerIntrusionPreventionRuleDetailsApi(); Integer computerID = 1; Integer intrusionPreventionRuleID = 1; Boolean overrides = false; String apiVersion = "YOUR VERSION"; try { // Please replace the parameter values with yours IntrusionPreventionRule result = instance.resetIntrusionPreventionRuleOnComputer(computerID, intrusionPreventionRuleID, overrides, apiVersion); System.out.println(result); } catch (ApiException e) { System.err.println("An exception occurred when calling ComputerIntrusionPreventionRuleDetailsApi.resetIntrusionPreventionRuleOnComputer"); e.printStackTrace(); } } }
- 200
{- "name": "string",
- "description": "string",
- "minimumAgentVersion": "string",
- "applicationTypeID": 0,
- "priority": "lowest",
- "ruleAvailability": "endpoint-and-workload",
- "severity": "low",
- "detectOnly": true,
- "eventLoggingDisabled": true,
- "generateEventOnPacketDrop": true,
- "alwaysIncludePacketData": true,
- "debugModeEnabled": true,
- "type": "custom",
- "originalIssue": 0,
- "lastUpdated": 0,
- "identifier": "string",
- "template": "signature",
- "signature": "string",
- "start": "string",
- "patterns": [
- "string"
], - "end": "string",
- "caseSensitive": true,
- "condition": "all",
- "action": "drop",
- "customXML": "string",
- "alertEnabled": true,
- "scheduleID": 0,
- "contextID": 0,
- "recommendationsMode": "enabled",
- "canBeAssignedAlone": true,
- "dependsOnRuleIDs": [
- 0
], - "ID": 0,
- "CVSSScore": "string",
- "CVE": [
- "string"
]
}
List intrusion prevention rules
Lists all intrusion prevention rules assigned to a computer.
ComputerIntrusionPreventionRuleDetailsApi.listIntrusionPreventionRulesOnComputer([param1, param2, ...])
ComputerIntrusionPreventionRuleDetailsApi.list_intrusion_prevention_rules_on_computer([param1, param2, ...])
ComputerIntrusionPreventionRuleDetailsApi.listIntrusionPreventionRulesOnComputer([param1, param2, ...])
successful operation
Not authorized to view the computer.
The computer does not exist.
- Java
- Python
- JavaScript
import com.trendmicro.deepsecurity.ApiClient; import com.trendmicro.deepsecurity.Configuration; import com.trendmicro.deepsecurity.auth.ApiKeyAuth; import com.trendmicro.deepsecurity.auth.ApiKeyAuth; import com.trendmicro.deepsecurity.ApiException; import com.trendmicro.deepsecurity.api.ComputerIntrusionPreventionRuleDetailsApi; import com.trendmicro.deepsecurity.model.IntrusionPreventionRules; public class ListIntrusionPreventionRulesOnComputerExample { public static void main(String[] args) { // Setup ApiClient defaultClient = Configuration.getDefaultApiClient(); defaultClient.setBasePath("YOUR HOST"); // Authentication ApiKeyAuth Legacy API Key = (ApiKeyAuth) defaultClient.getAuthentication("Legacy API Key"); Legacy API Key.setApiKey("YOUR API KEY"); try { defaultClient.trustAllCertificates(false); } catch (Exception e) { System.err.println("An exception occurred when calling ApiClient.trustAllCertificates"); e.printStackTrace(); } ApiKeyAuth Trend Micro Cloud One API Key = (ApiKeyAuth) defaultClient.getAuthentication("Trend Micro Cloud One API Key"); Trend Micro Cloud One API Key.setApiKey("YOUR API KEY"); try { defaultClient.trustAllCertificates(false); } catch (Exception e) { System.err.println("An exception occurred when calling ApiClient.trustAllCertificates"); e.printStackTrace(); } // Initialization // Set Any Required Values ComputerIntrusionPreventionRuleDetailsApi instance = new ComputerIntrusionPreventionRuleDetailsApi(); Integer computerID = 1; Boolean overrides = false; String apiVersion = "YOUR VERSION"; try { // Please replace the parameter values with yours IntrusionPreventionRules result = instance.listIntrusionPreventionRulesOnComputer(computerID, overrides, apiVersion); System.out.println(result); } catch (ApiException e) { System.err.println("An exception occurred when calling ComputerIntrusionPreventionRuleDetailsApi.listIntrusionPreventionRulesOnComputer"); e.printStackTrace(); } } }
- 200
{- "intrusionPreventionRules": [
- {
- "name": "string",
- "description": "string",
- "minimumAgentVersion": "string",
- "applicationTypeID": 0,
- "priority": "lowest",
- "ruleAvailability": "endpoint-and-workload",
- "severity": "low",
- "detectOnly": true,
- "eventLoggingDisabled": true,
- "generateEventOnPacketDrop": true,
- "alwaysIncludePacketData": true,
- "debugModeEnabled": true,
- "type": "custom",
- "originalIssue": 0,
- "lastUpdated": 0,
- "identifier": "string",
- "template": "signature",
- "signature": "string",
- "start": "string",
- "patterns": [
- "string"
], - "end": "string",
- "caseSensitive": true,
- "condition": "all",
- "action": "drop",
- "customXML": "string",
- "alertEnabled": true,
- "scheduleID": 0,
- "contextID": 0,
- "recommendationsMode": "enabled",
- "canBeAssignedAlone": true,
- "dependsOnRuleIDs": [
- 0
], - "ID": 0,
- "CVSSScore": "string",
- "CVE": [
- "string"
]
}
]
}